Xcel Energy

Security Risk Analyst

Xcel Energy$73K — $104K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • 3+ years of experience in a security role, with exposure to regulated environments.
  • 2 years of experience conducting risk assessments or audit/control testing.
  • Familiarity with security and lifecycle management principles and auditing methodologies.
  • Ability to build relationships with diverse stakeholders across business sectors.
  • Knowledge of industry security standards and frameworks, such as ISO 27001 and NIST 800-53.
  • Experience with IT Security tools in an enterprise setting.
  • Bachelor's degree in computer science, technology, or business preferred, along with relevant certifications.

Responsibilities

  • Oversee enterprise risk acceptance to ensure proper documentation and validation of remediation plans.
  • Assist business units in completing risk assessments and ensuring proper documentation.
  • Maintain and improve documentation and templates within the Governance, Risk & Compliance (GRC) toolset.
  • Collaborate with senior risk analysts on risk modeling and regulatory reporting activities.
  • Support development of communications and presentations for senior-level and external audiences.

Benefits

  • Annual Incentive Program
  • Comprehensive medical, dental, and vision plans
  • Generous paid time off (PTO) policy and holidays
  • Tuition reimbursement for professional development
  • 401(k) plan with pension options
  • Employee recognition and wellness programs
Full Job Description
Position Summary

Executes critical aspects of the Enterprise Security Risk Management function. Partners with the business to document and measure risk inherent to systems, assets, and information. Works with the security teams and collaborates with the business to assess IT risks. Tracks risk remediation items. Oversees the risk review process and reporting across the enterprise.

Essential Responsibilities
  • Oversees the risk acceptance process across the enterprise to ensure risks are documented and accepted at the correct levels of the organization. Validates remediation plans are in place to reduce risk where possible. Manages cycle to reassess accepted risks, obtain sign-off, and provide reporting.
  • Assists business partners with completing risk assessments and ensuring the correct documentation is captured to support the risk assessment process. Translates technical language into business terms to facilitate understanding of risk to the business.
  • Maintains documentation and templates in the GRC toolset and makes recommendations for and implements tool and process improvements.
  • Collaborates with senior and lead risk analysts on activities related to risk modeling, comprehensive periodic risk assessments, and regulatory reporting standards and expectations, and the development of communication and presentations for internal and external audiences.
  • Supports on the development of communications and presentations appropriate for senior level audiences and external regulators.


Minimum Requirements
  • Minimum of 3 years experience working in a security function. (One year of working in a highly regulated environment e.g. Utilities, Financial, may substitute for up to 18 months experience in a security function.)
  • 2 years of experience with risk assessments, audit or control testing.
  • Knowledge of security and lifecycle management, including auditing methodology or technology risk assessments.
  • Self-starter; adaptable to change; motivated to set personal and program goals and proactively track performance against goals and initiatives.
  • Ability to develop strong working relationships with peers and stakeholders across business units.
  • Experience working with information security policies, standards, industry best practices and/or frameworks (e.g., ISO 27K, NIST 800-53, FISMA, BITS, etc.)
  • Knowledge of IT Security tools and technologies used in an enterprise environment.
  • Preferred Requirements: Bachelor's degree or higher with a concentration in computer science, technology, or business, or equivalent combination of education and experience.
  • Security or Risk-related certifications (CRISC, CISSP, CISA, etc.)


Preferred Qualifications
  • Risk Assessment Experience: Experience conducting vendor and project-based security risk assessments, including identifying risks, evaluating impact/likelihood, and recommending appropriate controls and treatment strategies.
  • Security Frameworks & Controls: Working knowledge of security frameworks and standards (e.g., NIST, ISO 27001) and ability to apply control requirements within risk assessments and findings.
  • GRC Tooling: Familiarity with GRC platforms such as Archer and/or ProcessUnity for documenting assessments, tracking risks, and managing findings lifecycle.
  • Findings & Risk Management: Experience developing detailed findings, managing remediation tracking, and supporting risk acceptance and exception processes with minimal guidance.
  • Stakeholder Engagement: Ability to partner with business and technology teams to gather requirements, facilitate discussions, and support risk-based decision-making.
  • Communication & Documentation: Strong written communication skills with the ability to clearly document risk assessments, findings, and recommendations for both technical and business audiences.
  • Self-Starter & Adaptability: Demonstrated ability to work independently, manage ambiguity, and prioritize work across multiple assessments and initiatives.
  • Security & Risk Background: ~5+ years of experience in cybersecurity, IT risk, GRC, audit, compliance, or security consulting.


