Title: IT Security Analyst

Location:

Irving, TX, US, 75039

Group: Finance

Division: Information Technology

Job ID: 20828

it's what's inside that counts

_______________________________

There’s more to CMC than our products and the buildings, structures, and roads they go into. At CMC, it’s the people inside our recycling centers, fabrication plants, manufacturing facilities, steel mills and offices that make us who we are as a company. Our success comes from finding, retaining, and supporting the highest quality talent by offering:

Day 1 Benefits Coverage with low cost Medical, Vision, Dental
Day 1 Paid-time Off and Vacation
4.5% Company Match 401(k) plan
$500 Annual Company-paid Lifestyle Benefit
Competitive Compensation and Bonuses
Company-paid Life and Disability Insurance
Employee Stock Purchase Plan
Training and Advancement Opportunities

Why This Job

CMC provides an excellent opportunity to learn the steel, construction reinforcement and ground stabilization industries and to grow in your career. Whether you will spend your day brainstorming in an office cubicle, operating a crane, running manufacturing equipment or troubleshooting technical obstacles, at CMC, you’ll get the training and support from your team that you need to excel in your role and reach your full potential.

What You'll Do

Internal Audits: conduct and support internal IT security audits to ensure compliance with organizational controls, policies, and regulatory requirements
Internal Audits: Provide guidance and support to IT teams in implementing security controls and mitigating risks in their respective areas
SOX Auditing: Complete and support SOX (Sarbanes-Oxley) compliance audits, ensuring adherence to financial and IT controls. Complete (as scheduled) audit requests and activities
SOX Auditing: Coordinate the provisioning of audit evidence during period of audit. Partner with Internal Audit and IT management teams to resolve/mitigate any findings, as needed
SOC Reports Review: Review and assess SOC 1 and 2 reports to ensure external service providers meet security and compliance standards
Third-Party Vendor Reviews: Conduct thorough security assessments of third-party vendors to mitigate risks associated with external partnerships
GRC Tools: Utilize GRC tools to streamline and automate all aspects of the process. (governance, risk management, evidence collection, and compliance processes)
Risk Management: Collaborate with cross-functional teams to establish and maintain effective risk management processes related to IT security
Policy development and maintenance: Provide oversight in Policy design and content review for IT related policies
Monitor and report: Maintain compliance reporting about IT Security policies, standards, and regulations. Construct metrics to explain progress to senior management and relevant stakeholders
Participate in incident response activities, including investigating security incidents and breaches, and implementing remediation measures, as necessary
Foster a culture of security awareness and compliance across the organization through training, awareness programs, and regular communication

What You'll Need

Proven experience (2 years) in IT security governance, risk management, or related fields
Strong understanding of IT security principles, standards, and frameworks (e.g., ISO 27001, NIST Cybersecurity Framework, GDPR)
Experience with conducting IT security assessments, audits, and risk assessments
Excellent analytical and critical thinking skills, with the ability to prioritize and manage multiple tasks simultaneously
Effective communication skills, with the ability to convey complex technical information to non-technical stakeholders
Demonstrated ability to work collaboratively in a cross-functional team environment
Experience with IT Security/GRC tools and automation technologies
Demonstrated ability to effectively collaborate with and influence a variety of internal stakeholders
Strong verbal and written communication skills with the ability to create and effectively deliver information and facilitate presentations
Able to partner with various parts of the business to identify and achieve goals
Makes effective, fact-based business decisions and recommendations
Recognizes problems, identifies opportunities, and suggests solutions for improvement
Seeks opportunities for learning/growth and is open to feedback
Able to balance tactical decisions with bigger picture
Is results focused; set exacting standards for self and others
Is open to and supports organizational changes
Demonstrates commitment to focus on customer service
Willingness and ability to make quick and effective decisions
Vendor Relationship management

Your Education

Bachelor’s degree in computer science, Information Technology, or related field. Advanced degree or professional certifications (e.g., CISSP, CISM, CRISC) preferred

We are CMC, a Fortune 500® company at the leading edge of our industry. Our construction reinforcement and steel products have supported construction projects and structures around the world. The secret to our success? We’ve built our legacy by assembling a team of innovators and doers to tackle some of the most challenging construction reinforcement problems facing our world for more than 100 years — and we’re just getting started.

If you’re ready to join a team working to make our industry more sustainable, support the bridges, roadways, buildings and infrastructure that connects our communities, and do meaningful work, you’re ready to join CMC. Apply today and start moving your career — and our world — forward. Let's build a better world!

CMC is committed to providing equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, age, physical or mental disability, national origin, citizenship, military or veteran status, sexual orientation, gender identity and/or expression, genetic information, or other status protected by federal, state or local law.

Current Employee? Click Here to Apply.

Current Employees Apply
Click here to apply.

Nearest Major Market: Irving
Nearest Secondary Market: Dallas

Apply now »