Security Analyst - Risk jobs in United States
cer-icon
Apply on Employer Site
company-logo

Grainger · 22 hours ago

Security Analyst - Risk

positionLake Forest, IL
timeFull-time
remoteOnsite
seniorityEntry, Mid Level
money$68K/yr - $113K/yr
date2+ years exp

Grainger is a leading broad line distributor serving millions of customers worldwide. The Security Analyst - Risk will support the organization in identifying, assessing, and managing information security and technology risks while collaborating with various stakeholders to ensure compliance and effective risk management.

HospitalityIndustrialManufacturingOffice SuppliesSupply Chain Management
check
Comp. & BenefitsbadNo H1Bnote

Responsibilities

Perform information security risk assessments, control testing, and security reviews across systems, applications, and processes
Support compliance efforts by assessing alignment with internal policies, regulatory requirements, and industry frameworks such as NIST CSF, PCI DSS 4.0, and related standards, and by assisting in the identification and tracking of remediation activities
Contribute to third-party risk management activities, including reviewing vendor security documentation, conducting risk assessments, and supporting risk rating, issue tracking, and risk acceptance processes
Support technology initiatives—such as new system implementations, cloud services, and process changes—by identifying potential risks and control gaps and advising on mitigation strategies
Strong analytical and communication skills, attention to detail, and the ability to manage multiple priorities
Work independently on assigned assessments while escalating complex risks as needed, contributing to continuous improvement of the organization’s information security risk management program

Qualification

Information SecurityRisk AssessmentNIST CSFCybersecurityGRCVendor Risk ManagementAnalytical SkillsCloud SecurityRisk Metrics PreparationCompliance InitiativesCommunication SkillsOrganizational SkillsTime ManagementAttention to DetailTechnical Documentation

Required

Bachelor's degree in Information Security, Information Systems, Computer Science, Risk Management, or a related field, or equivalent practical experience
2-4 years of experience in information security, technology risk, cybersecurity, GRC, internal audit, or risk advisory roles
Working knowledge of information security and risk frameworks such as NIST CSF, NIST 800-53, or similar standards
Experience conducting risk assessments, control reviews, and gap analyses across applications, infrastructure, cloud environments, or business processes
Familiarity with third-party and vendor risk management, including review of security questionnaires, SOC reports, and other assurance artifacts
Ability to document findings clearly and communicate technical risks in business-focused language
Experience supporting audits, regulatory examinations, or compliance initiatives in collaboration with internal audit, legal, and compliance teams
Strong analytical, organizational, and time-management skills with the ability to manage multiple assessments concurrently

Preferred

Relevant certifications such as CISA, CRISC, CISSP, or progress toward certification
Understanding of common security domains (e.g., access management, data protection, incident response, vulnerability management, network security)
Experience in regulated environments (financial services, healthcare, technology, or similar)
Exposure to cloud security concepts (AWS, Azure, GCP) and modern technology environments
Experience preparing risk metrics, dashboards, or management-level reporting

Benefits

Medical, dental, vision, and life insurance plans with coverage starting on day one of employment and 6 free sessions each year with a licensed therapist to support your emotional wellbeing.
18 paid time off (PTO) days annually for full-time employees (accrual prorated based on employment start date) and 6 company holidays per year.
6% company contribution to a 401(k) Retirement Savings Plan each pay period, no employee contribution required.
Employee discounts, tuition reimbursement, student loan refinancing and free access to financial counseling, education, and tools.
Maternity support programs, nursing benefits, and up to 14 weeks paid leave for birth parents and up to 4 weeks paid leave for non-birth parents.

Company

Grainger

twittertwittertwitter
Glassdoor4.1
company-logo
As a leading business-to-business organization, more than 4.5 million customers worldwide rely on Grainger for products in categories such as safety, material handling and metalworking, along with services like inventory management and technical support.
dateFounded in 1927
location
Savannah, Georgia, USA
people-size10001+ employees
web-link
https://www.grainger.com

Funding

Current Stage
Public Company
Total Funding
unknown
1978-01-13IPO

Leadership Team

leader-logo
D. G. Macpherson
Chief Executive Officer
linkedin
leader-logo
Nancy Berardinelli-Krantz
Senior Vice President and Chief Legal Officer
linkedin

Recent News

PR Newswire
DuPont Announces Appointment of D.G. Macpherson to Board of Directors
2026-01-20
Benzinga.com
If You Invested $1000 In W.W. Grainger Stock 5 Years Ago, You Would Have This Much Today
2025-12-30
thefly.com
Grainger price target raised by $12 at Barclays, here's why
2025-11-08
Company data provided by crunchbase