Non-Bargaining

The anticipated starting base pay for this position is: $73,700.00 to $104,633.00 per year

This position is eligible for the following benefits: Annual Incentive Program, Medical/Pharmacy Plan, Dental, Vision, Life Insurance, Dependent Care Reimbursement Account, Health Care Reimbursement Account, Health Savings Account (HSA) (if enrolled in eligible health plan), Limited-Purpose FSA (if enrolled in eligible health plan and HSA), Transportation Reimbursement Account, Short-term disability (STD), Long-term disability (LTD), Employee Assistance Program (EAP), Fitness Center Reimbursement (if enrolled in eligible health plan), Tuition reimbursement, Transit programs, Employee recognition program, Pension, 401(k) plan, Paid time off (PTO), Holidays, Volunteer Paid Time Off (VPTO), Parental Leave

Benefit plans are subject to change and Xcel Energy has the right to end, suspend, or amend any of its plans, at any time, in whole or in part.

In any materials you submit, you may redact or remove age-identifying information including but not limited to dates of school attendance and graduation. You will not be penalized for redacting or removing this information.

Deadline to Apply: 07/21/26

All Xcel Energy employees and contractors share responsibility for protecting the company's information and systems by adhering to cybersecurity policies, standards, and best practices, recognizing that cybersecurity is everyone's responsibility.

ACCESSIBILITY STATEMENT

Xcel Energy endeavors to make https://www.xcelenergy.com/ accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact Xcel Energy Talent Acquisition at [email protected]. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications.

About Xcel Energy

Xcel Energy Careers

Join the dynamic team at Xcel Energy, where innovation meets expertise in the pursuit of sustainable energy solutions. As a leading energy company, Xcel Energy offers unparalleled job opportunities that empower professionals to advance their careers while contributing to environmental stewardship.

Work You’ll Do

At Xcel Energy, you’ll collaborate with skilled professionals dedicated to pioneering advancements in the energy sector. Our team is at the forefront of developing sustainable energy technologies that revolutionize how people consume energy. By joining us, you will be part of a culture that values diversity, leadership, and professional growth.

Innovate and Lead

Step into a role where your skills will directly enhance our capabilities in delivering reliable and sustainable energy. Xcel Energy is a hub for innovation, where your ideas can lead to groundbreaking solutions that shape the future of energy. Our leadership is committed to fostering an environment where creativity and strategic thinking are at the core of our operations.

Career Development

Xcel Energy is deeply invested in the professional development of its team members. With a variety of career paths available, from engineering to customer service, your journey with us is filled with endless possibilities. We support your growth with robust training programs, leadership development opportunities, and diversity training that prepare you for success.

Join Our Team

Explore the numerous employment opportunities at Xcel Energy, from entry-level positions to senior roles. We are hiring individuals who are passionate about making a difference and ready to contribute their expertise to our mission of delivering safe, clean, and reliable energy.

Internship Programs

Kickstart your career with an internship at Xcel Energy. Our internships provide hands-on experience in real-world projects that matter. You’ll gain invaluable insights into the energy sector while developing essential skills that will enhance your resume and increase your marketability.

Benefits and Culture

Xcel Energy is not just about work; we care about our employees' well-being. We offer competitive benefits, including health care, retirement plans, and wellness programs, designed to keep you at your best. Our inclusive culture encourages collaboration and offers networking opportunities that foster connections and professional growth.

Stay Connected

Keep up to date with the latest at Xcel Energy: - **Search Xcel Energy Jobs**: Find positions that match your skills and interests. We look for driven, curious, and innovative team players. - **Read Careers Blog**: Stay ahead with career tips, insider perspectives, and industry-leading insights you can put to use today—all from the people who work here. - **Job Alert Emails**: Personalize your subscription to receive job alerts, latest news, and insider tips tailored to your preferences. Discover the exciting and rewarding opportunities that await at Xcel Energy. Join Xcel Energy today and be part of a team that is dedicated to building a sustainable future. Your career at Xcel Energy is not just a job; it’s an opportunity to excel in an environment that appreciates your contribution and supports your professional growth.
Learn more about Xcel Energy
Size
11,321 employees
Market Cap
$38.6 billion
Industry
Net Income
$1.4 billion
Founded
2000
5 Year Trend
+3.9%
Revenue
$11.5 billion
NASDAQ

Similar Jobs

More Jobs at Xcel Energy

More Information Technology Jobs

Find similar Security Risk Analyst jobs: