Sr Analyst, Cyber Security
Stanley Black & Decker, Inc. · New Britain, CT · Yesterday
HybridFull-time
About the role
The Sr Analyst, Cyber Security plays a crucial role in ensuring the cybersecurity and compliance of various brands under Stanley Black & Decker. Reporting to the IT – Cyber Security Manager, this position requires a strong background in cyber security, IT audit, or IT GRC roles.
Responsibilities
- Lead and support cybersecurity compliance initiatives, ensuring alignment with frameworks (ISO 27001, NIST, PCI DSS, SOX, NIS 2).
- Monitor and assess the effectiveness of cybersecurity and compliance controls, recommending enhancements and remediation strategies.
- Collaborate with IT, security, and business teams to resolve audit findings and compliance issues; escalate high-risk or unresolved issues as needed.
- Maintain up-to-date knowledge of regulatory requirements, standards, and best practices.
- Prepare and deliver compliance and audit reports to management and regulatory authorities, track and report on compliance metrics and remediation progress.
- Support and prepare for third-party and external audits, acting as liaison with auditors and regulators.
- Develop and deliver training and awareness programs on cybersecurity compliance; provide guidance to staff on compliance and audit requirements.
- Develop, maintain, and update IT GRC documentation (policies, procedures, risk registers, control matrices, compliance checklists).
- Identify, evaluate, and report on control gaps; maintain a log of compliance and audit issues and their resolution status.
- Collaborate across departments to ensure company-wide compliance and effective resolution of issues.
- Proactively identify emerging risks and propose innovative solutions to strengthen cybersecurity posture.
Requirements
- Bachelor’s degree in Information Security, Computer Science, or a related field.
- 3+ years of experience in cyber security, IT audit, or IT GRC roles.
- Professional certifications such as CISA, CISSP, CISM, or CRISC highly desirable.
- Strong knowledge of IT security frameworks (e.g., NIST, ISO) and regulatory requirements.
- Experience conducting IT security audits.
Qualifications
- Strong analytical and problem-solving skills.
- Excellent communication and interpersonal skills.
- Ability to work independently and as part of a team.
- Proficiency in Microsoft Office Suite and relevant software tools.
Skills
- Knowledge of IT security frameworks (e.g., NIST, ISO).
- Experience with IT security audits.
- Strong written and verbal communication skills.
- Ability to manage multiple projects simultaneously.
- Attention to detail and ability to meet deadlines.
Benefits
- Medical, dental, life, vision, disability, 401(k), Employee Stock Purchase Plan, paid time off, and tuition reimbursement.
- Discounts on Stanley Black & Decker tools and other partner programs.
Pay
Competitive salary and benefits package.
Schedule
Hybrid schedule available.