Senior Cyber Risk Analyst at Rite-Hite Holding Corporation in Milwaukee, Wisconsin

Job Description:

Company Description:

Rite-Hite is the global leader in the manufacture and distribution of industrial loading dock and door equipment.  Our innovative products and world class sales organization ensure solid, consistent growth, both for our company and our staff.  We are always looking ahead to develop innovative new products and services to improve our customers' safety, security, and productivity. To continue our growth, we have an excellent opportunity for a Senior Cyber Risk Analyst at our new headquarters in Milwaukee, WI. 

Job Description:

The position is responsible for participating in maintaining compliance, and/or building and executing a compliance program which is aligned with SOC 1, SOC2, ISO27001, ISO27017 or ISO 27018 This includes but is not limited to the following activities

Design and maintain controls.

• Document systems, processes and controls using narratives.


• Evaluate design and operating effectiveness of controls to identify and recommend business process changes resulting in strengthened internal controls.


• Coordinate external auditors, prepare controls owners, review, and collect required evidence as needed to meet compliance requirements.


• Collaborate with control owners to remediate control gaps and track the remediation efforts.


• Support the business teams with establishing new procedures/policies and ensure alignment with regulations/standards.


• Drive internal assessment and compliance of our controls with the implementation of control monitoring.


• Function as technical SME during internal and external audits.


• Work closely with internal stakeholders to educate them and achieve compliance over technology control environment


• Develop, maintain, report on key risk metrics.


• Communicate progress, escalations, and issue resolution to management and team stakeholders.

Responsible for evaluating external organizations and their products for security risks and recommend necessary controls prior to integration.

• 
  
  
  
  • Review and control internal and external data loss vectors and associated risks.
  
  
  • Assist with the development, periodic review, and compliance of cyber security policies, procedures and standards as they pertain to vendor partnerships.
  
  
  • Work in a cross functional capacity with procurement, IT, Systems and Network, MIS, Customer Service and other teams to assist with the security analysis of potential vendors and products.
  
  
  • Assess technical security risks associated with new and existing vendor technology integrations.
  
  
  
  

Responsible for end-user cybersecurity & phishing education.

Required Experience: 

• 3 - 5+ years of security/IT Governance, Risk, and Compliance or equivalent experience


• Hands-on experience with auditing security frameworks such as SOC 1, SOC 2, and/or ISO27001


• BA or BS in a technical field or equivalent experience


• Ability to accomplish outcomes effectively and autonomously across cross-functional teams in ambiguous situations with minimal supervision


• Proven understanding and audit experience of cloud technologies such as AWS, Microsoft Azure, and GCP


• Ability to thrive in a dynamic, fast-paced environment.


• Strong analytical, research, and problem-solving skills.

We Offer:

Rite-Hite provides competitive compensation and a comprehensive benefits package with medical, dental, and vision coverage along with life and paid medical leave. We also provide a retirement savings plan that combines 401(K) with company match and profit sharing. Paid holidays, vacation, and up to five paid personal/sick days per year round out the package.

Rite-Hite is an Equal Opportunity/Affirmative Action employer offering a drug free workplace for our customers and employees.

See job description