Clera - Your AI talent agent
Crocs, Inc. logo
Crocs, Inc.
IT Security Analyst
full-timeWestminster$75k - $85k

Summary

Location

Westminster

Salary

$75k - $85k

Type

full-time

Company links

WebsiteLinkedInLinkedIn
Explore Jobs

About this role

At Crocs, Inc., every career offers a chance to make a real impact. No two journeys look the same. And that's exactly how we like it. Whether you’re welcoming customers into our stores, collaborating with global teams at our headquarters, or keeping operations moving at our distribution centers, your impact is real and valued. At Crocs, Inc. you’re not expected to fit a mold. You’re encouraged to break it and create something better.

 

Overview

The IT Security Analyst of Crocs, Inc, reporting to the Sr. Manager, Governance, Risk, and Compliance, plays an instrumental role in supporting company GRC strategies and processes. As a key member of the global GRC team, this analyst collaborates with other stakeholders such as Legal, Risk, Internal Audit, etc. align IT and Enterprise risk management framework with business objectives and regulatory requirements. The role requires technical expertise, backgrounds in GRC and applicable frameworks, and situational awareness of global regulatory needs to identify, track, and address potential risks, while proactively enhancing the company's overall GRC posture.

What You'll Do

  • Maintain the chosen GRC platform to programmatically capture Cyber/IT risks, timely analysis to enable risk control and reporting.
  • Track platform automation of Third-Party Risk Management (TPRM) processes including self-service questionnaires, evidence uploads, results evaluation, workflow facilitation, and other internal requirements through collaboration with key department stakeholders.
  • Implement processes to automate and continuously monitor information security controls, exceptions, risks, and testing. Develop metrics, dashboards, and evidence of artifacts.
  • Maintain, and oversee implementation and adherence to Cybersecurity and GRC Policies and Processes to ensure compliance with applicable laws, regulations, and chosen industry standard frameworks; communications and training included.
  • Track enterprise-wide policies with stakeholders from Legal, Audit, etc. to ensure Cybersecurity and GRC components are accounted for in enterprise-wide policies and processes.
  • Document security processes, responsibilities and ownership of the controls in GRC tool. Schedule regular assessments and testing of effectiveness and efficiency of controls and create reports.
  • Coordinate with auditors to facilitate audits, assuring IT and Enterprise compliance and address potential issues proactively.
  • Work with stakeholders on deficiency remediation of audit or internal control findings.
  • Assist IT and other Enterprise organizations to successfully achieve required compliance.
  • Serves as a point of contact for IT SOX Audit, interfacing with external auditors and Internal Audit.
  • Perform access reviews, certifications, and audits to ensure compliance with regulatory requirements and industry best practices.
  • Maintain the chosen GRC platform for managing, tracking, and reporting on Audit and Compliance findings.
  • Maintain the Cybersecurity Risk Register and collaborate with stakeholders for inclusion in overall risk reporting and continuous monitoring.
  • Work with business owners on known risks for remediation or compensating controls for policy adherence.
  • Facilitate documentation and approval process for Risk Acceptance.

What You'll Bring to the Table

  • Bachelor’s degree or equivalent experience in Information Technology or related field.
  • 2+ years’ experience in cybersecurity as a practitioner, with 1+ years in GRC role. Experience working with other compliance driven teams such as Legal, Audit, etc. IT infrastructure background a plus.
  • Demonstrated situational awareness of relevant laws and regulations and frameworks. Familiar with risk management methods and frameworks.
  • Strong risk management skills, including the ability to identify, analyze, and effectively mitigate or manage enterprise risks.
  • Excellent written and verbal communication skills, with the ability to clearly communicate complex GRC issues and strategies to various stakeholders.
  • Solid ability to analyze complex data, interpret compliance requirements, and develop effective solutions.
  • Proven negotiation and influencing abilities to secure buy-in from internal and external partners to achieve GRC objectives.
  • Proficiency with GRC technology solutions, as well as a broad understanding of information security principles and best practices.
  • Dedication to continuous learning, staying up to date with the latest developments in the GRC field, including evolving laws and regulations, emerging risks, and best practices in GRC management.

