IT Risk and Compliance Analyst

Green Bay, WI - Corporate, 1330 Bellevue Street, Green Bay, Wisconsin, United States of America Req #2002
Monday, May 15, 2023
At KI, we believe knowing our customers helps us serve them better. We listen. We observe. We understand that each customer has unique needs. So, we pride ourselves on helping our customers make smart  furniture decisions by offering expert advice, design options and personalized solutions.Since 1941, we’ve positioned KI as the furniture company that best understands the furniture industry and is committed to providing customers with the smart solutions. By targeting specific markets with solutions for business furniture, university furniture, educational furniture, healthcare furniture and government furniture, we can quickly respond to our customers’ unique needs – including the choice to procure furniture according to what fits their ordering and fulfillment process. That’s why we say we offer far more than furniture. We’re Furnishing Knowledge.
KI has an immediate opening for an IT Risk & Compliance Analyst based out of our Corporate Headquarters. This position will be located on-site at our Corporate Office in Green Bay, WI.

The IT Risk & Compliance Analyst develops, implements, and maintains IT security policies, as well as workforce training and awareness.  This position assists in designing and implementing controls to ensure compliance across all KI locations and third-party partners.  This position is also responsible for assessing and prioritizing Cybersecurity risk across the organization and facilitating compliance with IT security policies and regulatory requirements.

Essential Duties and Responsibilities:
Develop and implement security policies, procedures, standards, and guidelines in alignment with the organization’s Cybersecurity program and CMMC framework.
Design and document technical, administrative, and physical controls to ensure organizational compliance.
Develop and maintain the IT Security risk register and risk reporting framework.
Assist in the development and maintenance of business recovery plans to ensure timely and effective restoration of data and IT services in the event of an incident.
Perform supplier/vendor risk assessments to ensure supply chain risk is managed throughout the partner’s lifecycle.
Assist with reviewing and updating IT Security content in supplier/vendor contracts, identifying gaps, and recommending remedial steps.
Maintain inventory of suppliers/vendors, secure scores, controls, and risks for ongoing management of vendor risks.
Develop and administer the organizational security awareness training program.

Qualifications and Requirements:
Bachelor’s Degree in Computer Science or related field; or 4 years of relevant work experience
3+ years of work experience in a risk/compliance role preferred
CISSP, CRISC or equivalent certification preferred

Knowledge, Skills, and Abilities:
Knowledge of information security principles, including risk assessment, threat and vulnerability management, incident response, and awareness training.
Demonstrated understanding of the Cybersecurity Maturity Model Certification (CMMC) or other NIST frameworks.
Knowledge of governance, risk, and compliance frameworks and practices.
Practical experience with security-related systems and applications.
Experience with developing and maintaining security documentation.

KI takes pride in being 100% employee owned. Our Employee Share Ownership Program is very valued within the company and can have amazing long-term value!  Other benefits include paid vacation, sick and holidays, medical, dental, vision and life insurance, short- and long-term disability, 401(k) match, wellness initiatives, tuition reimbursement and more.

KI is an Equal Opportunity Employer.

Other details

  • Job Family Information Technology
  • Pay Type Salary
Location on Google Maps
  • Green Bay, WI - Corporate, 1330 Bellevue Street, Green Bay, Wisconsin, United States of America