Grainger company image
Grainger
North America's leading B2B supplier of maintenance, repair and operating supplies and related services.
View Profile
Jobs//Cybersecurity + IT//

Senior IT Risk & Compliance Analyst

Sorry, this job was removed at 2:15 a.m. (CST) on Monday, August 28, 2017
View 295 Jobs
Find out who's hiring in North Suburbs.
See all Cybersecurity + IT jobs in North Suburbs
View 295 Jobs
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
This position drives compliance of global business units with Grainger’s Global Risk Management and Compliance activities in alignment with Grainger’s IT Risk Management and Compliance Program.

Team member will assess processes to identify gaps in business processes and controls, and assist in the design and documentation of processes to address the gaps in order to drive compliance in alignment with the risk management framework. Additional responsibilities include design, implementation and facilitation of Risk Metrics and Measures and the Security Awareness programs. 


Description

  • Works with business teams across the global Grainger organization in executing the ES Compliance and Risk Management program framework, extending the processes as necessary to help global business partners identify information risk and manage mitigation to an acceptable level
  • Provides inputs to global risk management processes in developing controls needed for the mitigation of risk for business processes which are not compliant with information security and risk frameworks
  • Lead other team members within the Risk and Compliance organization in assessing risk, developing appropriate controls and advising on the creation of action plans to address gaps.
  • Collaboratively works to influence and socialize ES strategies, standards, policies, procedures, communications and governance.
  • Provides guidance with respect to needed changes to established IT Security policies based on day-to-day interactions with Grainger businesses.
  • Serves as subject matter expert in providing advice to global business units regarding actions necessary to ensure compliance with applicable frameworks including, but not limited to, Sarbanes-Oxley (SOX), the Payment Card Industry Data Security Standard (PCI DSS) and specific ISO, BS or other standards as required.
  • Takes actions as directed to ensure business awareness of Data Privacy guidance and appropriate engagement of Data Privacy office, as needed.
  • Provides advice to global business units on specific requirements to align business requirements with relevant global security frameworks, standards, policies, and procedures.  Proactively provides relevant inputs to the global risk framework based on the latest government and industry information regarding new threats and vulnerabilities and communicates relevant information to the appropriate teams, soliciting action plans if needed.
  • Coordinates deployment and measurement of security awareness efforts across Grainger  global business units
  • Works closely with global business, contract and legal teams to assess proposed terms and conditions to align with the appropriate risk profile and provide feedback as to any changes needed.
  • Monitors and manages Enterprise Systems risk register to ensure that all business risks are accurately represented and actively managed.
  • Aligns individual goals to Risk and Compliance team goals with S.M.A.R.T.  objectives
  • Recognizes opportunities to balance risk and creativity in quickly responding to business opportunities

The ideal candidate:

  • Possesses Awareness of auditing standards and frameworks (e.g. COBIT, ISO 27001), industry guidelines and laws (e.g. Sarbanes-Oxley Act and PCI DSS) and privacy concepts (EU Data Privacy Directive, HIPAA) helpful, but not required.
  • Experience working in a collaborative team
    environment with individuals at appropriate levels of the Company.
  • Understanding of continuous improvement concepts
    and ability to effectively incorporate those skills into day-to-day work.
  • Effective partnering skills, with solid verbal
    and written communication, facilitation, and interpersonal skills
  • Current CISA (Certified Information Security
    Auditor) and / or CISSP (Certified Information Systems Security Professional)
    and / or CIPP (Certified Information Privacy Professional) certifications
    helpful, but not required.
Job Segment: Risk Management, Information Systems, Information Security, M&A, Finance, Technology, Management                                                                                                     

Grainger is an Equal Opportunity Workplace and an Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.

