This job was posted by https://idahoworks.gov : For more information, please see: https://idahoworks.gov/jobs/2260561 Title: Senior Information Security Analyst

Location: Eagle, ID

About Lamb Weston

We love making fries almost as much as you like eating them! Since the 1950\'s, Lamb Weston has inspired customers with food they love, trust, and share with families and friends. As a leading global manufacturer of quality frozen potato products with over 10,000+ team members around the world, it\'s our business to see the possibilities in potatoes and people.

We are looking for team members with an appetite for a challenge! People who are hungry to join a winning team and help us make a difference in the world. When you join Lamb Weston, you join a community with a strong support network and training programs designed to nurture, inspire, and help you grow.

We are driven by a relentless pursuit of results and by people who think creatively and embrace our values of: Integrity, Teamwork, Inclusion, Drive for Results, and Empowerment. Exactly what you\'d expect from the most inventive potato company in the world!

Join Lamb Weston! We bring the world together with our fries.

Job Description Summary

The Senior Information Security Analyst is responsible for ensuring Lamb Weston\'s compliance with IT security standards, including SOX compliance, IT General Controls (ITGCs), and other regulatory requirements. This role involves collaborating with various departments to assess, document, and enforce security policies, procedures, and controls. The ideal candidate will have deep expertise in information security, a strong understanding of regulatory compliance frameworks, and experience conducting IT audits. Reporting to the Senior Manager of IT GRC within the Cybersecurity organization, this role is primarily responsible for the program management, scoping, and testing of IT General Controls within key systems supporting our financial reporting processes. This position will also be responsible for quality checks and performance of the SOC1 SOX Control in addition to collaborating with the Sr. Manger of IT GRC for SOX Control Management and Reporting to IT and Business Management.

Job Description

• Lead efforts to ensure compliance with SOX, ITGCs, and other relevant regulatory requirements.
• Collaborate with internal and external auditors to facilitate SOX and ITGC testing.
• Develop, maintain, and enforce IT security policies and procedures in alignment with regulatory requirements.
• Design, implement, and monitor ITGCs to safeguard information assets and ensure the integrity of financial reporting systems.
• Ensure ITGCs are aligned with industry standards and best practices.
• Provide guidance and training to IT teams on control requirements and remediation processes.
• Ensures that compliance requirements are fully met across all IT areas.
• Supports IT SOX control audits and processes to include control performance.
• Periodically review existing standards and procedures relating to security framework (IT general controls, COBIT, COSO) and update as necessary.
• Assists with the management and continuous improvements for both IT SOX Control and non-SOX IT Controls.
• Identifying opportunities for continuous improvement in the quality and efficiency of our IT SOX program
• Communicating with Internal Audit management regarding testing status, audit issues and deadlines.
• Building and maintaining effective relationships with the business areas, including understanding changes to IT processes and potential impact to the IT SOX environment.
• Collaborating across the SOX and Internal Audit team to achieve department goals beyond IT SOX, such as teambuilding efforts or cross-department initiatives.
• Maintaining sufficient IT-based knowledge, awareness of emerging trends and professional certifications to meet the requirements of the Internal Audit Charter.

Basic & Preferred Qualifications

• Proven ability to thrive in a position requiring multi-tasking in a high activity and fast-paced environment.
• Understanding of emerging technologies and willingness to learn new capabilities.
• Strong attention to detail and exceptional organizational skills
• Ability to define problems, collect/analyze data, establish facts, draw valid conclusions, prepare reports, prioritize and manage several concurrent initiatives.
• Strong knowledge of SOX, ITGCs, and other regulatory compliance frameworks.
• Experience with security audit processes and working with external auditors.
• In-depth understanding of risk management principles and methodologies.
• Excellent communication skills, both written and verbal.
• Ability to work independently and as part of a team.
• Strong analytical and problem-solving skills.
• Familiarity with standard security tools and technologies.

Qualifications

Bachelor\'s degree in information security, Computer Science, or a related field. Master\'s degree preferred.

Minimum of 5-7 years of experience in information s