Sr Analyst, Cyber Security
Stanley Black & Decker, Inc., New Britain, CT, United States
Sr Analyst, Cyber Security
New Britian, CT USA
Responsibilities
Lead and support cybersecurity compliance initiatives, ensuring alignment with frameworks (ISO 27001, NIST, PCI DSS, SOX, NIS 2).
Monitor and assess the effectiveness of cybersecurity and compliance controls, recommending enhancements and remediation strategies.
Collaborate with IT, security, and business teams to resolve audit findings and compliance issues; elevate high-risk or unresolved issues as needed.
Maintain up-to-date knowledge of regulatory requirements, standards, and best practices.
Prepare and deliver compliance and audit reports to management and regulatory authorities, track and report on compliance metrics and remediation progress.
Support and prepare for third-party and external audits, acting as liaison with auditors and regulators.
Develop and deliver training and awareness programs on cybersecurity compliance; provide guidance to staff on compliance and audit requirements.
Develop, maintain, and update IT GRC documentation (policies, procedures, risk registers, control matrices, compliance checklists).
Identify, evaluate and report on control gaps; maintain a log of compliance and audit issues and their resolution status.
Collaborate across departments to ensure company-wide compliance and effective resolution of issues.
Proactively identify emerging risks and propose innovative solutions to strengthen cybersecurity posture.
Qualifications
Bachelor’s degree in Information Security, Computer Science, or a related field.
3+ years of experience in cyber security, IT audit, or IT GRC roles.
Professional certifications such as CISA, CISSP, CISM, or CRISC highly desirable.
Strong knowledge of IT security frameworks (e.g., NIST, ISO) and regulatory requirements.
Experience conducting IT security audits.
Benefits
Competitive salary.
Medical, dental, life, vision, disability, 401(k), Employee Stock Purchase Plan, paid time off, and tuition reimbursement, plus wellness program.
Discounts on Stanley Black & Decker tools and partner programs.
Visa Sponsorship
This role is not eligible for visa sponsorship (H1B, OPT/CPT, TN, etc.).
EEO Statement
All qualified applicants to Stanley Black & Decker are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran’s status or any other protected characteristic. If you require reasonable accommodation to complete an application or access our website, please contact us at (860) 827-3923 or at accommodations@sbdinc.com. Due to volume, we cannot respond to unrelated inquiries about the status of a completed application or resetting an account password.
Know Your Rights: Workplace discrimination is illegal (eeoc.gov)
#J-18808-Ljbffr
New Britian, CT USA
Responsibilities
Lead and support cybersecurity compliance initiatives, ensuring alignment with frameworks (ISO 27001, NIST, PCI DSS, SOX, NIS 2).
Monitor and assess the effectiveness of cybersecurity and compliance controls, recommending enhancements and remediation strategies.
Collaborate with IT, security, and business teams to resolve audit findings and compliance issues; elevate high-risk or unresolved issues as needed.
Maintain up-to-date knowledge of regulatory requirements, standards, and best practices.
Prepare and deliver compliance and audit reports to management and regulatory authorities, track and report on compliance metrics and remediation progress.
Support and prepare for third-party and external audits, acting as liaison with auditors and regulators.
Develop and deliver training and awareness programs on cybersecurity compliance; provide guidance to staff on compliance and audit requirements.
Develop, maintain, and update IT GRC documentation (policies, procedures, risk registers, control matrices, compliance checklists).
Identify, evaluate and report on control gaps; maintain a log of compliance and audit issues and their resolution status.
Collaborate across departments to ensure company-wide compliance and effective resolution of issues.
Proactively identify emerging risks and propose innovative solutions to strengthen cybersecurity posture.
Qualifications
Bachelor’s degree in Information Security, Computer Science, or a related field.
3+ years of experience in cyber security, IT audit, or IT GRC roles.
Professional certifications such as CISA, CISSP, CISM, or CRISC highly desirable.
Strong knowledge of IT security frameworks (e.g., NIST, ISO) and regulatory requirements.
Experience conducting IT security audits.
Benefits
Competitive salary.
Medical, dental, life, vision, disability, 401(k), Employee Stock Purchase Plan, paid time off, and tuition reimbursement, plus wellness program.
Discounts on Stanley Black & Decker tools and partner programs.
Visa Sponsorship
This role is not eligible for visa sponsorship (H1B, OPT/CPT, TN, etc.).
EEO Statement
All qualified applicants to Stanley Black & Decker are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran’s status or any other protected characteristic. If you require reasonable accommodation to complete an application or access our website, please contact us at (860) 827-3923 or at accommodations@sbdinc.com. Due to volume, we cannot respond to unrelated inquiries about the status of a completed application or resetting an account password.
Know Your Rights: Workplace discrimination is illegal (eeoc.gov)
#J-18808-Ljbffr