Republic Services

IT Risk and Compliance Analyst I

Republic Services

full-time

Posted on:

Location Type: Remote

Location: United States

Visit company website

Explore more

AI Apply
Apply

Tech Stack

Cyber Security

About the role

  • Perform comprehensive enterprise-wide IT risk assessments and audits, collaborating cross-functionally to identify, prioritize, and mitigate cyber risks and compliance issues.
  • Develop, implement, and maintain robust IT security policies, procedures, and controls aligned with organizational objectives, industry frameworks (e.g., NIST 800-53), and regulatory requirements (e.g., PCI DSS).
  • Design and execute engaging security awareness training programs and campaigns to cultivate a security-minded culture.
  • Create and maintain documentation related to IT risk and compliance activities.
  • Continuously monitor and evaluate emerging IT risks, regulatory changes, and industry trends to proactively adapt security and compliance controls.
  • Conduct third-party cyber risk assessments, ensuring vendors and partners align with core cyber and compliance standards.
  • Establish and maintain a comprehensive risk register, identifying, assessing, and mitigating IT security risks to enhance organizational resilience.
  • Provide expert guidance to stakeholders on interpreting and implementing company standards and regulatory requirements.
  • Complete inbound VSQs, RFPs, and RFIs, ensuring comprehensive and timely responses.
  • Other non-essential duties as assigned or may be necessary.

Requirements

  • Comprehensive knowledge of industry standards, frameworks (e.g., NIST-CSF), and regulatory requirements (e.g., PCI DSS).
  • Experience with Governance, Risk, and Compliance (GRC) tools.
  • Demonstrated experience in policy and procedure development.
  • Demonstrated experience in conducting risk assessments, audits, and developing mitigation strategies.
  • Ability to stay current with evolving cybersecurity threats, industry trends, and regulatory changes, applying this knowledge to enhance organizational security posture.
  • Detail-oriented with strong organization, prioritization and time management skills.
  • Critical thinking, ability to analyze complex IT risk and compliance challenges.
  • Proven ability to work collaboratively in cross-functional teams and build strong relationships with various stakeholders across the organization.
  • Strong communication skills to effectively interact with internal and external partners at all levels to resolve issues and provide solutions.
  • Intermediate to advanced proficiency in Microsoft Office suite, including Word, Excel and PowerPoint.
  • Professional certifications such as CISA, CRISC, GCCC, GSEC, CGRC, or similar - preferred.
Benefits
  • Comprehensive medical benefits coverage, dental plans and vision coverage.
  • Health care and dependent care spending accounts.
  • Short- and long-term disability.
  • Life insurance and accidental death & dismemberment insurance.
  • Employee and Family Assistance Program (EAP).
  • Employee discount programs.
  • Retirement plan with a generous company match.
  • Employee Stock Purchase Plan (ESPP).
  • Paid Time Off (PTO)
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
IT risk assessmentscyber risk mitigationIT security policiescompliance controlssecurity awareness trainingrisk register managementpolicy developmentrisk assessment auditsGovernance, Risk, and Compliance (GRC)cybersecurity threat analysis
Soft Skills
detail-orientedorganization skillsprioritizationtime managementcritical thinkingcollaborative teamworkrelationship buildingstrong communication
Certifications
CISACRISCGCCCGSECCGRC