Security Risk Analyst

As a Security Risk Analyst at McCormick, you will play a vital role in the Cybersecurity Governance, Risk, and Compliance team, reporting to the Senior Manager. Your responsibilities will include assessing security risk, establishing security standards, and ensuring compliance across all information security disciplines that support McCormicks global brands and subsidiaries. You should possess a strong work ethic, organizational skills, project management abilities, and problem-solving capabilities. Moreover, effective communication skills are crucial as you will collaborate with various stakeholders to drive results. It is essential to thrive in a fast-paced, energetic, and team-oriented environment. Key Responsibilities: - Analyze risks from multiple sources such as audits, compliance checks, and vulnerability systems, and provide necessary information for business leaders to assess and accept risks. - Collaborate with the Senior Manager to develop a comprehensive view of risk within the company. - Track and oversee action plans developed by risk owners to ensure timely completion. - Handle policy exception requests and perform ad-hoc risk analysis as required. - Conduct audits, identify risk areas, develop action plans, and draft clear audit reports for functional/business personnel and executive leadership. - Demonstrate strong teaming skills, working independently when necessary to lead tasks from initiation to completion. Desired Candidate Profile: - Bachelors degree in Information Technology, Information Systems, Risk Management, Accounting, or related field. - Minimum of 6 years of experience in internal/external audit, information technology, or internal controls. - Experience in Internal/External Audit, Sarbanes-Oxley, or other IT/operational internal control projects. Please note that McCormick & Company is an equal opportunity employer and does not provide employment visa sponsorships. As a Security Risk Analyst at McCormick, you will play a vital role in the Cybersecurity Governance, Risk, and Compliance team, reporting to the Senior Manager. Your responsibilities will include assessing security risk, establishing security standards, and ensuring compliance across all information security disciplines that support McCormicks global brands and subsidiaries. You should possess a strong work ethic, organizational skills, project management abilities, and problem-solving capabilities. Moreover, effective communication skills are crucial as you will collaborate with various stakeholders to drive results. It is essential to thrive in a fast-paced, energetic, and team-oriented environment. Key Responsibilities: - Analyze risks from multiple sources such as audits, compliance checks, and vulnerability systems, and provide necessary information for business leaders to assess and accept risks. - Collaborate with the Senior Manager to develop a comprehensive view of risk within the company. - Track and oversee action plans developed by risk owners to ensure timely completion. - Handle policy exception requests and perform ad-hoc risk analysis as required. - Conduct audits, identify risk areas, develop action plans, and draft clear audit reports for functional/business personnel and executive leadership. - Demonstrate strong teaming skills, working independently when necessary to lead tasks from initiation to completion. Desired Candidate Profile: - Bachelors degree in Information Technology, Information Systems, Risk Management, Accounting, or related field. - Minimum of 6 years of experience in internal/external audit, information technology, or internal controls. - Experience in Internal/External Audit, Sarbanes-Oxley, or other IT/operational internal control projects. Please note that McCormick & Company is an equal opportunity employer and does not provide employment visa sponsorships.