BrownForman Corp

IT Security and Governance Analyst

BrownForman Corp$75K — $95K *
Louisville, KY 40214In-Person
Information Technology
Less than 5 years of experience
1 month ago
Job Overview by Ladders

Qualifications

  • 3+ years of experience in governance, compliance, risk, or audit functions.
  • Familiarity with IT governance and risk management frameworks like PCI, NIST, and GDPR.
  • Strong analytical skills with attention to detail.
  • Proven collaboration and communication skills across various levels.
  • Exposure to risk assessments and internal control audits.

Responsibilities

  • Develop and maintain IT governance frameworks aligned with industry standards.
  • Support IT risk management processes for assessing and remediating risks.
  • Raise awareness of IT governance and compliance programs across the organization.
  • Track compliance with internal policies and external regulations through audits.
  • Guide data security and privacy compliance including access controls and data protection measures.
  • Collaborate with stakeholders in IT and across legal and compliance teams.
  • Monitor evolving regulations and best practices to enhance IT GRC.

Benefits

  • Access to professional development and training opportunities.
  • Collaborative work environment fostering cross-functional teamwork.
  • Opportunities to influence IT governance and risk strategies.
  • Meaningful work contributing to regulatory compliance and security posture.
Full Job Description
Quote from Hiring Manager:
The IT Governance/Risk/Compliance Analyst position offers a dynamic opportunity for an experienced analyst to help shape the future of our governance, risk, and compliance initiatives. In this role, you'll be at the forefront of identifying and mitigating IT risks, ensuring regulatory compliance, and enhancing our security posture through robust frameworks and controls. We're seeking candidates with strong analytical skills, knowledge of risk management frameworks, and the ability to communicate technical concepts to diverse stakeholders.

Meaningful Work From Day One:
The IT GRC Analyst plays a critical role in ensuring that the organization's IT governance is aligned with business objectives while also adhering to governance standards, risk management practices, and regulatory compliance obligations. In this role, you'll collaborate with cross-functional teams to align risk management strategies, ensure compliance, and foster a unified approach to IT governance.

What You Can Expect:
• Develop and maintain IT governance frameworks and policies that align with industry standards and regulatory requirements, which are then implemented by IT owners.
• Support our IT risk management program to ensure both internal and third-party IT risks are identified, assessed, prioritized and remediated.
• Raise awareness within the organization of IT governance, risk and compliance programs that are risk based and align with compliance requirements.
• Track and ensure compliance with internal policies and external regulations through periodic audits and assessments.
• Ensure data security and privacy compliance by providing guidance on appropriate access controls, data classification protocols, and data protection measures.
• Collaborate with key stakeholders throughout the IT organization as well as with Internal Audit, Compliance, and Legal.
• Monitor evolving regulations, compliance standards, and best practices to strengthen our IT GRC capabilities and frameworks.

What You Bring to the Table:
• 3+ years of experience focused on governance, compliance, risk, audit or similar functions.
• Knowledge of IT governance and risk management frameworks including compliance practices (e.g., PCI, NIST, GDPR, COBIT, NIS2, Operation Technology, etc.).
• Strong analytical skills, attention to detail, and a problem-solving mindset.
• Excellent collaboration, communication and influencing skills with the ability to develop effective working relationships with all levels of the company.
• Exposure to risk assessments, policy development, and internal control audits.

What Makes You Unique:
• Bachelor's degree within a related area of study.
• Information security related training or certifications such as CISA, CRISC, PCI QSA.
• Experience working with GRC platforms and tools.
• Familiarity with third-party risk management and vendor compliance.

Requisition Type:
Employee
Management Level:
Professional
Global Job Level:
P5
Number of Openings Available:
1

About BrownForman Corp

Brown-Forman Corporation is a diversified producer of fine quality consumer products. It was founded in 1870 by George Garvin Brown in Louisville, Kentucky. Brown-Forman is one of the largest American-owned spirits and wine companies and sells its brands in more than 170 countries. Some of its most popular brands include Jack Daniel's, Woodford Reserve, Old Forester, and Finlandia. The company has a strong commitment to social responsibility and sustainability, and has been recognized for its efforts in these areas. Brown-Forman is headquartered in Louisville, Kentucky.
Learn more about BrownForman Corp
Size
4,800 employees
Industry
Food & Beverages
Founded
1870
NASDAQ
BF.B
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at BrownForman Corp

More Information Technology Jobs

Find similar IT Security and Governance Analyst jobs:

NationwideLouisville, KY