Cybersecurity Risk and Compliance Senior Analyst



Are you looking for an opportunity to apply your business acumen, cybersecurity skills, and organizational transformation experience to help us create a more secure and open world? Do you have a passion for assessing risk, policy design and deployment, and problem-solving? If so, we may have the perfect opportunity for you!


ASSA ABLOY Americas is looking for a Cybersecurity Risk and Compliance Senior Analyst to enhance the Company’s information security and cybersecurity risk program. Headquartered in New Haven, CT, the Cybersecurity Risk and Compliance Senior Analyst will be part of the Americas division of ASSA ABLOY Opening Solutions. We are an innovative and growth-oriented global company. We offer a collaborative environment where your ideas and contributions are welcomed.


This is an onsite position based in New Haven, CT.


What you will be doing

The Cybersecurity Risk and Compliance Senior Analyst is a key role in ASSA ABLOY’s strategy to accelerate the organization’s cyber resilience. The newly created position will report to ASSA ABLOY America’s Division CISO and will be accountable for the divisional Cyber Risk and Compliance program. The role will build strong alliances with all functions and sub-groups across the division to help in the process of identifying, analyzing, quantifying, and treating risks. In addition, this role will be responsible to define, measure, and report on Information security compliance within the operation of an ISMS, providing relevant KPIs and KRIs. A talented and self-motivated person, who is inviting and collaborative and can guide business functions to handle organizational cyber risks and transform these into controls will find this position a perfect place for success.


Position Specific Responsibilities

  • Establish divisional cyber risk governance 
  • Build divisional risk management culture and methodologies
  • Maintain divisional cyber risk register
  • A broad knowledge of IT Services and a tight collaboration with IT for the transformation of business requirements into IT Policies and controls will ensure success
  • Establish and execute risk assessment and management with business functions
  • Build and maintain Cyber Risk and Compliance Reporting dashboards and reports for stakeholder groups
  • Definition, monitoring and reporting of Key Risk indicators and relevant Key performance indicators
  • Create, modify and implement divisional  policies and directives based on Information security standards ISO27001 and NIST​​
  • Develop deep coalitions with business partners to anchor Information Security into Policy framework
  • Collaborate with corporate counsels and HR departments to monitor enforcement of standards and regulations
  • Review policies periodically to identify hidden risks or non-conformity issues
  • Develop and oversee control systems to prevent or deal with violations of legal guidelines and internal policies
  • Evaluate the efficiency of controls and improve them continuously


What we are looking for

  • Professional certification in Information Security CISM or CISSP
  • Professional certification in CRISC or ISO27005 preferred
  • Minimum 3 years of experience in a global cyber security management role 
  • Proven experience of implementing and operating information security risk and compliance management within an environment of similar size and global representation
  • Strong knowledge of current digital service delivery concepts, technology, and its cyber protection capabilities
  • Good enterprise business knowledge with the ability to articulate risks in clear business language
  • Good knowledge of global regulatory compliance demands in the areas of privacy, industry or governmental segments. (GDPR, CCPA, PCI-DSS, critical infrastructure, Patriot Act…) 
  • Engaged, committed, creative, hands-on and self-motivated personality
  • Expert knowledge and proven success in implementing Information Security Management System (ISMS) in an enterprise organization
  • Analytical and conceptual ability to identify compliance risks and develop practical solutions and adjustments
  • Excellent business and IT communication skills in the English language


What we offer


We’re passionate about providing amazing opportunities and benefits, so that you can enjoy a lifelong career with us. We are proud to offer:


  • Continuous professional development opportunities and an environment that fosters internal growth and mobility
  • Competitive compensation and benefits package which includes multiple healthcare options, tuition reimbursement, and matching 401k
  • Generous holiday schedule and paid time off to refresh and recharge
  • Employee pricing on our products and discount programs for travel, entertainment, and more!


We review applications regularly, so don’t hesitate, apply today!


ASSA ABLOY is an Equal Opportunity Employer/Minorities/Females/Disabled/Veteran 





We are the ASSA ABLOY Group
Our people have made us the global leader in access solutions. In return, we open doors for them wherever they go. With nearly 52,000 colleagues in more than 70 different countries, we help billions of people experience a more open world. Our innovations make all sorts of spaces – physical and virtual – safer, more secure, and easier to access.

As an employer, we value results – not titles, or backgrounds. We empower our people to build their career around their aspirations and our ambitions – supporting them with regular feedback, training, and development opportunities. Our colleagues think broadly about where they can make the most impact, and we encourage them to grow their role locally, regionally, or even internationally.

As we welcome new people on board, it’s important to us to have diverse, inclusive teams, and we value different perspectives and experiences.

New Haven, CT, US, 06511

IT, Telecom & Internet
Travel Required: 0%-10%
Mid-senior level

Nearest Major Market: New Haven
Nearest Secondary Market: Hartford