The Cybersecurity & AI Risk Analyst supports the Director of Cybersecurity by managing the intersection of cybersecurity, AI governance, data protection, and third-party risk. The role focuses on ensuring security, privacy, and compliance for new AI initiatives and vendor tools across the enterprise.
Key Responsibilities:
-
Conduct risk assessments of AI tools and automation use cases using NIST AI RMF frameworks.
-
Review AI tool submissions for security, privacy, and compliance concerns.
-
Help build and maintain the organization’s AI Registry and workflows.
-
Support configuration and rollout of OneTrust AI Governance and TPRM modules.
-
Coordinate with business, legal, IT, and cyber teams to track and resolve risk reviews.
-
Develop and maintain cybersecurity documentation, playbooks, and governance materials.
-
Participate in AI Governance Group and Triage Team meetings.
-
Assist in managing third-party vendor risks and governance programs.
Preferred Qualifications:
-
3–7 years in cybersecurity, risk, compliance, or privacy.
-
Understanding of AI risk domains (data privacy, bias, transparency).
-
Familiarity with frameworks like NIST AI RMF, CSF, SOC 2, ISO 27001.
-
Experience with OneTrust or similar platforms.
-
Strong communication and documentation skills.
-
(Bonus) Experience in manufacturing, OT/IT, or data governance.
Ideal Candidate Traits:
-
Self-directed and dependable.
-
Comfortable with ambiguity and creating structure.
-
Hands-on and adaptable.
-
Skilled at working with both technical and business stakeholders.
