Information Security Analyst 2
Both roles are targeted to be based in Chandler, though I can also consider Charlotte for top talent . At this time, Minneapolis is not an option for these positions.
Information Security Analyst 2 Contingent
Cybersecurity Information Protection Domain
Role Summary
Information security analyst performing execution focused governance and risk management support. The role supports Enterprise Information Security policy compliance, security assessment remediation, control testing, reporting, and awareness activities. This position contributes to enterprise risk management and audit readiness through accurate execution, strong attention to detail, and adherence to established processes and standards.
What Success Looks Like
Jira issues are accurate, up to date, and audit ready at all times
Assessment findings are supported by complete, well organized evidence
Assigned governance tasks are executed on time, with minimal rework and clear documentation
Core Responsibilities
Support information security governance activities to improve compliance with Enterprise Information Security policies, processes, and standards
Assist with remediation of security assessment findings, including tracking, validation, evidence review, and follow up
Support review of assessment results and mitigating controls under guidance from more experienced staff
Participate in security control testing activities and consultation with application, governance, policy, and technical teams
Perform data aggregation, analysis, and reporting to support information security risk management
Deliver existing Information Security education and awareness materials by guiding stakeholders to approved policies, standards, and desktop procedures
Review draft control standards and provide feedback on clarity and documented requirements
Maintain accurate, timely, and audit defensible documentation and reporting artifacts
Update and maintain Jira tickets, including workflow status, comments, evidence, and remediation tracking
Collaborate with peers, managers, and internal stakeholders to resolve issues and meet defined governance outcomes
Required Experience
Cybersecurity, information security, Governance, Risk, and Controls (GRC), or IT risk management experience
Experience supporting security assessments, compliance reviews, or remediation activities
Experience working in regulated enterprise environments with documented risk or audit expectations
Experience supporting metrics, dashboards, or reporting activities
Strong attention to detail with demonstrated ability to follow established procedures
Demonstrated ability to follow defined processes while maintaining high standards for accuracy and completeness
Clear written and verbal communication skills suitable for technical and governance audiences
Ability to manage assigned work independently while seeking guidance when appropriate
Required Tools & Skills
Jira (required) working knowledge including updating tickets, maintaining workflow hygiene, documenting evidence, and supporting audit traceability
Microsoft Excel (data analysis, reconciliation, validation)
Microsoft PowerPoint (summaries and reporting materials)
Experience with enterprise metrics, data, and reporting platforms
Ability to document and communicate information security requirements and risks clearly in writing
Experience using enterprise approved generative AI tools with understanding of appropriate use and human in the loop expectations
Desired / Preferred Skills
Microsoft Lists for tracking, documentation, or evidence management
Power Automate for workflow or notification support
Information protection or data security experience
Audit or regulatory support experience
Additional Notes
Individual contributor role focused on execution, accuracy, and consistency
Work is operationally important and requires strong follow through
Expected to apply established standards and procedures with minimal supervision
Opportunity to grow into increased responsibility with demonstrated performance
Information Security Analyst 2 Contingent
Cybersecurity Information Protection Domain
Role Summary
Information security analyst performing execution focused governance and risk management support. The role supports Enterprise Information Security policy compliance, security assessment remediation, control testing, reporting, and awareness activities. This position contributes to enterprise risk management and audit readiness through accurate execution, strong attention to detail, and adherence to established processes and standards.
What Success Looks Like
Jira issues are accurate, up to date, and audit ready at all times
Assessment findings are supported by complete, well organized evidence
Assigned governance tasks are executed on time, with minimal rework and clear documentation
Core Responsibilities
Support information security governance activities to improve compliance with Enterprise Information Security policies, processes, and standards
Assist with remediation of security assessment findings, including tracking, validation, evidence review, and follow up
Support review of assessment results and mitigating controls under guidance from more experienced staff
Participate in security control testing activities and consultation with application, governance, policy, and technical teams
Perform data aggregation, analysis, and reporting to support information security risk management
Deliver existing Information Security education and awareness materials by guiding stakeholders to approved policies, standards, and desktop procedures
Review draft control standards and provide feedback on clarity and documented requirements
Maintain accurate, timely, and audit defensible documentation and reporting artifacts
Update and maintain Jira tickets, including workflow status, comments, evidence, and remediation tracking
Collaborate with peers, managers, and internal stakeholders to resolve issues and meet defined governance outcomes
Required Experience
Cybersecurity, information security, Governance, Risk, and Controls (GRC), or IT risk management experience
Experience supporting security assessments, compliance reviews, or remediation activities
Experience working in regulated enterprise environments with documented risk or audit expectations
Experience supporting metrics, dashboards, or reporting activities
Strong attention to detail with demonstrated ability to follow established procedures
Demonstrated ability to follow defined processes while maintaining high standards for accuracy and completeness
Clear written and verbal communication skills suitable for technical and governance audiences
Ability to manage assigned work independently while seeking guidance when appropriate
Required Tools & Skills
Jira (required) working knowledge including updating tickets, maintaining workflow hygiene, documenting evidence, and supporting audit traceability
Microsoft Excel (data analysis, reconciliation, validation)
Microsoft PowerPoint (summaries and reporting materials)
Experience with enterprise metrics, data, and reporting platforms
Ability to document and communicate information security requirements and risks clearly in writing
Experience using enterprise approved generative AI tools with understanding of appropriate use and human in the loop expectations
Desired / Preferred Skills
Microsoft Lists for tracking, documentation, or evidence management
Power Automate for workflow or notification support
Information protection or data security experience
Audit or regulatory support experience
Additional Notes
Individual contributor role focused on execution, accuracy, and consistency
Work is operationally important and requires strong follow through
Expected to apply established standards and procedures with minimal supervision
Opportunity to grow into increased responsibility with demonstrated performance
