Junior IT Risk Analyst

Description

Job Summary: We are seeking a Junior IT Risk Analyst to support the management of IT controls / NIST CSF 2.0 and conduct vulnerability analyses to identify security gaps. Key Highlights: 1. Support the management of IT general controls / NIST CSF 2.0 2. Conduct vulnerability assessments and identify security gaps 3. Collaborate in understanding IT and OT risks We are looking for a **Junior IT Risk Analyst**, passionate about quality, innovation, and developing high-impact products. If you are motivated to work on challenging projects with multidisciplinary teams and cutting-edge technologies, this opportunity is for you! **Your primary mission will be to support:** * The management of IT general controls / NIST CSF 2\.0 * Conducting vulnerability assessments and identifying security gaps. **2\. Key Responsibilities (Functions)** * **IT General Controls (ITGC) Management / NIST CSF 2\.0\):** Support the design, implementation, monitoring, and auditing of IT general controls (access, change management, operations, etc.). * **Vulnerability Analysis:** Execute and monitor vulnerability analysis across the technology infrastructure using the **CrowdStrike** tool, managing the full lifecycle of findings (detection, prioritization, and remediation tracking). * **Security Gap Identification:** Monitor and analyze alerts to identify potential security gaps or weaknesses in the IT infrastructure. * **Support in Hybrid Environments:** Collaborate in understanding risks and convergence between traditional IT infrastructure and Operational Technology (OT) infrastructure at the production plant. * **Documentation and Reporting:** Prepare technical and executive reports on the status of controls, identified vulnerabilities, and progress of mitigation plans. Profile with up to 2–3 years of experience Hybrid: 4x1 Schedule: Monday–Thursday 9 AM–6 PM, Friday 9 AM–3 PM