Cybersecurity Governance, Risk, & Compliance Administrator – IL Lisle

at Joseph T. Ryerson & Son, Inc.
Published January 22, 2022
Location Lisle, IL
Category Default  
Job Type Full-time  


Job ID: 6660

Position Description:
Joseph T. Ryerson & Son, Inc., one of the largest metals distributors in the US, is currently seeking a Cybersecurity Governance, Risk, & Compliance Administrator to join our team in Lisle, IL. Reporting to the Sr. Manager, IT Security & Compliance, the successful candidate will analyze, report and respond to detected cyber incidents. You will act as a Cyber Incident Response Specialist, utilizing cybersecurity tools to proactively search for threats to systems or networks. This position will work with all members of the team.

Roles & Responsibilities
• Review Supply Chain Vendors and Suppliers. Perform risk/security assessments of Suppliers and Third Party relationships to identify, validate, and remediate risks.
• Support Audit, Compliance, and Regulatory programs for Cybersecurity and its Technology organization internal business partners.
• Monitor, revise, and develop IT Security Policies, Procedures, and Controls.
• Map existing and new changes to Ryerson network and identify risks.
• Map and maintain vendor and supplier network diagrams and process understandings.
• Represent IT Security on special projects within Ryerson.
• Readily learn and administer solution products and services for cyber and security protection.
• Share best practice solutions to problems based on knowledge of IT controls, security frameworks, and compliance standards.
• Gather, review, analyze, and present data and recommendations to company management.
• Readily use and learn available office productivity and reporting software products.
• Other duties as assigned.

Position Requirements:
• Associates degree required (Bachelor's Degree preferred) in Computer Science, Information Systems, Management Information Systems, Business Administration or other related field.
• Open to experience in other relevant fields with demonstrated relevancy to cybersecurity based roles.
• Knowledge of IT security administration and IT controls. Working knowledge of audit practice and methods. Knowledge of IT control frameworks and best practice controls for security, change management, and operations.
• Minimum 3 years of governance, risk, and compliance experience
• Minimum 3+ years of work experience including roles in cybersecurity, audit, risk, and compliance.
• Solid understanding of Enterprise Risk Management and strategy frameworks as well as understanding of current enterprise threat scenario’s.
• Open to experience in other relevant fields with demonstrated relevancy to cybersecurity based roles.

We are an Equal Opportunity Employer and do not discriminate against
any employee or applicant for employment because of race, color, sex,
age, national origin, religion, sexual orientation, gender identity,
status as a veteran, and basis of disability or any other federal,
state or local protected class.