Talent.com
Risk Analyst - Information Security

Risk Analyst - Information Security

WabtecChicago, IL
job_description.job_card.30_days_ago
serp_jobs.job_preview.job_type
  • serp_jobs.job_card.full_time
job_description.job_card.job_description

It’s not just about your career or job title… It’s about who you are and the impact you will make on the world. Because whether it’s for each other or our customers, we put People First. When our people come together, we Expand the Possible and continuously look for ways to improve what we create and how we do it. If you are constantly striving to grow, you’re in good company. We are revolutionizing the way the world moves for future generations, and we want someone who is ready to move with us.

Who will you be working with?

Our best-in-class Enterprise Information Security team combines knowledge of security services to areas within Information Technology and provide in-depth and highly technical information security consulting and services focused on the enterprise services IT provides to ensure confidentiality, integrity and availability of these systems.

How will you make a difference?

As a member of the IT Business Information Security Team, you will be responsible for staying abreast of developments within the field and contribute to directional strategy by considering all present risks internally and externally. You’ll work with partners to drive thoughtful remediation and enhancements to the organization’s risk posture. This role requires advanced understanding of challenges and common threats. This person will be responsible for developing, implementing, and operating a strategic, risk-based program for the Information Security Assurance team.

What do we want to know about you?

You must have :

  • Bachelor’s degree in Business, Technology, Cyber Security, Technology Risk Management or related field or hands-on and strong experience
  • 5+ years experience within IT operations, Security or Risk management
  • Strong analytical and problem-solving skills; ability to decipher and prioritize asks accordingly
  • Strong interpersonal skills.
  • Knowledge of industry Risk management frameworks, common mitigation practices, and\ Organizational control management.
  • Demonstrate professional skepticism to ensure evidence is sufficient when assessing the relevant information security controls.
  • Demonstrate an understanding of business processes, internal risk management strategies, IT controls, and how they interact together.
  • Demonstrate proficiency in process formulation and improvement.
  • Knowledge of operational security capabilities including access control, network security, secure configuration and vulnerability management, intrusion detection, security monitoring and incident response.
  • Experience with auditors, both internal and regulatory to drive positive audit results with strong remediation paths.
  • Proven solid written and oral communication skills with the ability to effectively communicate status, risks, and remediations to executive management.
  • ISO 27001 standard knowledge is highly desirable.
  • Governance and Risk Certification a plus (CRISC, CISM, CISA, or CISSP)

What will your typical day look like?

The ideal candidate will have experience building, operating, and maturing effective programs to manage Information Security Risks and their remediations.

  • Comprehensive Risk Identification, Assessment & Analysis : Lead and conduct comprehensive risk assessment to identify, prioritize and quantify potential and existing security threats and vulnerabilities across the organization’s systems, network, and applications.Utilize risk analysis methodologies and tools to assess the effectiveness of existing security controls and identify areas for improvement.Provide expert guidance on risk mitigation strategies and control implementation to minimize exposure to security risks.Develop risk management methodologies tailored to the organization’s specific risk profile and business priorities.Collaborate with stakeholders to establish risk tolerance levels and develop risk mitigation plans.
  • Risk Remediation Planning & Execution : Develop remediation plans based on the findings of risk assessments, prioritizing actions to address critical vulnerabilities and mitigate high-risk threats.Work closely with relevant stakeholders to implement security controls and measures to remediate identified risks effectively.Monitor the progress of remediation efforts and provide regular updates to management on the status of risk mitigation initiatives.Conduct post-remediation reviews and analysis to validate the effectiveness of remediation activities and identify any residual risks.
  • Risk-Awareness Culture : Drive clear, concise, pragmatic outcomes with senior business and technology leaders that balance risk with business objectives.Develop and implement security awareness programs and initiatives to educate employees on security risks, best practices, and their role in maintaining a secure environment.Foster a culture of accountability and responsibility for information security by encouraging active participation in risk identification, reporting, and mitigation efforts.Promote open communication channels for reporting concerns and potential risks, and ensure timely resolution and escalation as needed.
  • Business Awareness & Continual Improvement : Anticipate the needs of leadership and facilitate as well as motivate those around you to identify solutions that both improve the security of our environment and advance business objectives.Maintain an external network to ensure our organization continuously analyzes new threats, trends, innovations, etc. to ensure our strategy and priorities stay appropriately aligned.Present balanced viewpoints of options and recommendations based on strong front-to-back understanding of existing capabilities and frameworks combined with a strong understanding of emerging technologies and best practices.Be curious about our business and seek to understand.Create an environment of continual improvement both inside and outside of direct team.Bring new ideas, methods, and approaches to this role. Leverage own expertise to challenge the status quo and drive decisions and actions necessary to improve our business processes and related technology
  • Physical Demands :

  • Employee is required to work on a computer for up to 8 hours per day
  • Employee may be in a sitting position for several hours per day
  • Employee must be able to read small text on computer screens / monitors
  • Employee is regularly required to talk and hear
  • Work Environment :

    The employee will normally work in a temperature-controlled office environment, with frequent exposure to electronic office equipment. During visits to areas of operations, may be exposed to extreme cold or hot weather conditions, fumes or airborne particles, toxic or caustic chemicals, and loud noise.

