Company: FedEx ACC
Location: Hyderabad, Telangana, India
LinkedIn post

Job Title: Cyber Security Analyst – Risk Analyst

Work Location: IN/Hyderabad

FedEx Information Security (InfoSec) ensures the security of the enterprise systems and data, through business agility, system reliability, and information security controls to enable the business to deliver the Purple Promise. The Global InfoSec team strives to protect the enterprise from cyber threats, secure business operations, and ensure global regulatory compliance.


Job Descriptions:

  • Under general supervision, it supports Information Security governance, risk management and compliance processes.
  • Monitors and reports internal compliance against internal key Risk Indicators, external regulations and industry standards.
  • Performs risk assessments, oversight and enforcement activities to meet enterprise-wide information security requirements.
  • Provides recommendations to moderately complex issues.


Key Responsibilities:

  • Conduct comprehensive risk assessments to identify and evaluate IT risks across the organization.
  • Provide risk-based decision-making guidance to management team on all aspects of IT risk management
  • Maintains a risk register, documenting identified risks, their potential impacts, and mitigation strategies.
  • Recommends effective risk mitigation strategies and controls to reduce identified IT risks.
  • Collaborate with IT and security teams to ensure that risk mitigation measures are integrated into system designs and operations.
  • Monitor the effectiveness of risk mitigation efforts and make recommendations for improvement.
  • Develop and update IT risk management policies, procedures, and guidelines in line with industry standards and regulatory requirements.
  • Ensure compliance with relevant regulations, standards, and frameworks (e.g., ISO 27001, NIST, ISO3100).
  • Prepare and present detailed risk assessment reports, risk dashboards, and metrics to senior management and other stakeholders.
  • Communicate complex IT risk concepts and findings to non-technical stakeholders in a clear and concise manner.
  • May be required to perform other duties as assigned.


Requirement:

  • Preferred Bachelor's degree or equivalent in Risk Management, Computer Science or related discipline
  • Proficiency in English comprehension
  • Preferably with minimum 3-5 years of work experience especially in Risk Management, cyber security, or regulatory compliance
  • Preferably have Analytical Skills; Planning & Organizing Skills; Project Management Skills; Interpersonal Skills; Accuracy & Attention to Detail
  • Preferably have practical knowledge in using ServiceNow Modules and Microsoft Office, particularly in Power BI, Power Automate
  • GRCP, Knowledge of security frameworks - NIST, MITRE, OWASP, ISO 27001, Service now Vulnerability Response, GitHub and Onspring, Agility
  • Preferably have practical experience in implementing LEAN, AGILE and Design Thinking
  • Strong troubleshooting skills a must