Cumberland Farms
Sr. Governance, Risk, and Compliance Analyst
Cumberland Farms, Westborough, Massachusetts, us, 01581
Sr. Governance, Risk, and Compliance Analyst
Join to apply for the
Sr. Governance, Risk, and Compliance Analyst
role at
Cumberland Farms . Overview
Are you curious about solving complex business challenges for a leading convenience retailer? Do you have a passion for cross functional collaboration? Then you may be the perfect addition to our team! Description
Are you curious about solving complex business challenges for a leading convenience retailer? Do you have a passion for cross functional collaboration? Then you may be the perfect addition to our team! Cumberland Farms is a member of the EG America family of brands. EG America is one of the fastest-growing convenience store retailers in the United States, committed to becoming America’s #1 ‘one-stop’ destination. The business has an established pedigree of delivering excellent fuel, grocery and merchandise, and food service. Headquartered in Westborough, Massachusetts, our Company has grown to over 1,500+ locations across the United States employing over 18,000 team members. You can find us operating under the following store banners: Certified Oil, Cumberland Farms, Fastrac, Kwik Shop, Loaf N Jug, Minit Mart, Sprint Food Stores, Tom Thumb, Turkey Hill, and Quik Stop. Our headquarters in Westborough, MA is home to our Store Support Center, Company Warehouse, and Culinary Center. What We Offer
Competitive Wages Work today, get paid tomorrow through our earned wage access program* Paid Time Off Medical/Health/Dental Coverage 401K with Company Match Team Member Discounts Tuition Reimbursement Employee Assistance Program Health Savings Account Company Spirit Days Employee recognition and awards And much more! Position Summary
EG America
is seeking a Senior Governance, Risk and Compliance (GRC) Analyst with a strong understanding of IT audit practices and security fundamentals. Reporting to the Head of IT Security, the ideal candidate will support compliance initiatives, evaluate and track security and privacy risks, and coordinate with technology teams to ensure adherence to regulatory requirements. Responsibilities
Assist in development and maintenance of control policies, libraries, and risk registers. Participate in compliance programs and regulatory audits. Review data handling practices for compliance with privacy frameworks. Evaluate new vendors for security and privacy controls. Conduct control audits to ensure compliance with company’s defined standards. Participate in security risk assessments. Review and interpret vulnerability findings and track remediation efforts. Working Relationships
Internal IT Teams, Internal Business Units, 3rd party technology partners. Requirements
Minimum Education:
Bachelor’s degree Preferred Education:
Bachelor’s degree or higher in Computer Science, Information Systems, or Cyber Security Minimum Experience:
5-7 years of experience in information security, IT Audit and GRC. Preferred Experience 7+ years of experience in information security, IT Audit and GRC. Strong experience with Vulnerability Management Processes and Interpreting findings. Hands-on experience with identity access reviews. Experience leading internal and external IT audits. Experience performing 3rd party risk reviews and diligence. Experience developing and maintaining Policy and Standard libraries. Prior experience managing risk register. Proficiency with GRC platforms Experience with the following regulations and control frameworks (PCI-DSS, CCPA, GDPR, Sarbanes Oxley (SOX), NIST) Retail experience preferred Licenses/Certifications:
CISSP, CISM, CRISC Soft Skills
Excellent oral and written communication skills, presentation skills Excellent problem-solving and analytical skills High proficiency in Microsoft Office Travel
N/A Hours & Conditions
Typically Monday – Friday, 8 hour days, 4 days per week in office with opportunity for 1 flex day from home per week contingent on job performance/business needs. Physical Requirements
Ability to maneuver and regularly lift and or move up to 10 pounds, frequently lift and/or move up to 25 pounds. Additional Info
At EG America, it’s important that our employees reflect the world we live in and the communities we serve. We celebrate our differences, so your unique background and skillset could bring a wonderful new perspective to our team. If you have a passion for delivering exceptional results, thrive in a fast-paced corporate environment, and bring experience in business management or related areas, we'd love to meet you - even if you don't meet every single requirement.
