Sr InfoSec Compliance & Risk Analyst

Sr InfoSec Compliance & Risk Analyst

Req. #
26458

Job Family
BT - Business Technology

Location
US

Pay Range Minimum
USD $97,500.00

Pay Range Maximum
USD $162,500.00
Overview

Waters is seeking a driven and experienced Sr. Information Security Compliance and Risk Analyst to lead and advance our enterprise-wide GRC program, ensuring our security posture remains resilient, audit-ready, and aligned with industry-leading frameworks such as ISO 27001, SOC 2, NIST CSF, and CMMC. In this high-impact role, you will own risk assessments, compliance initiatives, conduct interal audits within the IT organization, and third-party vendor evaluations while partnering with cross-functional stakeholders to embed a culture of risk aware security accountability across the organization. You will serve as a trusted advisor to IT leadership, translating complex regulatory requirements and emerging threats into clear, actionable strategies that protect our business and our customers. If you bring 5+ years of cybersecurity and GRC expertise, a sharp analytical mindset, and a passion for building world-class security programs, we want to hear from you - certifications like CISSP, CISM, or CRISC are a strong plus.

Responsibilities

Information Security Governance & Risk Management:
Lead and manage security compliance initiatives across the organization (e.g., ISO 27001, SOC 2, NIST CSF, CMMC, NIST AI RMF, etc.), including audit readiness, external certifications, and ongoing control maintenance.
Aid in the ongoing development of Waters GRC program by supporting and maturing Waters Corporate IT compliance efforts.
Assist our IT organization by determining appropriate security measures and by guiding the enterprise in implementing technical, operational and administrative controls throughout Waters IT ecosystem.
Coordinate in maintaining and developing Waters IT security documentation (policies, standards, architectures, designs, procedures, and guidelines), ensuring change control and document availability.
Contribute to the administration of Waters Information Security Management System.
Collaborate with internal stakeholders to ensure security policies and procedures are understood and followed.
Aid in monitoring regulatory changes and emerging risks; advise leadership on potential impacts and required actions.
Develop and deliver security awareness and compliance training programs.
Audit & Customer Response
Prepare and support internal and external audits, including evidence collection and response coordination.
Support responding to security questionnaires and demonstrating IT compliance with security frameworks.
Draft and maintain clear, consistent, and audit-ready documentation, including policies, control... For full info follow application link.

Waters Corporation is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status.