Technology & Security Risk Analyst

Full job description

Overview:

Celanese Corporation is a global chemical leader in the production of differentiated chemistry solutions and specialty materials used in most major industries and consumer applications. Our businesses use the full breadth of Celanese's global chemistry, technology and commercial expertise to create value for our customers, employees, shareholders and the corporation. As we partner with our customers to solve their most critical business needs, we strive to make a positive impact on our communities and the world through The Celanese Foundation. Based in Dallas, Celanese employs approximately 13,000 employees worldwide and had 2023 net sales of $10.9 billion. For more information about Celanese Corporation and its product offerings, visit www.celanese.com.

Responsibilities:

The Technology Risk Analyst is responsible for supporting both Information Technology and Information Security in all aspects of end-to-end technology/information security risk assessments. This opportunity allows for risk to be assessed across a broad spectrum of targets (e.g., applications, systems, technical environment, business processes) to help secure Celanese’s technology assets. You will lead and execute in-depth risk assessments, investigate and quantify strategic, operational and regulatory risks, develop an monitor issues that span the organization’s technology footprint. This will require attention to detail to uncover risks and their impact to the organization.

Qualifications:

Key Duties and Responsibilities:

• Participates in the application of operational risk policies, technology and tools, and governance processes to create lasting solutions for minimizing losses from failed internal processes, inadequate controls, and emerging risks.
• Conduct risk assessments to anticipate, identify, evaluate complex data to mitigate risk to Celanese’s digital maturity and information security posture. Document risks and drive remediation and effective migration efforts by building and engaging cross-functional relationships with stakeholders.
• Effectively manage issues, track remediations, interface with the business; represent management’s views when communicating risk-related concerns related to technology products and services.
• Liaise and provide security risk guidance for IT projects, including the evaluation and recommendation of technical controls to ensure alignment between security and technology implementation practices.
• Problem solving: ability to effectively seek ways to resolve issues in a streamlined approach while acknowledging inherent complexities.
• Develop and report on Key Risk Indicators (KRI’s) and Key Performance Indicators (KPI’s) and make recommendations for changes or improvements, balancing business needs with risk assessment.
• Proactively manages Celanese’s Third Party Risk Management outsourced service via the Managed Service Provider (MSP).

Qualifications:

What YOU will bring to the team

• Prefer 5-8 years of experience in; internal risk management cybersecurity, Governance, Risk and Compliance (GRC), Issue Management, Internal Technology Audit, Information Security Assurance and(or) strong audit/technical evaluation experience with various types of systems, networks and cloud technology.
• Excellent verbal and written communication skills
• Focused with excellent Interpersonal skills and ability to work well in a team environment collaborating across diverse groups.
• Demonstrated understanding of operational technology risk and gap identification.
• Ability to multi-task and manage multiple objectives simultaneously
• Ability to present a compelling case to influence others where appropriate
• Undergraduate degree in Computer Science or information technology-related field or equivalent combination of training and experience required.