Advance the automotive market and advance your career at Gentex! Join a collaborative culture devoted to innovation, cooperation, and continuous improvement. Your ideas are not just heard, they are celebrated! Explore Gentex today!
Position Overview
The IT Risk Analyst I position will be responsible for assessing and documenting information security risks and mitigations, as they relate to third-party access and technology services and responding to security inquiries from customers.
What You’ll Do
- Conduct risk assessments with third-party access and technology services, software, and systems.
- Respond to information security audits and assessments from customers.
- Participate in on-site, third-party assessments and reporting, when required.
- Contribute to the development and continuous improvement of Third-Party Information Security Risk Management (TPISRM) processes, procedures, and related policies.
- Develop a comprehensive understanding of existing third-party technology solutions used by Gentex (systems, software, services, people, and processes).
- Maintain a third-party inventory and assessment schedule.
- Collaborate with colleagues to address third-party vulnerabilities and monitor progress.
- Function as a point of contact for business users requesting new information technology or related services.
- Assist with data analytics, risk reporting and key metric processes.
- Support third party risk management tool implementation and maintenance.
- Partner with colleagues across multiple business units to help drive completion of assigned third party risk assessments from scheduling to execution, and remediation.
- Work with business units to ensure third parties are accurately assessed and are operating consistently with third party risk and due diligence processes.
- Other duties as assigned.
How You’ll Do It
- Analytical Thinking - Tackling a problem by using a logical, systematic, and sequential approach.
- Attention to Detail - Ensuring information is complete and accurate; following up with others to ensure that agreements and commitments have been fulfilled.
- Communicating Effectively - Developing and delivering multi-mode communications that convey clear understanding, taking into account the unique needs of different audiences.
- Individual Efficiency - Effectively managing time and resources so that individual work is completed efficiently.
- Situational Adaptability - Ability to work with evolving systems, processes and structures, demonstrating the flexibility to adapt to changing environments, requirements and regulations. Showing an openness to new ideas and handling uncertainty well. Willing to assume new responsibilities when necessary.
- Maintaining a high level of honesty, integrity, and confidentiality with respect to company matters.
- Complying with all Company policies and procedures, safety regulations, company safety policies and safely perform all duties, including but not limited to, promoting a safe workplace.
What To Bring
- Bachelor’s degree in Information Systems Management, Information Security, or a related field; or an equivalent combination of education and experience in information systems, cybersecurity, auditing and compliance.
- Proficiency in Microsoft Office Suite.
What Will Help
- At least 1 year of experience in information technology with focus in cybersecurity, including governance, 3rd party risk, compliance, and cyber risk management.
- Certifications in relevant areas (CISM, CGRC, CISA, ISACA, CRISC).
- Experience with information security risk assessments.
- Experience or training developing risk mitigation controls, processes, and procedures.
Gentex is an equal opportunity employer
Gentex extends equal employment opportunities to qualified applicants and employees regardless of an individual’s race, color, religion, national origin, age, sex (including pregnancy, gender identity, and sexual orientation), disability, marital status, military service, height, weight, genetic information, or any other reason protected by law.
Assistance
Gentex is committed to working with and providing reasonable accommodation to applicants with disabilities. For accommodation requests, email us at recruiting@gentex.com. Gentex will not discriminate against any qualified individual who can perform the essential functions of the job with or without a reasonable accommodation.
Understand your right to work
At Gentex, we use E-verify to confirm you're authorized to work in the U.S.
E-Verify – English & Spanish
Right to Work – English
Right to Work - Spanish