#LI-Onsite

#LI-MS1

The Company is an Equal Opportunity Employer committed to a diverse and inclusive work environment. We accept applications on an ongoing basis.

 

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or disability, or any other classification protected by law.

 

Title: IT Security Analyst 

Salary or Pay Range: $75,000 - $85,000 

Pay offered will vary based on job-related factors such as location, experience, training, skills, and abilities.

 

At Crocs, Inc. we believe in the power of a blend of in-person and virtual collaboration to drive creativity and strengthen relationships. Your participation in this flexible schedule plays a key role in building a connected and successful team. In-office requirements vary by our work personas: Resident (5 days), Collaborator (4 days), Connector (2-3 days), Explorer (fully remote). This role has been aligned to the Collaborator persona.

 

This position is eligible to participate in a company incentive program. 

 

This position is eligible for company benefits including but not limited to medical, dental, and vision coverage, life and AD&D, short and long-term disability coverage, paid time off, employee assistance, participation in a 401k program that includes company match, and many other additional voluntary benefits. 

 

The application window is 45 days, but applicants are encouraged to apply as soon as possible after the posting date in order to ensure optimal consideration.  The posting will be removed if the job is filled before the application window deadline.

Job Category: Corporate 

Other facts

Tech stack
Cybersecurity,Governance,Risk Management,Compliance,Communication,Data Analysis,Negotiation,GRC Technology,Information Security,Continuous Learning

About Crocs, Inc.

At Crocs, Inc., we believe life’s too short for uncomfortable shoes. As the global force behind two iconic brands — Crocs and HEYDUDE — we’re redefining casual footwear for people everywhere. Whether it’s the unmistakable Classic Clog or the laid-back ease of a HEYDUDE slip-on, our products are designed to move with you, wherever life takes you.

We’re more than just shoes. We’re about comfort without compromise, style with personality, and making a positive impact while we’re at it. Our brands are for all seasons, all ages, and all walks of life — and our commitment to personalization and self-expression keeps us connected to our consumer, one pair at a time.

Team size: 5,001-10,000 employees
LinkedIn: Visit
Industry: Retail Apparel and Fashion

What you'll do

  • The IT Security Analyst will maintain the GRC platform to capture Cyber/IT risks and track Third-Party Risk Management processes. They will also coordinate with auditors and facilitate compliance audits while documenting security processes.

Ready to join Crocs, Inc.?

Take the next step in your career journey

Frequently Asked Questions

What does Crocs, Inc. pay for a IT Security Analyst?

Crocs, Inc. offers a competitive compensation package for the IT Security Analyst role. The salary range is USD 75k - 85k per year. Apply through Clera to learn more about the full compensation details.

What does a IT Security Analyst do at Crocs, Inc.?

As a IT Security Analyst at Crocs, Inc., you will: the IT Security Analyst will maintain the GRC platform to capture Cyber/IT risks and track Third-Party Risk Management processes. They will also coordinate with auditors and facilitate compliance audits while documenting security processes..

Why join Crocs, Inc. as a IT Security Analyst?

Crocs, Inc. is a leading Retail Apparel and Fashion company. The IT Security Analyst role offers competitive compensation.

Is the IT Security Analyst position at Crocs, Inc. remote?

The IT Security Analyst position at Crocs, Inc. is based in Westminster, Colorado, United States. Contact the company through Clera for specific work arrangement details.

How do I apply for the IT Security Analyst position at Crocs, Inc.?

You can apply for the IT Security Analyst position at Crocs, Inc. directly through Clera. Click the "Apply Now" button above to start your application. Clera's AI-powered platform will help match your profile with this opportunity and guide you through the application process. You can also learn more about Crocs, Inc. on their website.