SUMMARY

AutoZone is seeking a passionate and highly motivated ITGRC Analyst to join our team. As an Associate Systems Engineer, you will have the opportunity to develop a deep understanding of privacy, governance, risk assessment, cybersecurity, regulatory compliance, vendor management, security training, and data management. This position will play a crucial role in executing and delivering ITGRC programs to enhance our privacy, governance, risk, and compliance practices, while positively impacting information security risks.

RESPONSIBILITIES
• Identify and document security concerns and assist in implementing appropriate mitigating controls.
• Assist in managing risks to data, systems, and processes under the guidance of senior analysts.
• Learn to accurately plan and execute work tasks, ensuring timely completion of projects.
• Track project progress and time allocation effectively.
• Receive training, coaching, and technical mentoring from experienced security analysts and engineers.
• Collaborate with department and organizational leadership to define and implement Risk Management best practices.
• Gain experience in providing direction and oversight of enterprise security training workflows. Create limited training and awareness materials.
• Assist in identifying assessment gaps, and information security risks, and provide recommendations for remediation.
• Observe and contribute to security risk assessments within the AutoZone community and provide advisory support to business partners.
• Collaborate with external stakeholders to define and implement processes aimed at reducing cyber risk.
• Learn to enhance and utilize Governance, Risk, and Compliance technology-based tools for recording risk levels, automating risk assessments, and facilitating risk monitoring.
• Participate in mentoring team members on information security controls, standards, and best practices in line with applicable cybersecurity, privacy regulations, and third-party digital risk.
• Build partnerships with internal stakeholders by delivering value-driven risk management and advisory services.
• Assist in administering risk assessments for vendors in the US, Mexico, Brazil, and China, while researching global risk, privacy, and compliance regulations and standards.
• Willingness to pursue one or more of the following Certifications (preferred): CISSP, CIPP Series, CGEIT, CISM, CISA, CRISC, PMP.

REQUIREMENTS

• Bachelor's degree in computer science or related field.
• Strong passion for cybersecurity and a desire to learn and develop skills in the field.
• Excellent analytical and problem-solving abilities.
• Effective communication and interpersonal skills.
• Ability to work collaboratively in a team environment.
• Basic knowledge of information security principles and practices.
• Familiarity with cybersecurity regulations and standards is a plus.
• Strong attention to detail and the ability to prioritize tasks.
• Proficiency in using the Microsoft Office suite.
• Willingness to continuously learn and adapt to new technologies and industry trends.