What are the responsibilities and job description for the Security Analyst, Governance, Risk and Compliance position at Delta Air Lines, Inc.?
This position will be based in Atlanta, GA or Minneapolis, MN (Full-time remote not an option)
You are someone who, when asked to do the impossible, responds with a grin -- "Bring it on!" You want a job, not because it is easy, but because you get to drive real transformational change. You are someone who is passionate about identifying, communicating, and reducing risk. For you, Information Security is a passion and not just a job.
As a member of the IT Risk team within Delta’s Information Security Governance Risk and Compliance organization, you will serve as second line of defense to manage and monitor information security and technology risks. You’ll partner with IT Portfolios (Infrastructure and Reliability, Architecture, Channels Technology), key functional partners (Legal, Privacy, Corporate Audit) and external assessors.
Delta Information Security Governance (ISG) is leading the effort to mature Delta’s growing Information Security practice. The team is actively working to implement a controls focused mindset, shift our approach from a compliance focus to a risk focus, and establish meaningful metrics to truly measure Enterprise Risk and the effectiveness of the Information Security practice. We partner closely with others in the Information Security Division to drive aligned results. We have the opportunity to drive meaningful change through a well-established, well-respected company leading the Aviation Industry.
Job Summary:
- Evaluates, quantifies, and communicates risk across the vendor, internal controls, and cyber domains.
- Establishes and communicates key risk and key performance indicators.
- Engages with partners in Information Security, Information Technology, and Internal Audit to efficiently ensure compliance with SOX, PCI, and other regulatory/statutory requirements.
Responsibilities:
- Engage & consult with key partners to design and develop IT controls that mitigate risk to an acceptable level.
- Document the controls, including the control description, process steps and testing criteria
- Train and educate IT partners on IT risk, controls and control effectiveness testing
- Periodically test control effectiveness, working with IT partners to close gaps in control effectiveness
- Provide IT controls and risk data to enable reporting on control gaps and control effectiveness
- Anticipate organizational impact & understand the risk associated with introducing new technologies or processes.
- Perform special projects as assigned.
- Requires self-starters who work well with in largely a self-directed environment.
Security Analyst - Governance, Risk and Compliance (GRC)
Emcor Inc -
Avondale, AZ
Security Analyst - Governance, Risk and Compliance (GRC)
EMCOR Group -
Phoenix, AZ
Information Security Governance Risk Compliance Analyst - 2696
Wade Trim -
Detroit, MI
