Analyst, Digital Security
Offer summary
Qualifications:
Bachelor's Degree in Computer Science, MIS, Business Administration, or a related field., Three years of experience in IT compliance and risk management., Familiarity with regulatory requirements such as SOX, PCI DSS, and CCPA., Preferred certifications include CISSP and CISA..Key responsabilities:
- Partner with IT and business teams to manage risks related to IT application security and compliance.
- Utilize GRC Compliance tools to develop and implement risk mitigation strategies.
- Provide training on IT security and compliance topics to employees.
- Support audits by preparing documentation and evidence of compliance with relevant regulations.
Job description
Job Description
WM is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, gender identity, national origin, age, disability, status as a protected veteran or any other characteristic protected under applicable federal, state, or local law.
WM, a Fortune 250 company, is the leading provider of comprehensive waste and environmental services in North America. We are strongly committed to a foundation of operating excellence, professionalism and financial strength. WM serves nearly 25 million customers in residential, commercial, industrial and municipal markets throughout North America through a network of collection operations, transfer stations, landfills, recycling facilities and waste-based energy production projects.
I. Job Summary
Play a key role in supporting the development, implementation, and maintenance of governance, risk, and compliance frameworks across the IT landscape. The Digital/IT Compliance Analyst will report to the Digital/IT Compliance Manager and work closely with cross-functional teams to ensure IT operations align with both internal policies and external regulatory requirements, while proactively identifying risks and implementing mitigation strategies. Play a key role in supporting the development, implementation, and maintenance of governance, risk, and compliance frameworks across the IT landscape. The Digital/IT Compliance Analyst will report to the Digital/IT Compliance Manager and work closely with cross-functional teams to ensure IT operations align with both internal policies and external regulatory requirements, while proactively identifying risks and implementing mitigation strategies.
II. Duties and Responsibilities include the following:
To perform this job successfully, an individual must be able to perform each duty satisfactorily. Other ancillary duties may be assigned.
Engage Across the Business: Partner with IT and business teams to identify and centrally manage emerging and existing risks associated with IT application security, identity and access management, configuration and data governance and overall enterprise policy adherence
Evolve Our Capabilities: Leverage leading practice GRC Compliance tools (such as OneTrust, Sailpoint, Oracle Risk Cloud, Monday.com, AuditBoard, and SAP GRC) to enable effective and sustainable risk prevention or risk mitigation compliance strategies
Lead the business adoption and maintenance of GRC Compliance tools and analytics to monitor and report on compliance with IT security policies, regulatory requirements, and industry standards.
Empower Our People: Provide training and awareness programs on IT security, risk management, and compliance topics for employees across the organization and build a culture of proactive compliance maturity.
Support internal and external audits by providing necessary documentation and evidence of compliance with relevant laws and regulations (e.g., SOX, PCI DSS, ERCOT, PII, CCPA, EPA etc.).
Enable Business Strategies: Stay up-to-date on changes in regulations, best practices, and emerging technologies that could impact the organization's IT governance and compliance posture.
III. Qualifications
Must live and work in the U.S.
Education and Experience
Familiarity with common IT governance and risk management frameworks (e.g., COBIT, NIST, ISO 27001/27002, ITIL).
Big 4 Consulting Experience and Professional certifications (e.g., CISSP, CCSP, CISM, CISA, CPA, CRISC, CC ISO 27001 Lead Implementer) are a plus.
Technical understanding of Oracle ERP systems, Processes, Configurations, & System Functionality
Familiarity with Best Practice Oracle Application Security Role Design Concepts
Experience with Segregation of Duties and Sensitive Access Rulesets, and ERP Configuration Change Management Controls and Policies
Experience with Hands-On Compliance Tools such as OneTrust, Sailpoint, Oracle Risk Cloud, Monday.com, AuditBoard, and SAP GRC
Competency in Analytical Tools or Languages such as PowerBI, Tableau, Alteryx and familiarity with Data Governance controls in backend database platforms such as Snowflake and S/4 HANA
Knowledge of cloud environments and their associated risks (AWS, Azure, Google Cloud, etc.).
Prioritizes accountability, ownership, and proactive communication
Critical thinking and analytical skills with ability to both identify risks and propose solutions.
Strong attention to detail, organizational skills, and ability to build/follow process flows and maps
Ability to “build a coalition” and work collaboratively with cross-functional teams.
IV. Work Environment And Essential Functions
Normal setting for this job is: office setting.
The expected base pay range for this position across the U.S. [or Canada as appropriate] is $88,515 - $129,800. This range represents a good faith estimate for this position. The specific salary offered to a successful candidate may be influenced by a variety of factors including the candidate’s relevant experience, education, training, certifications, qualifications, and work location.
