Kellogg Lead IT Security Analyst – Governance, Risk & Compliance in OAK BROOK, Illinois

Join our dynamic, progressive team of IT professionals in an environment where you can learn and grow, and create innovative technology solutions to help our business flourish. Become a part of our rich heritage that has grown from a small family business to a global organization with a presence in over 180 countries.

At the heart of the Kellogg Company is technology — a key enabler of how we market, sell and manufacture our well-known and beloved brands to consumers around the globe.

We have an opening for you to grow with us as Lead IT Security Analyst – Governance, Risk & Compliance in Oak Brook, IL or Battle Creek, MI. This critical role will be within the IT Security GRC organization, responsible for executing and managing multi-faceted projects related to: data security governance, and risk management, mitigation and response; compliance; control assurance; and user awareness.

This role will be part of the Data Security Governance team focused on developing and driving security strategies, policies/standards, ensuring the effectiveness of solutions, and providing security-focused consultative services to the organization. This individual will also perform risk assessments, analyzes technology and information security risks to the enterprise, identifies control needs and works with the technology/product owner to drive implementation of appropriate controls to comply with Kellogg’s policy and standards. Works closely with data/process owners and control performers to educate on control requirements and associated risk of non-compliance.


In your role as a Lead IT Security Analyst – GRC, you will enable Kellogg to compete in a secure manner, grow our business and build on our success by leading the following data security governance activities:

  • Develop, communicate, and deploy global data security governance standards, processes and procedures that are fully auditable and compliant with data security policies, and control objectives

  • Manage a risk assessment program targeting data security and privacy standards

  • Consult with IT and business units to ensure solutions/capability requirements include applicable data security control objectives and standards

  • Leverage analytical skills to gain insights, technical proficiency to deliver right-fit solutions, and stellar communications skills to present findings, discovery, and recommendations in a logical and easily understandable manner

  • Develop and maintain key metrics, reports and scorecards for tracking key goal indicators (KGI’s), key risk indicators (KRI’s), and key performance indicators (KPI’s) indicative of effective risk management, and value delivery

  • Deliver awareness and training program on data security and privacy matters for employees and contractors


At Kellogg Company, we recruit the best people to help grow our business and build on our success. To be considered for this position you must be able to demonstrate the following:


  • High School Diploma or GED with related IT and Security work experience

  • Knowledge and experience with various IT governance, control frameworks, and standards such as NIST, COBIT, CMMI, ISO 2700x, SOC II, and security regulations/directives including GPDR, SOX, CSA, etc

  • Experience in risk management practices and programs, and privacy by design concepts

  • Project management experience implementing a governance process, technology platform, or a strategic business partner

  • Excellent time management and related organizational skills including appropriate sense of urgency and a proactive approach

  • Ability to work independently and cross-functionally with strong leadership skills to drive organizational change to effectively meet strategic and tactical goals

  • Detail oriented with strong communication, report writing and presentation skills

  • Troubleshooting skills, demonstrating an aptitude for conducting quantitative and qualitative analysis of large and complex data, problem-solving, negotiation and decision-making skills

  • Working knowledge of eGRC platforms (e.g. RSA Archer), and at least one of the following:

  • ERP systems (e.g. SAP)

  • CRM, Sales/Marketing solutions (e.g. Salesforce, StayinFront)

  • BI & Analytics platforms (e.g. Tableau)


  • Bachelor’s degree in a related field

  • Master’s in Cyber Security Governance Risk & Compliance

  • Related certifications such as CISM, CISSP, CRISC, CGIET

  • Global experience


The ability to work a full shift, come to work on time, work overtime as needed and the ability to work according to the necessary schedule to meet job requirements with or without reasonable accommodation is an essential function of this position.

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, ethnicity, disability, religion, national origin, gender, gender identity, gender expression, marital status, sexual orientation, age, protected veteran status, or any other characteristic protected by law.

Title: Lead IT Security Analyst – Governance, Risk & Compliance

Location: USA-IL-Oak Brook

Other Locations: USA-MI-Battle Creek - Corporate Headquarters

Requisition ID: INF000982

Job Function: Information Technology

Job Type: Professional

Closing Date: Nov 11, 2017, 11:59:00 PM

Relocation Assistance: No