Cybersecurity Analyst GRC III

Who We Are: At Avnet, relationships matter. We are a global, FORTUNE ® 500 technology distributor and solutions company that delivers design, supply chain and logistics expertise to customers at every stage of a product’s lifecycle. Our employees have a front row seat to the latest innovations shaping the world we live in and the future we share. We’re driven to help our customers around the world succeed and we do so by earning the trust of some of the biggest names in technology. Working at Avnet means being a part of a global team. We work collaboratively and with integrity, doing business the right way. For more than a century, we have partnered together to help our customers, suppliers and teammates realize the transformative possibilities of technology. Experience what’s next at Avnet! **Due to the nature of our federal contracts, this position requires U.S. citizenship. We are unable to offer visa sponsorship for this role.** Job Summary: We are looking for a highly skilled and experienced Senior Cybersecurity Governance, Risk, and Compliance (GRC) Analyst to join our global security enablement team. This role is essential in advancing our GRC initiatives across international operations. The successful candidate will have strong expertise in cybersecurity assessments, regulatory frameworks, and risk management, and will help shape and maintain our global security posture. Key Responsibilities: Governance • Lead and execute cybersecurity assessments using recognized frameworks such as NIST CSF and ISO/IEC 27001. • Develop, update, and manage cybersecurity policies, standards, and procedures to meet global regulatory requirements. • Stay informed about emerging threats, regulatory changes, and industry best practices to guide governance efforts. • Design and deliver cybersecurity training and awareness programs tailored to global audiences. • Create and manage internal communications related to cybersecurity initiatives, policies, and compliance updates. Risk Management • Conduct risk assessments across business units and regions. • Maintain and update risk registers, and support the development of mitigation strategies. • Support third-party risk management by assessing vendor security practices and compliance. Compliance • Support internal and external audit preparation and response activities. • Monitor and report on compliance status, risk metrics, and control effectiveness. • Ensure alignment with global compliance requirements, including SOX, CMMC, ISO 27001, NIST CSF, NIST 800-171. Qualifications: • In-depth knowledge of cybersecurity standards, regulatory frameworks, and certification requirements, including: • Sarbanes-Oxley (SOX) • CMMC • ISO/IEC 27001:2022 • NIST CSF 2.0 • NIST Risk Management Framework • NIST 800-171 • Strong communication and stakeholder engagement skills. • Business-level proficiency in written and spoken English. • Ability to work independently and collaboratively across time zones and cultures. Work Experience: • Typically 5+ years with bachelor's or equivalent. Education & Certifications: • Bachelor's degree or equivalent experience from which comparable knowledge and job skills can be obtained. Distinguishing Characteristics: • Minimum of four (4) years of experience in cybersecurity GRC roles, preferably in a global enterprise environment. • Proven experience in conducting risk assessments, gap analyses, and control testing. • Familiarity with GRC platforms and tools such as ServiceNow, AuditBoard, or Onspring. • Bachelor’s degree in Information Security, Information Technology, or a related field, or equivalent practical experience. • Professional certifications such as CISSP, CISA, CRISC, or ISO 27001 Lead Auditor are highly desirable. #LI-HYBRID What We Offer: Our employees work hard to live our values and help us grow. Our total rewards strategy supports Avnet’s ability to attract, engage, develop, and reward our employees, while promoting a diverse and inclusive environment. We offer competitive compensation and benefit programs — from time away and flexible working arrangements to programs supporting employee well-being and opportunities to give back to your community. • Generous Paid Time Off • 401K and Pension Plan • Paid Holidays • Family Support (Paid Leave, Surrogacy, Adoption) • Medical, Dental, Vision, and Life Insurance • Long-term and Short-term Disability Insurance • Health Savings Account / Flexible Spending Account • Education Assistance • Employee Development Resources • Employee Wellness, Leadership Development and Mentorship Programs Benefits listed above may vary depending on the nature of your employment with Avnet. This position will have access to ITAR product and therefore be authorized to access product. This position requires the employee to be a U.S. Citizen or National, or a lawful permanent resident as defined by 8 U.S.C. 1101(a)(20), or a protected individual as defined by 8 U.S.C. 1324b(a)(3). The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills. Avnet is an Equal Opportunity Employer committed to providing equal opportunities to all employees and applicants for employment without regard to race, color, religion, ancestry, national origin, sex (including pregnancy), age, marital status, sexual orientation, gender identity or expression, disability, veteran status, genetic information or any other characteristic protected by law. This policy of non-discrimination also applies to religious dress and grooming practices. Avnet will accommodate employee religious dress standards and grooming practices that do not result in undue hardship for the Company. If you are interested in applying for employment with Avnet and need special assistance or an accommodation to apply for a posted position contact our Human Resources Service Center at (888) 994-7669.