Security Data and Risk Analyst

The Company

Ivanti is a global technology leader, enabling organizations to thrive in the Everywhere Workplace – automating the tasks that discover, manage, secure and service all their IT assets. We deliver innovative solutions to exceed customer expectations. 

Ivanti's platform makes it possible for employees to stay productive, secure, and engaged wherever they are. That starts with us. With headquarters in Utah, offices in London and Paris and nearly 3,200 employees in 25 countries around the world, we are the Everywhere Workplace – it's a great time to work for Ivanti!

 The Team

Ivanti’s Information Security is a global team of experienced professionals dedicated to ensuring the security of Ivanti’s products, corporate and production networks, environments, and of course, its data. Ivanti’s innovative solutions are used by customers in every industry and every part of the world. To stay ahead of potential threats, Information Security has a strong partnership with all parts of the business, providing proactive solutions that are deeply integrated throughout the organization and our products.

 Our Culture

Teamwork is intrinsic to what we do and who we are. We are accountable to each other – and support one another. We provide opportunities to grow, learn, add value, and thrive while working to achieve new levels of performance. We value integrity, dignity, and respect, and place importance on demonstrating appreciation through both action and words.

The technology world is battling cyberterrorism. We wake up every day with a commitment to enable, prepare, and protect our customers so they can drive their own business success. When our customers, our governments, and our people are protected from threats – We WIN!

We start with the end goal in mind – for our customers, employees, partners, and investors.

With performance-driven attitudes – our victory is reaching target outcomes. 

The Critical Role For You

As part of the Information Security Risk Management Team, you will lead the execution of multiple functions: Taking ownership of and creating awareness around security-relevant key performance and key risk indicators; Creating dynamic dashboards and presentations; Managing the Security Council workstreams, including coordinating stakeholders updates; Tracking and reporting on key milestones/objectives; Supporting weekly briefs; and Enabling multi-tiered risk and security reporting.

Critical priorities include rapid-paced learning and adoption, flexible responsiveness, and self-starting initiative to propose structure and automation and long-term improvements of reporting and risk functions.

The primary focus of this position in Information Security is to generate enterprise visibility, awareness and understanding of major risk and security issues in a comprehensive and easily consumed manner to support the corporate objectives and especially the reduction of risk.

Your performance in this role will be rated on your ability to think critically, work independently and autonomously to complete challenging projects and long-term work. You will be required to conduct at least one interview in person, and you will need to provide proof of identity, on screen evidence of integrity of identity, and be able to receive a deep background check with a variety of investigations.

To Be Successful in The Role, You Should Be Able to: 

• Understand and speak to corporate and technology information/cyber security from experience in different environments.
• Articulate risk and risk management as realistic, measurable harm.
• Develop and implement structured, effective and data-driven reporting, metrics and dashboards.
• Coordinate, chair and/or present data to management, leadership and C-suite stakeholders in their languages.
• Develop automation for data gathering, analysis and presentation.
• Educate as well as inform audiences of a wide variety of security and risk expertise, including building libraries of material to support understanding of benefits and costs of security management.
• Perform additional job duties as required.

 You Can Leverage Your Expertise to:

• Evaluate information for honesty, accuracy, and relevance.
• Communicate complex information, concepts, or ideas in a confident and well-organized manner.
• Prepare and present briefings; Produce technical documentation.
• Function effectively in a dynamic, fast-paced environment
• Think critically; Work autonomously and manage time, projects, and tasks effectively.
• Understand the basic concepts and issues related to cyber and its organizational impacts.

You Should be Knowledgeable In:

• Cybersecurity threats, vulnerabilities, valued assets and ownership.
• Cybersecurity incident response, vulnerability management, devsecops, operations, threat intelligence.
• Risk Management identification, assessment, measurement, treatment and tracking of risks.
• Cybersecurity principles used to manage risks related to the use, processing, storage, and transmission of information or data.
• Not relevant: Audit, Compliance or Governance experience.

Qualifications:

• A minimum of a bachelor’s degree, preferably in information systems or data analytics with three years security experience, or a degree in any field plus five years security experience.
• Five years minimum (can overlap with security experience) conducting reporting operations such as presentations, metrics, dashboards, KPIs, KRIs, OKRs.
• Two years full time or aggregated over longer period executing/leading project management efforts in a technology-related arena.
• Can show evidence has created effective KPIs, KRIs and OKRs and a means to measure and report each.
• Familiarity with the following: NIST, ISO, SOC2, FedRAMP, Privacy, GDPR and DORA principles.
• Experience with cloud, onprem, corporate, remote and transformative environments.

Preferences:

• Project Management information technology/security lead experience that included building own metrics and presentations.
• Risk Management information security/cybersecurity lead experience including building own metrics presentations.
• Security certifications (ex. CISSP), Project Management certifications (ex. PMP), Risk Management certifications (ex. COBIT, CRISC) or Information Technology certifications (ex. ITIL)

 Our Employer Commitment

This job posting will remain active until a qualified candidate is identified.

At Ivanti, we are committed to providing an environment of mutual respect where equal employment opportunities are available to all applicants and teammates without regard to race, color, religion, sex, pregnancy (including childbirth, lactation and related medical conditions), national origin, age, physical and mental disability, marital status, sexual orientation, gender identity, gender expression, genetic information (including characteristics and testing), military and veteran status, and any other characteristic protected by applicable law.

We invite individuals of all backgrounds and abilities to apply. If you require assistance to optimize your interview experience, please contact us at recruiting@ivanti.com.