New Analyst, Cybersecurity, Tech Compliance

In this role you will:

• Oversee the cybersecurity policy portfolio, ensuring all documents remain current and effective.
• Proactively identify opportunities to enhance or expand policy coverage.
• Act as a subject matter expert on compliance and assurance activities, supporting internal and external audits.

Your responsibilities will include:

• Review submissions, supervise evaluations, and provide contract input within the third-party risk assessment process.
• Partner with Sourcing to strengthen the overall third-party risk management strategy.
• Coordinate with internal teams to ensure continuous compliance with PCI DSS.

Additionally, you will:

• Collaborate with system owners and managers to facilitate timely reviews for user access recertification.
• Track and address inappropriate access, iterating on and improving the overall process.
• Respond to client and vendor security inquiries and assist in implementing new regulatory or compliance requirements.