    #LI-AZ1

    Our job titles may span more than one career level. The salary range for this role is between

    The actual salary offered to a candidate may be influenced by a variety of factors, such as : training, transferable skills, work experience, education, business needs, market demands and work location. The base pay range is subject to change and may be modified in the future. More information on offered benefits, which include health, welfare, and retirement, are available at mywabtecbenefits.com. Other benefit offerings for this role may include an annual bonus, if eligible.

    Who are we?

    Wabtec Corporation is a leading global provider of equipment, systems, digital solutions, and value-added services for freight and transit rail as well as the mining, marine, and industrial markets. Drawing on nearly four centuries of collective experience across Wabtec, GE Transportation, and Faiveley Transport, the company has grown to become One Wabtec, with unmatched digital expertise, technological innovation, and world-class manufacturing and services, enabling the digital-rail-and-transit ecosystems.

    Wabtec is focused on performance that drives progress and unlocks our customers’ potential by delivering innovative and lasting transportation solutions that move and improve the world. We are lifelong learners obsessed with making things better to drive exceptional results. Wabtec has approximately 27K employees in facilities throughout the world. Visit our website to learn more!

    Our Commitment to Embrace Diversity :

    Wabtec is a global company that invests not just in our products, but also our people by embracing diversity and inclusion. We care about our relationships with our employees and take pride in celebrating the variety of experiences, expertise, and backgrounds that bring us together. At Wabtec, we aspire to create a place where we all belong and where diversity is welcomed and appreciated.

    To fulfill that commitment, we rely on a culture of leadership, diversity, and inclusion. We aim to employ the world’s brightest minds to help us create a limitless source of ideas and opportunities. We have created a space where everyone is given the opportunity to contribute based on their individual experiences and perspectives and recognize that these differences and diverse perspectives make us better.

    We believe in hiring talented people of varied backgrounds, experiences, and styles… People like you! Wabtec Corporation is committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or expression, or protected Veteran status. If you have a disability or special need that requires accommodation, please let us know.

    serp_jobs.job_alerts.create_a_job

    Information Security Analyst • Chicago, IL

    Job_description.internal_linking.related_jobs
    • serp_jobs.job_card.promoted
    Risk Analyst

    Risk Analyst

    Health Care Service CorporationChicago, IL, US
    serp_jobs.job_card.full_time
    At HCSC, our employees are the cornerstone of our business and the foundation to our success.We empower employees with curated development plans that foster growth and promote rewarding, fulfilling...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    BSA Risk Analyst

    BSA Risk Analyst

    East West BancorpChicago, IL, US
    serp_jobs.job_card.full_time
    We are seeking a detail-oriented and academically strong BSA Risk Analyst to support the BSA / AML Risk Management program. This role will assist in the execution of Risk and Control Self-Assessments ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Information Security Engineer / Analyst

    Information Security Engineer / Analyst

    KonnectITChicago, IL, US
    serp_jobs.job_card.full_time
    Information Security Engineer / Analyst.The ideal candidate will bring expertise in.IPS / IDS, vulnerability management, incident response, and risk assessment. This role is critical to ensuring the c...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Information Systems Security Manager

    Information Systems Security Manager

    Kranze Technology Solutions, IncDes Plaines, IL, US
    serp_jobs.job_card.full_time
    The Information System Security Manager (ISSM) is responsible for applying and documenting Information System (IS) security principles, practices, and procedures under the Risk Management Framework...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Senior Analyst - Risk Strategic Initiatives

    Senior Analyst - Risk Strategic Initiatives

    BmoChicago, IL, US
    serp_jobs.job_card.full_time +1
    Senior Analyst Risk Strategic Initiatives.Job Family Group : Data Analytics & Reporting.BMO's integrated and disciplined approach to risk management is fundamental to the success of our business.Ou...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Cyber Threat Intelligence (CTI) Analyst

    Cyber Threat Intelligence (CTI) Analyst

    ShtudyChicago, IL, United States
    serp_jobs.job_card.full_time
    San Francisco, United States | Posted on 04 / 16 / 2025.Department : Information Security / Cybersecurity.S tech company is seeking a Cyber Threat Intelligence (CTI) Analyst to join a growing security t...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Risk Analyst I - Chicago, IL

    Risk Analyst I - Chicago, IL

    Archer Daniels MidlandChicago, IL, US
    serp_jobs.job_card.full_time
    This is an exempt level position.This position is responsible for daily monitoring of client account position and margining activities, identifying and issuing margin calls and monitoring collectio...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Information Security Transformation Lead - Data Leakage Prevention

