Sr Analyst - IT Risk & Compliance * The Wendy's Company, Dublin, OH - Full-time / Part-time

• With full competence, identifies information security risks and exposures by conducting risk assessments, presenting results to management, ensuring visibility of significant risks. Identifies and conducts routine security and compliance assessments of business processes, identifies findings, mitigating controls, and presents assessment reports to management and key stakeholders.
• With full competence, collaborates with technical leads to analyze findings, determine severity, and tracking of status. Assists in the development and implementation of corrective action plans.
• With full competence, develops recommendations, enhancements of information security policies and standards, controls, processes, and procedures to ensure that information is protected and available to the business in a timely fashion.
• Maintains a current knowledge of applicable compliance requirements and how they affect information technology architecture and new system implementations.
• Assist in the research of architectural issues for information security. May assist in the evaluation and testing of information risk hardware and software as assigned.
• Participates in projects requiring additional specialized technical knowledge in information security and risk management.
• Performs other duties as assigned

Education / Experience

• Bachelor's Degree: Additional education information (major, etc.): Management Information Systems, Computer Science
• 5 years of experience in Information Security, IT Risk, IT Audit, or IT Compliance fields.
• Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Offensive Security Certified Professional (OSCP).
• Working knowledge of compliance and service delivery IT frameworks and regulations, including: SOX; PCI-DSS; ISO 27001/27002, COBIT, etc.
• Familiarity with cloud-based technologies and deployments.
• Ability to convey complex technical security concepts to technical and non-technical audiences including executives.
• Motivation to constantly improve processes and methodologies.
• Strong problem solving aptitude, risk identification, and solution recommendation.
• Strong interpersonal, written, and oral communication skills.
• Highly self-motivated and directed.
• Keen attention to detail.

Wendy's is an equal employment opportunity employer who may provide reasonable accommodation to enable individuals with disabilities to perform the essential functions of the job.