Lead IT Risk Management Analyst

Responsibilities:

• Analyze 7-Eleven's processes, compare them with IT standards/requirements, and document gaps.

• Collaborate with stakeholders to identify risks, mitigating controls, and the impact of not approving security exceptions.

• Document findings in the form of security exception requests or risk register tickets for senior leadership review.

• Manage process for reviewing security exceptions and risk register boards to ensure efficiency in decision-making.

• Develop a weekly dashboard for executive leadership.

• Work with appropriate stakeholders to discuss risk themes, share lessons learned, and identify improvement opportunities.

• Perform other Governance, Risk, and Compliance (GRC) duties as required by the IT Risk Management team.

Qualifications:

• Strong ability to communicate complex ideas and updates to peers, supervisors, senior management, and stakeholders.

• Good negotiation skills to successfully handle complex situations.

• Critical analysis skills to reduce IT risk at 7-Eleven.

• Excellent project management skills to ensure successful completion of tasks.

• Capable of challenging responses from other teams with a solid understanding of processes and escalating when necessary.

• Solid understanding of ISO27001, PCI, and/or NIST 800-53 frameworks.

Experience Needed:

• 5 to 7 years of experience in IT risk management or GRC.

• A bachelor's degree or higher in information technology, computer science, or related fields.

• Experience in the retail industry or Fortune 500 companies is highly preferred.