  • EEO is the Law
  • EEO is the Law Poster Supplement
  • Pay Transparency
  • Accessibility
  • Policy Statement
  • © 2017. Grainger.  All Rights Reserved
  • Privacy Policy
See More
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Grainger Director, Product Management Matt Orscheln
Matt Orscheln
Director, Product Management
EMBRACE OPPORTUNITY
Learn new skills, explore new paradigms
Orscheln’s career has traversed nearly the entire Grainger organization, from finance to sales operations, pricing, merchandising and product management. In his current role, Orscheln works to ensure those he works with have similar opportunities by embracing transparency and helping team members explore avenues for success, build skills and cultivate curiosity about the company. “Our leadership development framework provides guidance for gaining skills in different parts of the business, helping team members to be successful in more advanced leadership roles,” he said.
Orscheln’s career has traversed nearly the entire Grainger organization, from finance to sales operations, pricing, merchandising and product management. In his current role, Orscheln works to ensure those he works with have similar opportunities by embracing transparency and helping team members explore avenues for success, build skills and cultivate curiosity about the company. “Our leadership development framework provides guidance for gaining skills in different parts of the business, helping team members to be successful in more advanced leadership roles,” he said.
My career has grown with Grainger, and in the process, I have gained experience and exposure to our business end-to-end.
Grainger Senior Product Manager Ling Ouyang
Ling Ouyang
Senior Product Manager
CUTTING-EDGE FOCUS
Develop innovative solutions to customers’ needs
As a product manager with a computer science and machine learning background, Ouyang focuses on using technology to improve Grainger’s customer experience and streamline its processes. This means leveraging AI to develop tools that help customers search for products and enable Grainger team members to understand customers’ needs more effectively. “We are encouraged to grow our skills and develop new solutions through regular interaction with customers,” Ouyang said. She credits these interactions with shaping Grainger’s high-tech approach to serving its customers.
As a product manager with a computer science and machine learning background, Ouyang focuses on using technology to improve Grainger’s customer experience and streamline its processes. This means leveraging AI to develop tools that help customers search for products and enable Grainger team members to understand customers’ needs more effectively. “We are encouraged to grow our skills and develop new solutions through regular interaction with customers,” Ouyang said. She credits these interactions with shaping Grainger’s high-tech approach to serving its customers.
Grainger encourages us to develop innovative solutions by providing us with opportunities to interact with customers and operational teams as well as support and guidance from our leaders.
Rachel Trana
Manager, Product Engineering
JOIN THE TEAM
Learn from expert leaders in tech
Trana joined the Grainger team after working for nearly a decade as a computer science professor. “I was drawn to leadership’s strong investment in our teams' success and their desire to drive modern technical and process changes to improve the ways in which teams work,” Trana said. Now managing Grainger’s KeepStock (R) engineering teams, Trana works on the company’s inventory management platform, developing the underlying APIs and algorithms that support it. To this end, her teams rely on a diverse tech stack, including Docker, AWS, Java, Kafka, Snyk, Kotlin and Spring Boot, GitHub and Helm.
Trana joined the Grainger team after working for nearly a decade as a computer science professor. “I was drawn to leadership’s strong investment in our teams' success and their desire to drive modern technical and process changes to improve the ways in which teams work,” Trana said. Now managing Grainger’s KeepStock (R) engineering teams, Trana works on the company’s inventory management platform, developing the underlying APIs and algorithms that support it. To this end, her teams rely on a diverse tech stack, including Docker, AWS, Java, Kafka, Snyk, Kotlin and Spring Boot, GitHub and Helm.
Our team feels empowered to own decisions and commitments, engage in constructive debate and decision making. We trust each other and actively listen and collaborate.
Grainger Director, Product Management Matt Orscheln
Grainger Director, Product Management Matt Orscheln
Grainger Senior Product Manager Ling Ouyang
Grainger Senior Product Manager Ling Ouyang

What are Grainger Perks + Benefits

Grainger Benefits Overview

With benefits starting day one, Grainger is committed to your safety, health and wellbeing. Our benefits provide a wide range of programs and resources for nearly every aspect of the full life you and your family lead – supporting your life today and in the future.

Some benefits are provided automatically, while others are offered at reduced group rates. Whatever you need, you’ve got this because you’ve got Grainger. Visit GraingerTotalRewards.com for a complete picture.

Culture
Volunteer in local community
Partners with nonprofits
Open door policy
Employee resource groups
Employee-led culture committees
Quarterly engagement surveys
Hybrid work model
In-person all-hands meetings
Employee awards
Flexible work schedule
Remote work program
Diversity
Dedicated diversity and inclusion staff
Highly diverse management team
Mandated unconscious bias training
Diversity manifesto
Diversity employee resource groups
Team members connect in, African American, Asian-Pacific Islander, Disability, Equality Alliance, Generational, Latino, Veterans and Women's Business Resource Groups.
Hiring practices that promote diversity
Diversity recruitment program
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Pet insurance
Wellness programs
Mental health benefits
Transgender health care benefits
Abortion travel benefits
Financial & Retirement
401(K)
Team members can contribute up to 75% of pay up IRS limits on a pre- or post-tax basis. Your contributions are always 100% vested.
401(K) matching
Grainger automatically contributes 6% of your eligible pay into your retirement savings plan account each pay period. This contribution is always 100% vested.
Employee stock purchase plan
You are eligible to participate in Grainger's ESPP once you have completed at least 90 days of service and are regular full-time or regular part-time, scheduled to work at least 20 hours a week.
Performance bonus
Charitable contribution matching
For every $1 a team member donates to charity, Grainger amplifies that impact with a $3 matched donation.
Child Care & Parental Leave Benefits
Generous parental leave
Family medical leave
Adoption Assistance
Grainger supports team members and their families who are in the process of adopting by reimbursing up to $6,000 per adoption for eligible expenses.
Return-to-work program post parental leave
Fertility benefits
Vacation & Time Off Benefits
Generous PTO
Paid volunteer time
Paid holidays
Flexible time off
Bereavement leave benefits
Office Perks
Commuter benefits
Company-sponsored outings
Free snacks and drinks
Beverages and coffee on demand in our downtown locations.
Onsite office parking
We offer employees discounted parking rates at our Chicago office locations.
Relocation assistance
Mother's room
Onsite gym
Professional Development Benefits
Job training & conferences
Tuition reimbursement
Our tuition reimbursement plan covers the first $5,250 per year towards a degree program. Amounts that exceed $5,250 are reimbursed at 50% and there is no program maximum.
Lunch and learns
Promote from within
Mentorship program
Continuing education available during work hours
Online course subscriptions available
Customized development tracks
Paid industry certifications
Personal development training
View full list of perks + benefits
Photo Gallery

More Jobs at Grainger

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
Save job
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about GraingerFind similar jobs like this