Cybersecurity Risk Analyst
Cybersecurity Risk Analyst
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
$ 90000 - 150000
1 Vacancy
Job Description
Headquartered in Southern California Skechersthe Comfort Technology Companyhas spent over 30 years helping men women and kids everywhere look and feel good. Comfort innovation is at the core of everything we do driving the development of stylish high-quality products at a great value. From our diverse footwear collections to our expanding range of apparel and accessories Skechers is a complete lifestyle brand.
ABOUT THE ROLE:
Skechers is seeking a technically minded Cybersecurity Risk Analyst to join our global information security team. The ideal candidate will bring a passion for cybersecurity and a history of identifying analyzing and mitigating security risks across a diverse technology environment. Youll leverage your deep understanding of threat landscapes security architectures and frameworks like NIST and CIS to proactively assess risks and drive security improvements. This role requires someone who thinks like a security practitioner first - someone who can analyze technical vulnerabilities assess real-world attack scenarios and translate complex security risks into business impact.
WHAT YOULL DO:
Perform security control evaluations using NIST 800-53 and CIS Controls as implementation guides rather than compliance checklists - assessing actual security posture and effectiveness against real-world threats.
Analyze and prioritize cyber risks based on technical likelihood business impact and threat intelligence - translating complex security vulnerabilities into actionable risk scenarios for stakeholders.
Drive technical risk remediation by working directly with technical teams and business stakeholders to align on and execute security improvements
Maintain and evolve the cyber risk register with technically accurate risk descriptions realistic threat scenarios and meaningful metrics that reflect real security posture improvements.
Assess third-party security risks through technical security questionnaires penetration test reviews and security architecture analysis in addition to vendor compliance documentation.
Collaborate with security operations teams to incorporate threat intelligence incident findings and vulnerability data into risk assessments and prioritization decisions.
Help mature risk-based security metrics that measure security improvements and threat reduction rather than compliance percentages.
Participate in internal and external audit process for relevant compliance concerns including PCI-DSS SOX and GDPR at the enterprise level.
Interface with global IT and business partners to provide guidance risk advisory services and support.
REQUIREMENTS:
Strong technical foundation in network security system hardening vulnerability management and enterprise security architectures
Practical experience implementing security frameworks - hands-on work with NIST Cybersecurity Framework NIST 800-53 controls or CIS Controls in operational environment.
Understanding of threat landscapes including MITRE ATT&CK framework threat intelligence and attack methodologies targeting retail/enterprise environment
Strong analytical skills for translating technical vulnerabilities into business risk scenarios and communicating security risks to non-technical stakeholders
Experience with technical risk assessment and the ability to quantify and prioritize risks based on likelihood and business impact
Understanding of retail security challenges including PCI-DSS customer data protection and supply chain security considerations
Proven ability to work with technical teams including security engineers system administrators and developers to drive security improvements
Excellent communication skills with ability to present complex technical concepts to diverse audiences including executive leadership
Self-motivated problem solver who thrives in collaborative cross-functional environments
4-5 years of cybersecurity experience with some history of hands-on technical work
Retail or e-commerce experience a plus
The pay range for this role is $90000 - $150000/yr USD.
About Skechers
Skechers a global Fortune 500 brand develops and markets a diverse range of lifestyle and performance footwear apparel and accessories. Developing comfort technologies is the foundation of all we do delivering stylish innovative and quality products. Serving over 180 countries and territories Skechers connects customers to products through department and specialty stores e-commerce and digital stores and through our more than 5200 company-and third-party-owned retail locations. Headquartered in Southern California with offices and distribution centers around the globe Skechers has spent over 30 years helping people of all ages look and feel good.
Equal Employment Opportunity
Skechers is committed to providing a safe inclusive and respectful work environment. Skechers provides equal employment opportunities for all employees and applicants for employment without regard race color religion gender gender identification and expression national origin marital status age disability genetic information military status sexual orientation or any other protected characteristic established by local state or federal law.
Reasonable Accommodation
Applicants for employment who require a reasonable accommodation to apply for a job should request appropriate accommodation by emailing
To perform this job successfully an individual must be able to perform each job responsibility satisfactorily. The skills abilities and physical demands described are representative of those duties that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodation may be made to enable individuals with disabilities who are otherwise qualified for the job position to perform the essential functions.
Required Experience:
IC
Employment Type
Full-Time
