Skip to main content

Information Risk Analyst

Irving, Texas
Apply

Job Description:


What makes Gartner a GREAT fit for you? When you join Gartner, you’ll be part of a fast-growing team that helps the world become smarter and more connected. We’re the world’s leading research and advisory company, achieving consistent double-digit growth by steering clients toward the right decisions with business and technology insights they can’t find anywhere else. Our associates enjoy a collaborative work environment, exceptional training and career development — as well as unlimited growth opportunities. If you like working with a curious, supportive, high-performing team, Gartner is the place for you.

About The Role

This is a new role, created to support Gartner’s evolving information security program and initiatives. This individual will help identify and manage risks to the enterprise, including managing the exception lifecycle and risk registry.

Responsibilities

  • Assist leadership to design, develop and oversee procedural controls to monitor compliance risks, including progress tracking of treatment plans to verify successful completion of remediation activities.
  • Identify acceptable levels of risk, and establish roles and responsibilities with regards to information risk management.
  • Maintain and monitor Information Security Risk Exception process.
  • Drive process improvements and workflow development for the identification, measurement, management, tracking, and reporting of information risks.
  • Validate IT key controls to identify control risks, analyze root causes and trends in potential control weaknesses; suggest new controls to meet compliance standards where applicable
  • Provide advice and guidance to the business to ensure continued compliance in a dynamic, fast paced environment
  • Help prepare for and facilitate assessments and examinations by qualified security assessors auditors, regulators, and other similar bodies.
  • Support internal and external audits by gathering or coordinating the collection of any necessary evidence.
  • Maintain and present compliance reports and remediation tracking documents to convey and influence compliance status of all relevant compliance programs.
  • Assist in the promotion of a compliance culture that encourages an “open door” policy for staff to seek clarification on compliance matters.
  • Enable continuous improvements of the GRC function by identifying and communicating enhancement opportunities to department leadership.

What You'll Need

  • Bachelor’s degree in a related field, or equivalent;  2+ years audit or related experience;4-year degree in Accounting, Finance or Information Systems
  • 3-5 years experiencing with risk management and mitigation
  • Combination of 5+ years of experience in Audit and Information Technology, including 2+ years of experience with SOX, internal controls and auditing
  • 3-5 years experiencing with risk management and mitigation
  • Experience conducting independent security control assessments in accordance with  [Frameworks]
  • Experience with and knowledge of information security frameworks (e.g. SAS70/SSAE No. 16, PCI, NERC CIP, HIPAA, GLBA, SOX, etc.)
  • Experience working with analytics tools, Excel functions, GRC Tools, JIRA, or other toolsets
  • Creating detailed remediation reports and recommendations for compliance and security improvements across industries based on changing threats.
  • Ability to effectively communicate technical and nontechnical concepts to a variety of audiences;
  • Exceptional written and verbal communication skills; must be able to communicate effectively with all levels of staff and management.
  • Ability to effectively communicate technical and nontechnical concepts to a variety of audiences.
  • Exceptional written and verbal communication skills; must be able to communicate effectively with all levels of staff and management.
  • Methodical approach to gathering, documenting, and presenting specific customer requirements.
  • Ability to follow and comply with existing processes and procedures, and propose updates.
  • Work with minimal supervision, set priorities, and give attention to detail and quality.
  • Demonstrate strong organizational and time-management skills: multitasking, working individually and with a team.
  • Ability to prioritize multiple audits and projects simultaneously.
  • Ability to build and maintain relationships with various business unit leaders and external customers.

What We Offer

In addition to an outstanding work environment with rapid advancement potential, Gartner associates enjoy exceptional compensation and benefits, including:

  • An upbeat, positive culture. Integrity, objectivity, collaboration, results and a no-limits mind set are central to our values
  • Limitless growth. We work with you to help you meet your goals and advance within the company
  • Encouragement to be innovative and challenge status quo
  • Exposure to industry leading training and development
  • Performance based recognition and rewards

Job Requisition ID:33314

By submitting your information and application, you confirm that you have read and agree to the country or regional recruitment notice linked below applicable to your place of residence.

Gartner Applicant Privacy Link: https://jobs.gartner.com/applicant-privacy-policy

For efficient navigation through the application, please only use the back button within the application, not the back arrow within your browser.

Apply

Similar Jobs

View All of Our Available Opportunities

Sign Up for Job Alerts

Interested InSearch for a category and select one from the list of suggestions. Search for a location and select one from the list of suggestions. Finally, click “Add” to create your job alert.