Benefits
At WM, each eligible employee receives a competitive total compensation package including Medical, Dental, Vision, Life Insurance and Short Term Disability. As well as a Stock Purchase Plan, Company match on 401K, and more! Our employees also receive Paid Vacation, Holidays, and Personal Days. Please note that benefits may vary by site.
If this sounds like the opportunity that you have been looking for, please click “Apply”.
About Us
ABOUT WM
WM ( WM.com ) is North America’s largest comprehensive waste management environmental solutions provider. Previously known as Waste Management and based in Houston, Texas, WM is driven by commitments to put people first and achieve success with integrity. The company, through its subsidiaries, provides collection, recycling and disposal services to millions of residential, commercial, industrial and municipal customers throughout the U.S. and Canada. With innovative infrastructure and capabilities in recycling, organics and renewable energy, WM provides environmental solutions to and collaborates with its customers in helping them achieve their sustainability goals. WM has the largest disposal network and collection fleet in North America, is the largest recycler of post-consumer materials and is the leader in beneficial reuse of landfill gas, with a growing network of renewable natural gas plants and the most gas-to-electricity plants in North America. WM’s fleet includes nearly 11,000 natural gas trucks – the largest heavy-duty natural gas truck fleet of its kind in North America – where more than half are fueled by renewable natural gas. To learn more about WM and the company’s sustainability progress and solutions, visit Sustainability.WM.com .
Equal Employment Opportunity
For United States: WM is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, gender identity, national origin, age, disability, status as a protected veteran or any other characteristic protected under applicable federal, state, or local law.
For Canada: WM is committed to the principle of equal employment for all applicants and employees, without discrimination on the basis of all grounds protected by applicable human rights legislation. Accommodations are available on request for candidates taking part in all aspects of the selection process. Please notify us if you require accommodation.
WM is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, gender identity, national origin, age, disability, status as a protected veteran or any other characteristic protected under applicable federal, state, or local law.
WM, a Fortune 250 company, is the leading provider of comprehensive waste and environmental services in North America. We are strongly committed to a foundation of operating excellence, professionalism and financial strength. WM serves nearly 25 million customers in residential, commercial, industrial and municipal markets throughout North America through a network of collection operations, transfer stations, landfills, recycling facilities and waste-based energy production projects.
I. Job Summary
Play a key role in supporting the development, implementation, and maintenance of governance, risk, and compliance frameworks across the IT landscape. The Digital/IT Compliance Analyst will report to the Digital/IT Compliance Manager and work closely with cross-functional teams to ensure IT operations align with both internal policies and external regulatory requirements, while proactively identifying risks and implementing mitigation strategies. Play a key role in supporting the development, implementation, and maintenance of governance, risk, and compliance frameworks across the IT landscape. The Digital/IT Compliance Analyst will report to the Digital/IT Compliance Manager and work closely with cross-functional teams to ensure IT operations align with both internal policies and external regulatory requirements, while proactively identifying risks and implementing mitigation strategies.
II. Duties and Responsibilities include the following:
To perform this job successfully, an individual must be able to perform each duty satisfactorily. Other ancillary duties may be assigned.
Engage Across the Business: Partner with IT and business teams to identify and centrally manage emerging and existing risks associated with IT application security, identity and access management, configuration and data governance and overall enterprise policy adherence
Evolve Our Capabilities: Leverage leading practice GRC Compliance tools (such as OneTrust, Sailpoint, Oracle Risk Cloud, Monday.com, AuditBoard, and SAP GRC) to enable effective and sustainable risk prevention or risk mitigation compliance strategies
Lead the business adoption and maintenance of GRC Compliance tools and analytics to monitor and report on compliance with IT security policies, regulatory requirements, and industry standards.
Empower Our People: Provide training and awareness programs on IT security, risk management, and compliance topics for employees across the organization and build a culture of proactive compliance maturity.
Support internal and external audits by providing necessary documentation and evidence of compliance with relevant laws and regulations (e.g., SOX, PCI DSS, ERCOT, PII, CCPA, EPA etc.).
Enable Business Strategies: Stay up-to-date on changes in regulations, best practices, and emerging technologies that could impact the organization's IT governance and compliance posture.
III. Qualifications
Must live and work in the U.S.
Education and Experience
- Required: Bachelor's Degree in Computer Science, MIS, Business Administration or similar area of study. Three (3) years of previous experience required. An additional four (4) years of related experience may substitute for the Bachelor's degree.
- Preferred: Bachelor's Degree and at least three (3) years of experience in network, host, data and/or application security in multiple operating system environments.
- Certificates, Licenses, Registrations or Other Requirements
- None required.
- Preferred: Other professional certifications desired include: CISSP, CISA
- Other Knowledge, Skills or Abilities Required
Familiarity with common IT governance and risk management frameworks (e.g., COBIT, NIST, ISO 27001/27002, ITIL).
