Responsible for supporting the organization's compliance with regulatory information security requirements and effective management of information security risks. Under direct supervision, this role helps implement and maintain information security policies, participates in risk assessments, and assists with ensuring organizational alignment to legal and regulatory standards. This role contributes to safeguarding company assets by helping identify vulnerabilities, supporting risk mitigation activities, collecting and updating relevant data, and advancing a culture of security awareness and operational resilience within the organization.

ESSENTIAL FUNCTIONS

• Assist in the implementation of an integrated Governance, Risk, and Compliance (GRC) program and tools to support GRC workflows, which align with organizational objectives and regulatory requirements.
• Apply established enterprise-wide information security policies, standards, and procedures to support robust information security and operational resilience.
• Assist in conducting risk assessments, including business impact assessments, third party risk assessments, and assessments of cloud systems. Communicate risk assessment results to requestors.
• Follow-up on the results of risk mitigation strategies documenting the response across business units and with external partners.
• Advance the culture of compliance and resilience by assisting with enterprise-level information security awareness and business resilience training campaigns and tabletop exercises.
• Collaborate with team members to share information, interpret requirements, and resolve issues related to governance, risk and compliance.
• Use dashboards and reports to measure and monitor risk trends, compliance metrics, and strategic security objectives and communicate results to GRC leadership. Retrieve data and manually update KPIs as directed.
• Participate in training and learning opportunities to develop skills and stay current with information security best practices.

ADDITIONAL RESPONSIBILITIES

• ORGANIZATIONAL IMPACT: Works to deliver day-to-day objectives with significant impact on achievement of results for the job area and which may have some impact on the overall achievement of results for the job area.
• INNOVATION & COMPLEXITY: Checks and makes adjustments to work methods to solve problems that are typically not routine and do not exist in current work processes and systems. Highlights areas of concerns/problems and puts forth solutions in own job area. Problems and issues faced are general, and may require understanding of broader set of issues, and some analysis to understand and resolve.
• COMMUNICATION & INFLUENCE: Communicates with contacts typically within and outside of their job area on matters that involve obtaining or providing information on matters of moderate importance. Explains practices, procedures and policies.

QUALIFICATIONS

Education - Required

• Bachelor’s Degree in science, technology, engineering or math discipline or
• High School Diploma/GED and 3 years preferred experience

Experience - Required

• Less than 1 year related work experience

Experience - Preferred

• 3 years related work experience

VALUES AND HABITS

Put People First​

• Put People First: Create a safe environment where all colleagues feel supported and motivated to be their best at work.
• Build relationships: Build belonging, empathy, and collaboration.
• Engage with grace: Assume positive intent and share your perspective thoughtfully.
• Create moments: Affirm and acknowledge the contributions and efforts of others.​

Do What's Right​

• Do What’s Right: Focus on how we work most effectively to get the best results.
• Prioritize What Matters: Clarify what’s most critical and why.​
• Align on Expectations: Translate priorities into agreed upon accountabilities and outcomes.
• Act with integrity: Behave ethically and honestly in all interactions and business practices.

Pursue Excellence​

• Pursue Excellence: Focus on learning and growth. ​
• Look and Listen: Explore new ways of working and stay curious by learning from others.
• Innovate with Intent: Try new ideas that support organizational priorities.
• Value Lessons Learned: Acknowledge progress and insights that come from striving to improve.