Sr Analyst, BISO
Sr Analyst, BISO
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Waste Management (WM) a Fortune 250 company is the leading provider of comprehensive waste and environmental services in North America. We are strongly committed to a foundation of operating excellence professionalism and financial strength. WM serves nearly 25 million customers in residential commercial industrial and municipal markets throughout North America through a network of collection operations transfer stations landfills recycling facilities and waste-based energy production projects.
To enable our business to expand our lead in a market increasingly enhanced by technology Waste Management is undertaking a substantial technology transformation. We are seeking talented Information Technology professionals to join the Waste Management team who are motivated to help us transform the way we design build and use technology. With your skills and experience we look for you to combine your technical expertise with industry best practices in an effort to align information technology solutions with Waste Management business strategy.
I. Job Summary
As a Senior Analyst in Cybersecurity supporting the Business Information Security Office (BISO) for the Digital function you will serve as the strategic interface between Cybersecurity and WMs Digital teams. This role is essential in enabling secure innovation by advising on risk aligning security controls with business priorities and promoting a culture of security within the Digital space including Strategy & Planning Foundational Services Quality Assurance and other digital support areas.
You will be responsible for assessing and communicating cybersecurity risks enabling secure project delivery and managing third-party and operational risk while supporting digital transformation efforts. In this horizontal BISO role you will provide end-to-end visibility into the risk posture of digital functions and advocate for security by design in operational and architectural decisions.
While deep technical experience is not required familiarity with IT operations enterprise architecture or infrastructure services is a strong plus. Your ability to translate technical risks into business impact and drive secure outcomes across stakeholders will be key to your success.
Duties and Responsibilities
To perform this job successfully an individual must be able to perform the essential duties satisfactorily. Other minor duties may be assigned and may vary by location.
- Build trusted advisor relationships with Foundational Services and Digital leadership to align cybersecurity strategy with business priorities
- Translate technical risks and emerging threats into actionable guidance for Digital stakeholders
- Manage and report cybersecurity risks related to Digital systems third parties and operational tools; develop mitigation strategies and track resolution
- Represent Cybersecurity in Digital planning sessions technical design reviews and project intake to ensure alignment with enterprise security standards
- Coordinate with Cybersecurity domain teams (e.g. IAM Threat & Vulnerability Policy GRC) to deliver integrated support for Digital initiatives
- Oversee third-party risk assessments for vendors and platforms supporting Digital operations ensuring alignment with security and compliance requirements
- Champion automation and tooling to support scalable data-driven risk management and reporting
- Lead or contribute to projects that advance the security posture of Digital Foundational Services including tooling enhancements and process modernization
- Deliver risk insights dashboards and metrics to both technical and non-technical audiences including leadership
- Support internal audits assessments and compliance reporting related to the Digital environment
- Mentor junior team members and contribute to BISO program development and knowledge sharing
III. Supervisory Responsibilities
May coach and mentor less-experienced analysts and act as team leader on systems projects.
IV. Qualifications
The requirements listed below are representative of the qualifications necessary to perform the job.
- Background in enterprise IT Foundational Services vulnerability management cloud or network security systems engineering or technical architecture is beneficial
- Strong understanding of cybersecurity principles control frameworks (NIST ISO) and risk management
- Ability to synthesize complex topics and communicate clearly across organizational levels
- Experience with security tools third-party risk platforms or ITSM systems (e.g. ServiceNow OneTrust) is a plus
- Collaborative mindset with a proactive solution-oriented approach to security challenges
A. Education and Experience
- Education: Bachelors degree (accredited) in Computer Science MIS Business Administration or similar area of study or in lieu of degree High School Diploma or GED (accredited) and 5 years or relevant work experience.
- Experience: Five (5) years of relevant work experience (in addition to education requirement).
B. Certificates Licenses Registrations or Other Requirements
Preferred:
- Certified Information Systems Security Professional (CISSP)
- Certified Information Systems Auditor (CISA)
- Certified Information Security Manager (CISM)
C. Other Knowledge Skills or Abilities Required
Advanced knowledge or skills in one or more of the following is required:
- Knowledge of threat and vulnerability and/or identity related processes and technology.
- Proficiency in vulnerability management tools such as Qualys Core Impact WebInspect etc.
- Ability to work efficiently and independently while maintaining attention to detail
- Able to be flexible and adapt to changing situations while remaining positive
- Ability to work effectively in a diverse collaborative team environment
- Strong verbal and written communication skills to senior leadership
- Proficient with Microsoft Office suite (Excel PowerPoint Outlook Word)
V. Work Environment
Listed below are key points regarding environmental demands and work environment of the job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of the job.
- Required to use motor coordination with finger dexterity (such as keyboarding machine operation etc.) most of the workday.
- Required to exert physical effort in handling objects less than 30 pounds
- Normal setting for this job varies: office and or hybrid model
- When hybrid it is required to have a quiet home workspace with internet access to complete job duties.
Normal setting for this job is: office setting.
Benefits
At Waste Management each eligible employee receives a competitive total compensation package including Medical Dental Vision Life Insurance and Short Term Disability. As well as a Stock Purchase Plan Company match on 401K and more! Our employees also receive Paid Vacation Holidays and Personal Days. Please note that benefits may vary by site.
If this sounds like the opportunity that you have been looking for please click Apply.
Required Experience:
Senior IC
Employment Type
Full-Time
