Lead IT Security Analyst- Enterprise Risk Management

Lead IT Security Analyst– Enterprise Risk Management

Join our dynamic, progressive team of IT professionals in an environment where you can learn, grow, and create innovative technology solutions to help our business flourish. Become a part of our rich heritage that has grown from a small family business to a global organization with a presence in over 180 countries.

At the heart of the Kellogg Company is technology — a key enabler of how we market, sell and manufacture our well-known and beloved brands to consumers around the globe.

Location: We’re all working virtually / remote right now. When the offices do eventually open, this role may remain working in a remote environment with occasional travel (less than 25%) to either Naperville, IL, or Battle Creek, MI.

HERE’S A TASTE OF WHAT YOU’LL BE DOING

Risk Management Program Ownership: Serve as Subject Matter Expert (SME) of Kellogg’s Cybersecurity Risk Management program / process (RMP). Lead efforts to evolve and continuously improve the RMP to meet or exceed all stakeholder’s expectations. Build professional relationships across the company and work closely with and influence senior decision makers in other departments to identify, recommend, develop, implement and support a risk informed decision and action framework. Leverage analytical skills to gain insights, technical proficiency to deliver right-fit solutions, and stellar communications skills to present findings, discovery and recommendations in a logical and easily understandable manner. Deliver awareness and training program on RMP for employees and contractors.

Analytics Insights and Continuous Improvement Leadership: Lead efforts to develop or continuously improve security Key Performance Indicators (KPI), Key Risk Indicators (KRI), and Key Control Indicators (KCI). Collaborate with other security teams to integrate security metrics unto a single dashboard to provide leadership with insights in making risk-based business decisions.

Data Security Governance: Perform security risk assessments of technology solutions and 3rd party providers to determine information security risks to the enterprise. Work closely with data / process owners and IT project stakeholders to clearly understand solutions being implemented and provide guidance on control requirements / risk mitigation actions and associated risk of non-compliance. Work closely with Project Delivery Management, Enterprise Architecture, Application / Security Architecture, Legal and Procurement teams to drive implementation of appropriate controls to comply with Kellogg’s policy / standards to reduce security risk to acceptable level. Provide overall oversight to global and regional IT Security Leads to ensure security risk assessments are performed consistently and timely.

YOUR RECIPE FOR SUCCESS

Required:

• High School Diploma or GED with related IT and IT Security work experience.
• Direct experience in Cybersecurity risk management practices and programs, Privacy by Design concepts, and conducting information security risk assessments or business impact assessments.
• Experience with various IT governance, control frameworks, and standards such as NIST CSF, COBIT, ISO 2700x, SOC II and domestic and global security regulations / directives including GPDR, SOX, CSA, CCPA.
• Advanced verbal and written communication skills at all levels of organization in a matrixed environment, along with ability to work independently and juggle multiple priorities.
• Analytical and troubleshooting skills, demonstrating an aptitude for conducting quantitative and qualitative analysis of large and complex data, problem-solving, negotiation and decision-making skills
• Proactive problem-solving, negotiation and decision-making skills to influence management, as well as internal and external partners.
• Experience using Scalable Agile Framework or Agile ways of working.
• Strong Office365 (Word, PowerPoint, Excel) skills.

Bonus Points:

• Bachelor’s degree in IT, computer science, information security or a related field.
• Related certifications such as CISM, CRISC, and CISSP, or have certification in progress.
• Work experience in a Global company, working on globally scoped projects.
• Experience in project management, business / system / data analysis or governance.
• Relevant experience in planning, administering, developing or delivering solutions in GRC platforms (e.g. RSA Archer, OneTrust, or equivalent).

WHAT’S NEXT

It’s best to apply today, because job postings can be taken down and we wouldn’t want you to miss this opportunity. To learn more about what’s next, click on the links below:

• Kellogg K-Values
• New Hire Benefits Guide

THE FINER PRINT

The ability to work a full shift, come to work on time, work overtime as needed and the ability to work according to the necessary schedule to meet job requirements with or without reasonable accommodation is an essential function of this position.

Kellogg Company is an Equal Opportunity Employer that strives to provide an inclusive work environment, a seat for everyone at the table, and embraces the diverse talent of its people. All qualified applicants will receive consideration for employment without regard to race, color, ethnicity, disability, religion, national origin, gender, gender identity, gender expression, marital status, sexual orientation, age, protected veteran status, or any other characteristic protected by law. For more information regarding our efforts to advance Equity, Diversity & Inclusion, please visit our website here.

Where required by state law and/or city ordinance; this employer will provide the Social Security Administration (SSA) and, if necessary, the Department of Homeland Security (DHS), with information from each new employee’s Form I-9 to confirm work authorization. For additional information, please follow this Link.

If you require reasonable accommodation in completing this application, please reach out to [email protected]

LET’S CREATE THE FUTURE OF FOOD

Kellogg Recruitment