Job Description

Cybersecurity Analyst

Summary

Reporting to the VP, IT Operations, the Cybersecurity Analyst is responsible for security analysis and monitoring across the organization's cloud and enterprise environments, with a strong focus on Microsoft Azure. The role supports day-to-day governance, risk, and compliance (GRC) activities by analyzing security events, evaluating control effectiveness, and identifying risks within Azure and integrated platforms. You will support the mission at FGF Brands by working with various stakeholders to develop, maintain and enhance controls and implement a risk-based approach when evaluating organizational technology requirements. You will also help develop risk and compliance strategies and audit, suggest improvements and evaluate company's cybersecurity controls.

Primary Responsibilities

• Help develop and lead the implementation of an enterprise-wide strategy focused on the reduction of technology risk.
• Interface directly with IT Leadership and other stakeholders to assure alignment of FGF's Security objectives are met, given the robust business expansion initiatives.
• Work with IT, business and internal and external audit teams to perform security and compliance assessments on new and existing systems, processes and technologies
• Draft Security and Compliance policies and secure approval from IT Leadership.
• Developed and maintained security policies, standards, and procedures aligned to frameworks such as NIST CSF, ISO 27001, and CIS Controls; supported policy governance and audit readiness.
• Lead efforts to achieve compliance with various frameworks and regulations by consulting and working with the relevant IT, business and control owners.
• Supported data security and compliance initiatives using Microsoft Purview for data classification, DLP, and regulatory compliance.

Required Experience

• Bachelor's degree in computer science, engineering or related fields or a combination of relevant education and experience
• CISSP, CompTIA S+ or other equivalent security certification
• A minimum of 3+ years of related experience in IT Security or GRC.
• 5+ years' experience in improving and maintaining the security of infrastructure hardware and system software.
• Working knowledge of Information Security best practices and standards such as NIST, ISO 27000 Series.
• Experience in security patch and vulnerability management
• Good understanding and awareness of current technology trends around Security in IT.
• Strong communication, influencing, collaboration and talent development skills.
• Able to dynamically prioritize requests and propose effective alternatives when necessary.
• Ability to show strategic thinking.
• Strong project management skills.
• Strong verbal and written communication skill with ability to confidently present complex information.
• Ability to continuously improve the organization.

What is the recipe for a great career at FGF?
Working at FGF Brands, there is never a dull moment! As a successful company that is continually growing there is always challenging yet rewarding work to be a part of. We have an entrepreneurial spirit which encourages all our team members to use their own creativity and out of the box thinking to come up with solutions and new ideas.

Disclaimer: The above describes the general responsibilities, required knowledge and skills. Please keep in mind that other duties may be added or this description may be amended at any time.