Information Security Analyst (Remote)

Before you apply to a job, select your language preference from the options available at the top right of this page.

Explore your next opportunity at a Fortune Global 500 organization. Envision innovative possibilities, experience our rewarding culture, and work with talented teams that help you become better every day. We know what it takes to lead UPS into tomorrow—people with a unique combination of skill passion. If you have the qualities and drive to lead yourself or teams, there are roles ready to cultivate your skills and take you to the next level.

Job Description:

Remote location acceptable

The Information Security Risk Analyst participates in risk audits/assessments with customers and reviewing Information Security contract language. The Analyst will prepare, and initiate customer assurance responses or third-party audits/assessments facilitated by electronic survey's, questionnaire assessments, interviews and security control reviews.

They will:

• Identify key points of contact and establish communication channel.
• Initiative audit/assessment overview meetings and develop schedules.
• Manage audit timeline for questionnaire, interviews, evidence verification, and audit phases.
• Ensure all assessment controls meet company policies and standards for confidentiality, integrity, availability and defense in depth security principles.
• Respond to assessment action items including providing supporting documentation to auditors, evaluating audit results for relevance/accuracy, and working with teams to remediate audit findings.
• Provide immediate security control remediation response in all cases where assessment controls are found to be deficient or non-compliant.
• Prepare final assessment reports and assessment results review with stakeholders.
• Assist in the development of the information security requirements for vendor and customer contracts to ensure UPS's information assets are protected, and all terms follow UPS standards and compliance obligations.
• Participate in the creation and/or maintenance of information security policies, standards, guidelines, processes and procedures.
• Identify opportunities to continuously improve the program through innovation.
• Review and redline information security contract terms.

Experience:

• Experience gathering information from a range of different sources, developing and creating search queries.
• Experience using GRC/IRM tools or similar technologies for audit support and security controls governance management.
• Experience with auditing controls, I.T. auditing fundamentals, customer and vendor cybersecurity controls analysis and documentation.
• Candidate must have good organization skills and be a self-motivated learner.

Preferred Qualifications:

• Bachelor's degree in Information Technology, Information Security, Computer Science, Auditing or equivalent.
• One of Sec , CISA, CRISC, CISM, or CISSP, or other Information Security certification preferred or in progress.
• Demonstrated advanced verbal and written communication skills.

Other Criteria:

• Job Grade: 20G
• Must be currently located in the same geographic location as the job or willing to relocate yourself –Required.
• Last day to apply is 4/29/2025 EOD
• Shift: Monday – Friday from 9am to 5pm.

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $84.900 year to $157.320 year. Pay is based on several factors including but not limited to, market location and may vary depending on job-related knowledge, skills, and education/training and a candidate’s work experience. Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company’s performance.

Hired applicants may be eligible for Medical/prescription drug coverage, Dental & Vision Benefits, Flexible Spending Account, Health Savings Account, Dependent Care Flexible Spending Account, Basic and Supplemental Life Insurance & Accidental Death and Dismemberment, Disability Income Protection Plan, Employee Assistance Program, Educational Assistance Program, 401(k) retirement program, Vacation, Paid Holidays and Personal time, Paid Sick/Family and Medical Leave time as required by law, Discounted Employee Stock Purchase Program.

Employee Type:

UPS is committed to providing a workplace free of discrimination, harassment, and retaliation.

Other Criteria:

UPS is an equal opportunity employer. UPS does not discriminate on the basis of race/color/religion/sex/national origin/veteran/disability/age/sexual orientation/gender identity or any other characteristic protected by law.

Basic Qualifications:

Must be a U.S. Citizen or National of the U.S., an alien lawfully admitted for permanent residence, or an alien authorized to work in the U.S. for this employer.