Jobs · Information Technology · Kentucky

IT Security and Governance Analyst

Brown-Forman · Louisville, KY · 3 wk ago
Information TechnologyFull-time

About the role

The IT Governance/Risk/Compliance Analyst position offers a dynamic opportunity for an experienced analyst to help shape the future of our governance, risk, and compliance initiatives. In this role, you’ll be at the forefront of identifying and mitigating IT risks, ensuring regulatory compliance, and enhancing our security posture through robust frameworks and controls.

Responsibilities

  • Develop and maintain IT governance frameworks and policies that align with industry standards and regulatory requirements, which are then implemented by IT owners.
  • Support our IT risk management program to ensure both internal and third-party IT risks are identified, assessed, prioritized and remediated.
  • Raise awareness within the organization of IT governance, risk and compliance programs that are risk based and align with compliance requirements.
  • Track and ensure compliance with internal policies and external regulations through periodic audits and assessments.
  • Ensure data security and privacy compliance by providing guidance on appropriate access controls, data classification protocols, and data protection measures.
  • Collaborate with key stakeholders throughout the IT organization as well as with Internal Audit, Compliance, and Legal.
  • Monitor evolving regulations, compliance standards, and best practices to strengthen our IT GRC capabilities and frameworks.

Requirements

  • 3+ years of experience focused on governance, compliance, risk, audit or similar functions.
  • Knowledge of IT governance and risk management frameworks including compliance practices (e.g., PCI, NIST, GDPR, COBIT, NIS2, Operation Technology, etc.).
  • Strong analytical skills, attention to detail, and a problem-solving mindset.
  • Excellent collaboration, communication and influencing skills with the ability to develop effective working relationships with all levels of the company.
  • Exposure to risk assessments, policy development, and internal control audits.

Qualifications

  • Bachelor’s degree within a related area of study.
  • Information security related training or certifications such as CISA, CRISC, PCI QSA.
  • Experience working with GRC platforms and tools.
  • Familiarity with third-party risk management and vendor compliance.

Skills

  • Strong analytical and problem-solving skills.
  • Excellent communication and collaboration abilities.
  • Knowledge of IT governance and risk management frameworks.
  • Experience with risk assessments, policy development, and internal control audits.
  • Understanding of regulatory compliance standards and best practices.

Benefits

  • Equitable pay structures for individual and company performance.
  • Premium employee experience.
  • A range of premium benefits reflecting company values and meeting workforce needs.

Pay

Competitive compensation package.

Schedule

Full-time position.

Contact

For more information about this position, please contact [Hiring Manager's Name] at [Hiring Manager's Email/Phone Number].

Similar jobs

IT Governance Analyst

Farmers & Merchants Bank of Long BeachSeal Beach, CA· 4 wk ago
Information Technology$24.5–$37.5/hrapply on workforcenow.adp.com

IT Security Analyst

Intellibee IncRichmond, VA· 3 wk ago
Information Technologyapply on intellibee.my.salesforce-sites.com

IT Security Analyst

Whitley PennDallas, TX· 2 wk ago
Information Technologyapply on recruiting.ultipro.com

IT Security Analyst

Baltimore OriolesBaltimore, MD· 2 mo ago
Information Technology$90k–$100k/yrapply on teamworkonline.com