Big 4 Consulting Experience and Professional certifications (e.g., CISSP, CCSP, CISM, CISA, CPA, CRISC, CC ISO 27001 Lead Implementer) are a plus.
Technical understanding of Oracle ERP systems, Processes, Configurations, & System Functionality
Familiarity with Best Practice Oracle Application Security Role Design Concepts
Experience with Segregation of Duties and Sensitive Access Rulesets, and ERP Configuration Change Management Controls and Policies
Experience with Hands-On Compliance Tools such as OneTrust, Sailpoint, Oracle Risk Cloud, Monday.com, AuditBoard, and SAP GRC
Competency in Analytical Tools or Languages such as PowerBI, Tableau, Alteryx and familiarity with Data Governance controls in backend database platforms such as Snowflake and S/4 HANA
Knowledge of cloud environments and their associated risks (AWS, Azure, Google Cloud, etc.).
Prioritizes accountability, ownership, and proactive communication
Critical thinking and analytical skills with ability to both identify risks and propose solutions.
Strong attention to detail, organizational skills, and ability to build/follow process flows and maps
Ability to “build a coalition” and work collaboratively with cross-functional teams.
IV. Work Environment And Essential Functions
Normal setting for this job is: office setting.
The expected base pay range for this position across the U.S. [or Canada as appropriate] is $88,515 - $129,800. This range represents a good faith estimate for this position. The specific salary offered to a successful candidate may be influenced by a variety of factors including the candidate’s relevant experience, education, training, certifications, qualifications, and work location.
Benefits
At WM, each eligible employee receives a competitive total compensation package including Medical, Dental, Vision, Life Insurance and Short Term Disability. As well as a Stock Purchase Plan, Company match on 401K, and more! Our employees also receive Paid Vacation, Holidays, and Personal Days. Please note that benefits may vary by site.
If this sounds like the opportunity that you have been looking for, please click “Apply”.
About Us
ABOUT WM
WM ( WM.com ) is North America’s largest comprehensive waste management environmental solutions provider. Previously known as Waste Management and based in Houston, Texas, WM is driven by commitments to put people first and achieve success with integrity. The company, through its subsidiaries, provides collection, recycling and disposal services to millions of residential, commercial, industrial and municipal customers throughout the U.S. and Canada. With innovative infrastructure and capabilities in recycling, organics and renewable energy, WM provides environmental solutions to and collaborates with its customers in helping them achieve their sustainability goals. WM has the largest disposal network and collection fleet in North America, is the largest recycler of post-consumer materials and is the leader in beneficial reuse of landfill gas, with a growing network of renewable natural gas plants and the most gas-to-electricity plants in North America. WM’s fleet includes nearly 11,000 natural gas trucks – the largest heavy-duty natural gas truck fleet of its kind in North America – where more than half are fueled by renewable natural gas. To learn more about WM and the company’s sustainability progress and solutions, visit Sustainability.WM.com .
Equal Employment Opportunity
For United States: WM is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, creed, religion, sex, sexual orientation, gender identity, national origin, age, disability, status as a protected veteran or any other characteristic protected under applicable federal, state, or local law.
For Canada: WM is committed to the principle of equal employment for all applicants and employees, without discrimination on the basis of all grounds protected by applicable human rights legislation. Accommodations are available on request for candidates taking part in all aspects of the selection process. Please notify us if you require accommodation.
Required profile
Experience
Spoken language(s):
English
Check out the description to know which languages are mandatory. Other Skills
- Governance
- Collaboration
- Communication
- Critical Thinking
- Organizational Skills
- Detail Oriented
Related jobs
AI Hardware Systems Engineer, Principal
AI Hardware Systems Engineer, Principal
30+ days ago
d-Matrix
- Remote: California (USA)
- Full time
Hardware ProgrammingPrinted Circuit BoardDebugging
Director - Engineering Recruitment
Director - Engineering Recruitment
30+ days ago
Ocean Talent Pty Ltd
- Remote: Australia
- Full time
Business DevelopmentRecruitment Strategies
Full-Time Remote Therapist - (LMFT, LCSW, LPCC)
Full-Time Remote Therapist - (LMFT, LCSW, LPCC)
30+ days ago
Accolade, Inc.
- Remote: United States, California (USA)
- Full time
- 57 - 105K
Client ServicesPsychotherapyMental Health Counseling
Senior Application Engineer – Data Center Focused
Senior Application Engineer – Data Center Focused
30+ days ago
FlexGen
- Remote: North Carolina (USA)
- Full time
Thermal Energy StorageElectric Power SystemsGrid ComputingSystem Optimization
MD Relationship Manager
MD Relationship Manager
28 day ago
Webster Financial Corp
- Remote: Pennsylvania (USA)
- Full time
Credit ManagementConsultative SellingCommercial Banking