    Information Security Transformation Lead - Data Leakage Prevention

    Hispanic Technology Executive CouncilChicago, Illinois, United States
    serp_jobs.job_card.full_time
    At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. We do this by driving Responsible Growth and delivering for our clien...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    CSOC CIR Tier II Analyst

    CSOC CIR Tier II Analyst

    PingWindHines, Illinois, United States, 60141
    serp_jobs.job_card.full_time
    On-site in Hines, IL Martinsburg, WV, or Austin, TX.Bachelor's degree in computer science, Cybersecurity, Information Technology, or a related field (or equivalent work experience).Security Operati...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Senior Information Security Engineer / Analyst

    Senior Information Security Engineer / Analyst

    KonnectITChicago, IL, US
    serp_jobs.job_card.full_time
    Senior Information Security Engineer / Analyst.The ideal candidate will have advanced expertise in.IPS / IDS, vulnerability management, incident response, risk and security assessments, and scripting...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    • serp_jobs.job_card.new
    Third Party Cyber Security Risk Analyst

    Third Party Cyber Security Risk Analyst

    TEKsystemsAbbott Park, Illinois, United States
    serp_jobs.job_card.full_time
    We Are Looking to Add a Key Member to Our Technology Risk Management Team!.The TPRM analyst is a member of the team that evaluates and monitors third party risks. The selected candidate will develop...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_hours
    • serp_jobs.job_card.promoted
    Manager, Information Security & Risk - IT Compliance

    Manager, Information Security & Risk - IT Compliance

    Hispanic Technology Executive CouncilChicago, Illinois, United States
    serp_jobs.job_card.full_time
    NYSE : CAH) is a global healthcare services and products company.We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, phy...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    Risk Analyst

    Risk Analyst

    Eagle SevenChicago, IL, US
    serp_jobs.job_card.full_time
    serp_jobs.filters_job_card.quick_apply
    Primary Responsibilities include : .Monitoring, measuring, and proactively communicating market risk exposure for current trading activities as well as emerging risks based on news events and economi...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Analyst - Compliance

    Analyst - Compliance

    Harper CollegePalatine, IL, US
    serp_jobs.job_card.full_time
    We are Harper Collegethe college in your community.The College was established by referendum in 1965 and opened September 1967. William Rainey Harper, a pioneer in the junior college movement in the...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    Information Security Specialist

    Information Security Specialist

    K2 IntegrityChicago, IL, US
    serp_jobs.job_card.full_time
    serp_jobs.filters_job_card.quick_apply
    K2 Integrity is seeking a highly skilled Information Security Specialist with a strong focus on security architecture to join our cybersecurity team. This candidate will be responsible for the opera...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Info Sec Insider Threat Alst

    Info Sec Insider Threat Alst

    Old National BankTinley Park, Illinois, United States
    serp_jobs.job_card.full_time
    US-IL-Tinley Park | US-IL-Chicago | US-IN-Evansville | US-MN-Lake Elmo | US-MN-St Louis Park | US-IN-Indianapolis | US-KY-Louisville | US-WI-Milwaukee | US-MI-Troy | US-WI-Madison | US-TN-Nashville...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Info Security Specialist III (SIEM / SOAR focused)

    Info Security Specialist III (SIEM / SOAR focused)

    LHHChicago, IL, US
    serp_jobs.job_card.full_time
    LHH is working with a client based in the Chicago Loop that is looking to hire a Information Security Analyst who has a strong background in SIEM and / or SOAR to join our client’s staff for a ...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Cyber Security Analyst

    Cyber Security Analyst

    160 Driving AcademyChicago, IL, US
    serp_jobs.job_card.full_time
    Our SaaS-based, cloud-first company is seeking a proactive Cyber Security Analyst.As a Cyber Security Analyst at our company, you are a vital member of the Information Security team.You will help s...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_variable_days
    • serp_jobs.job_card.promoted
    Cybersecurity Analyst

    Cybersecurity Analyst

    Blue Star Partners LLCLake Forest, IL, US
    serp_jobs.job_card.full_time
    Lake Forest, IL – onsite – local candidates only.The Cybersecurity Analyst will be responsible for performing cybersecurity assessments based on the NIST Framework.This role requires en...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30
    • serp_jobs.job_card.promoted
    Risk AnalystNewChicago, Illinois, United States

    Risk AnalystNewChicago, Illinois, United States

    Metropolis TechnologiesChicago, IL, US
    serp_jobs.job_card.full_time
    Metropolis is an artificial intelligence company that uses computer vision technology to enable frictionless, checkout-free experiences in the real world. Today, we are reimagining parking to enable...serp_jobs.internal_linking.show_moreserp_jobs.last_updated.last_updated_30