Senior Cyber Risk & Compliance Analyst

Kidde Global Solutions

$117K — $138K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in IT, Cybersecurity, Risk Management, Accounting, Business, or a related field; relevant experience may be accepted in lieu of a degree.
  • 7+ years of experience in cybersecurity risk, IT risk, internal controls, compliance, or audit-related roles.
  • Experience leading or supporting external audits, with a hands-on approach to execution.
  • Familiarity with multiple cybersecurity frameworks (ISO/IEC 27001, CMMC) and compliance standards.
  • Strong understanding of cybersecurity risk management concepts and audit workflows.

Responsibilities

  • Lead execution of external and internal audits, ensuring compliance and risk management activities are met.
  • Manage the collection and submission of audit evidence, ensuring accuracy and completeness.
  • Proactively track and escalate audit items to mitigate risks and ensure timelines are met.
  • Communicate effectively with auditors and internal stakeholders, providing structured updates.
  • Oversee the end-to-end management of cybersecurity risks, including documentation and remediation activities.
  • Develop governance deliverables and maintain audit-ready documentation for regulatory inspections.
  • Coordinate across departments to ensure all stakeholders are aligned and accountable.

Benefits

  • Annual performance bonus based on individual and company performance.
  • Comprehensive medical, dental, and vision insurance.
  • Life and disability insurance coverage.
  • Retirement plan with employer matching contributions.
  • Generous paid time off, including vacation, sick leave, and company holidays.
  • Employee Assistance Program (EAP) support.
Full Job Description
Senior Cyber Risk & Compliance Analyst

Location: Onsite in Mebane, NC, Bradenton, FL, or Palm Beach Gardens, FL

Base Salary Rate: $117,887 - 138,690 per year

Job type: Full-time position

About This Role

The Senior Cyber Risk & Compliance Analyst is a hands-on execution leader responsible for driving cyber risk, compliance, and audit activities to completion across the enterprise. This role requires a self-directed, highly accountable professional who can independently own workstreams, engage confidently with auditors and senior leaders, and translate requirements into completed, defensible outcomes.

This role is ideal for a senior analyst who operates as a trusted problem-solver, not just a coordinator. It is someone who closes gaps, chases evidence, and ensures commitments are delivered without constant direction.

Key Responsibilities

Audit & Assurance Execution (Primary Focus)
  • Serve as a day-to-day execution lead for external and internal audits (SOX-equivalent, operational audits, cybersecurity reviews).
  • Own audit evidence collection, validation, and submission, ensuring materials are complete, accurate, and audit-defensible.
  • Proactively track open audit items, drive follow-ups, and escalate risks early when timelines or control performance is at risk.
  • Communicate directly with external auditors and internal stakeholders, providing clear, structured updates and resolving questions efficiently.

Cyber Risk Management & Issue Resolution
  • Manage assigned cybersecurity risks end-to-end, including:
    • Risk documentation and tracking
    • Control gaps and remediation activities
    • Owner follow-ups and closure verification
  • Actively challenge incomplete or weak responses and push issues to resolution, rather than passively tracking them.
  • Contribute to risk reviews related to external exposure, penetration testing results, and security control effectiveness.

Operational Governance & Deliverables
  • Independently own governance deliverables such as:
    • Control evidence packages
    • Risk summaries and issue trackers
    • Status updates for leadership and auditors
  • Maintain clear documentation and evidence trails suitable for repeatable audits and regulatory scrutiny.
  • Support enterprise initiatives tied to SOX-level controls, audit remediation, and cyber risk transparency.

Cross-Functional Leadership (Without Direct Reports)
  • Operate as a lead individual contributor, coordinating across IT, Infrastructure, Security, Finance, and third-party vendors.
  • Build credibility with technical and non-technical stakeholders through clarity, follow-through, and consistent delivery.
  • Model strong accountability and raise issues early when dependencies or ownership gaps emerge.


Basic Qualifications
  • Bachelor's degree in Information Technology, Cybersecurity, Risk Management, Accounting, Business, or related discipline (Relevant professional experience may be considered in lieu of a degree)
  • 7+ years of experience in cybersecurity risk, IT risk, internal controls, compliance, or audit-adjacent roles.


Preferred Qualifications
  • Demonstrated experience directly supporting or leading portions of external audits (not just preparing background materials).
  • Proven track record of independently owning workstreams and driving them to completion.
  • Proven experience leading organizations through certification across multiple cybersecurity frameworks, including ISO/IEC 27001, CMMC and comparable regulatory or industry standards.
  • Experience with GRC tools (Drata)
  • Strong understanding of:
    • Cybersecurity risk management concepts
    • IT controls and control evidence expectations
    • Audit workflows and external auditor interaction
  • High personal accountability with the ability to manage multiple concurrent deliverables.
  • Clear, concise written and verbal communication, especially in audit and leadership contexts.
  • Comfortable pushing back, probing gaps, and escalating when needed.
  • Self-starter who requires minimal hand-holding.
  • Execution-focused: prioritizes closure over coordination.
  • Detail-oriented without losing sight of deadlines and outcomes.
  • Exposure to SOX-level environments.
  • Prior experience working in fast-paced, global organizations with distributed stakeholders.
  • Holder of certifications (e.g., CISA, CRISC, CISM, CISSP, CIA, Security+, etc.)


Compensation and Benefits

Individuals may be eligible for an annual performance bonus based on both individual and company's performance. The final compensation for this position will be set based on the individual's knowledge, skills, and experience as it relates to the job requirements. Kidde Global Solutions is committed to providing a competitive benefits package to our employees including medical, dental, and vision coverage, life and disability insurance, retirement plan, paid time off (vacation, sick, company holidays), 401(k) with employer match, EAP assistance, and more.

Similar Jobs

More Jobs at Kidde Global Solutions

More Information Technology Jobs

Find similar Senior Cyber Risk & Compliance Analyst jobs: