Why N-able
N-able is seeking a Senior Security Risk Analyst for the Edinburgh office. Reporting to the Senior Manager of the GRC and CSO, you will identify risks and communicate clearly with cross-functional partners across products, offices, time zones, and corporate verticals. This role involves formal assessments related to our security and privacy programs, as well as ad hoc projects.
You will be part of a security team responsible for managing risk across the company, focusing on assessing and reporting on business, technology, and enterprise risks. The team provides independent assurance, proactively monitors known risks, and leverages data analytics to improve efficiency and effectiveness.
This position also involves assisting in managing risks reviewed by our Risk Committee. Collaboration with multiple stakeholders to execute risk-related activities effectively is essential. An understanding of business processes, security frameworks, and technology risk management is crucial, along with the ability to analyze and synthesize data in a fast-paced environment.
What You'll Do
- Facilitate risk assessments related to enterprise risk and security programs, including business continuity, incident management, disaster recovery, and compliance frameworks such as ISO27001, SOC2, GDPR, HIPAA, FIPS 140-2/3, ISO 22301, etc.
- Promote corporate governance through expertise in security initiatives, understanding of business processes, and effective communication.
- Analyze information to identify root causes and develop actionable plans in collaboration with stakeholders.
- Manage security and privacy training initiatives for employees and contractors.
- Partner with business units to support technology risk analysis, establish roles, and manage residual risk levels.
- Coordinate internal and external audits and manage compliance requests.
- Oversee the Risk Exception process, ensuring proper approvals, documentation, and follow-up meetings.
What we are looking for:
- Experience in risk management, security, technology risk, or IT audit.
- Strong understanding of information security principles, standards, tools, and methodologies.
- Experience with enterprise Risk Management processes and tools like Smartsheet is preferred.
- Knowledge of IT architectures and global company structures.
- Willingness to obtain professional certifications such as CISSP, CISM, CRISC, or CISA within two years.
- Excellent communication skills, including technical and business writing.
- Resourceful, self-motivated, with strong critical thinking and organizational skills.
- Ability to adapt in a dynamic environment, with a sense of humor being a plus.
Purple Perks
- Medical, dental, and vision coverage
- Generous PTO and holidays
- 2 Paid Volunteer Days per year
- Employee Stock Purchase Program
- Fundraising opportunities through our giving program
- Custom learning experiences with N-ablite Learning
- Hybrid working model based on trust and flexibility
About N-able
At N-able, Inc. (NYSE: NABL), we are a global software company transforming IT possibilities into capabilities. We partner with technology leaders to support companies worldwide with secure infrastructure and tools. Our diverse team, the N-ablites, is dedicated to making a difference in how our partners do IT.