Information Security Analyst

JoinaHigh-PerformanceCultureThatDrivesInnovationandExcellence

AtVertivwedontjusthiretalent - criticaldigital infrastructurewearescalinguptomeetthedemandsofAIdatacentersandnext-gentechnologyandweneedboldhigh-performingindividualslikeYOUtotakeustothenext level.

WhyVertiv

• High-PerformanceCulture:Weempoweryoutothinkbigexecutewith excellenceanddeliverimpact.Ourperformance-drivenmindsetrewardsthose whochallengethestatusquo50CEOAwardsaregivenannuallytorecognize toptalentmoving the needleforward.
• LeadershipWithoutLimits:LeadershipatVertivgoesbeyondjusttitlesitsaboutaccountabilitytrustandownership. Ourleadersengageanddrivewithcollaborationinnovationandcustomer-centricthinkingsettingthefoundationfor anaction-focused culture.
• Limitless Growth & Learning:We believe in continuous development. Whether throughrotational programs or high-impact projects youll have the opportunity toexpand your expertise and grow your career.
• APlaceforEveryone:OurcommitmenttoInclusionensuresthatallemployees uniquestrengthsandperspectivesarevalued.Yourvoicemattersyourgrowthis prioritized and your success is celebrated.

Job Summary

The Junior Cybersecurity Compliance Analyst is responsible for supporting the cyber supply risk workstream to help de-risk Vertivs direct and indirect supply chain. Under the guidance of the Senior Analyst you will execute cyber security risk strategies support supplier assessments contribute to risk remediation activities and maintain ongoing adoption of ISO standards particularly ISO 27001. This role ensures company processes policies and practices align with applicable cybersecurity and compliance frameworks through internal audits training development gap analysis and cross-functional collaboration. The position plays a key role in strengthening the organizations cyber resilience supplier risk posture and enterprise-wide risk management framework.

Job Responsibilities:

1. Supply Chain Cybersecurity Risk Assessment & Management

• Lead the deployment of the annual supplier cybersecurity assessment strategy.
• Survey the supply base to identify cybersecurity risks and evaluate supplier business continuity and preparedness.
• Prioritize suppliers based on cyber risk profile criticality and potential operational impact.
• Research industry trends threat developments and benchmarking to inform best practices.
• Support Third-Party Risk Management (TPRM) teams in remediation efforts for direct and indirect suppliers.
• Support development and integration of cybersecurity risk metrics into supply chain digital tools.

2. Cross-Functional Collaboration & Stakeholder Engagement

• Collaborate with Supply Chain Cyber TPRM Legal (OGC) IT and Purchasing teams to align and drive risk management priorities.
• Lead engagements with direct and indirect teams to reinforce supplier compliance and cyber risk expectations.
• Prepare updates and communicate project status to executive leadership across L1 L2 and L3 governance meetings.

3. ISO Compliance Internal Audits & Governance

• Plan and execute internal audits to ensure adherence to ISO standards and company procedures.
• Conduct ISO 27001 audits to verify the effectiveness of information security controls and client security practices.
• Evaluate documentation processes procedures and risk assessments for alignment with ISO 27001.
• Identify process gaps recommend corrective actions and track remediation progress.
• Collaborate with management on development of Governance Risk Management and Compliance (GRC) strategies aligned to industry requirements.

4. Training Documentation & Continuous Improvement

• Research develop and maintain training programs on ISO 27001 and cybersecurity processes.
• Create and refine operating procedures process maps and compliance documentation.
• Provide actionable recommendations that enhance compliance maturity and reduce risk.
• Promote a culture of continuous improvement and cybersecurity awareness across the organization.

Job Qualifications:

• Bachelors degree in computer science Computer Engineering Information Technology or equivalent.
• 35 years of experience in supply chain cybersecurity compliance or ISO standards implementation.
• Strong understanding of the broader supply chain landscape and supplier risk dynamics.
• Proficiency with Information Security Management System (ISMS) concepts.
• Strong knowledge of ISO 27001 risk management and audit practices.
• Demonstrated experience conducting ISO 27001 audits.
• Strong analytical and problem-solving skills with the ability to interpret complex data.
• Excellent organizational project management and planning skills; deadline-driven execution.
• Ability to understand strategic direction and ensure aligned implementation.
• Resourcefulness attention to detail and comfort providing solutions where ambiguity exists.
• Strong interpersonal skills with ability to de-escalate conflict independently.
• Self-motivated with a strategic growth-oriented mindset.
• Strong written and verbal communication; able to simplify complex concepts.
• Ability to build and maintain positive cross-functional relationships with global teams.
• Political and organizational awareness to influence effectively.

Time Travel Needed

• 10%

The successful candidate will embrace Vertivs Core Principals & Behaviors to help execute our Strategic Priorities.

OUR CORE PRINCIPALS: Safety. . Teamwork. Diversity & Inclusion.

OUR STRATEGIC PRIORITIES

• Customer Focus
• Operational Excellence
• High-Performance Culture
• Innovation
• Financial Strength

OUR BEHAVIORS

• Own It
• Act With Urgency
• Foster a Customer-First Mindset
• Think Big and Execute
• Lead by Example
• Drive Continuous Improvement
• Learn and Seek Out Development
• Transparent and Open Communication