#J-18808-Ljbffr
Join to apply for the
Sr. Governance, Risk, and Compliance Analyst
role at
Cumberland Farms . Overview
Are you curious about solving complex business challenges for a leading convenience retailer? Do you have a passion for cross functional collaboration? Then you may be the perfect addition to our team! Description
Are you curious about solving complex business challenges for a leading convenience retailer? Do you have a passion for cross functional collaboration? Then you may be the perfect addition to our team! Cumberland Farms is a member of the EG America family of brands. EG America is one of the fastest-growing convenience store retailers in the United States, committed to becoming America’s #1 ‘one-stop’ destination. The business has an established pedigree of delivering excellent fuel, grocery and merchandise, and food service. Headquartered in Westborough, Massachusetts, our Company has grown to over 1,500+ locations across the United States employing over 18,000 team members. You can find us operating under the following store banners: Certified Oil, Cumberland Farms, Fastrac, Kwik Shop, Loaf N Jug, Minit Mart, Sprint Food Stores, Tom Thumb, Turkey Hill, and Quik Stop. Our headquarters in Westborough, MA is home to our Store Support Center, Company Warehouse, and Culinary Center. What We Offer
Competitive Wages Work today, get paid tomorrow through our earned wage access program* Paid Time Off Medical/Health/Dental Coverage 401K with Company Match Team Member Discounts Tuition Reimbursement Employee Assistance Program Health Savings Account Company Spirit Days Employee recognition and awards And much more! Position Summary
EG America
is seeking a Senior Governance, Risk and Compliance (GRC) Analyst with a strong understanding of IT audit practices and security fundamentals. Reporting to the Head of IT Security, the ideal candidate will support compliance initiatives, evaluate and track security and privacy risks, and coordinate with technology teams to ensure adherence to regulatory requirements. Responsibilities
Assist in development and maintenance of control policies, libraries, and risk registers. Participate in compliance programs and regulatory audits. Review data handling practices for compliance with privacy frameworks. Evaluate new vendors for security and privacy controls. Conduct control audits to ensure compliance with company’s defined standards. Participate in security risk assessments. Review and interpret vulnerability findings and track remediation efforts. Working Relationships
Internal IT Teams, Internal Business Units, 3rd party technology partners. Requirements
Minimum Education:
Bachelor’s degree Preferred Education:
Bachelor’s degree or higher in Computer Science, Information Systems, or Cyber Security Minimum Experience:
5-7 years of experience in information security, IT Audit and GRC. Preferred Experience 7+ years of experience in information security, IT Audit and GRC. Strong experience with Vulnerability Management Processes and Interpreting findings. Hands-on experience with identity access reviews. Experience leading internal and external IT audits. Experience performing 3rd party risk reviews and diligence. Experience developing and maintaining Policy and Standard libraries. Prior experience managing risk register. Proficiency with GRC platforms Experience with the following regulations and control frameworks (PCI-DSS, CCPA, GDPR, Sarbanes Oxley (SOX), NIST) Retail experience preferred Licenses/Certifications:
CISSP, CISM, CRISC Soft Skills
Excellent oral and written communication skills, presentation skills Excellent problem-solving and analytical skills High proficiency in Microsoft Office Travel
N/A Hours & Conditions
Typically Monday – Friday, 8 hour days, 4 days per week in office with opportunity for 1 flex day from home per week contingent on job performance/business needs. Physical Requirements
Ability to maneuver and regularly lift and or move up to 10 pounds, frequently lift and/or move up to 25 pounds. Additional Info
At EG America, it’s important that our employees reflect the world we live in and the communities we serve. We celebrate our differences, so your unique background and skillset could bring a wonderful new perspective to our team. If you have a passion for delivering exceptional results, thrive in a fast-paced corporate environment, and bring experience in business management or related areas, we'd love to meet you - even if you don't meet every single requirement.
#J-18808-Ljbffr