data security analyst sr - GRC

Data Security Analyst Sr - GRC (Seattle), (Remote - U.S.)

From the beginning, Starbucks set out to be a different kind of company. One that not only

celebrated coffee and the rich tradition, but that also brought a feeling of connection. We are known for developing extraordinary leaders who share this passion and are guided by their service to others.

This position will help establish the ongoing lifecycle of assessment, design, and ratification of governance tools and establish of framework for managing long-term planning and tracking of our common controls' framework. While collaborating with existing services, an effective analyst will develop subject matter expertise across the GRC and GCS portfolio, interact with data governance stewards to understand our data and technology landscape. You will gain valuable experience by partnering with senior analysts, technical product managers, senior developers, and business partners in maintaining our governance tools and service solutions. As you develop subject matter knowledge, you will support the design, development, and delivery of new technology and process governance services for our business stakeholders across the company.

As a Data Security Analyst Sr - GRC, you will...

• Research, analyze, and develop global governance tools in support of the company's cybersecurity strategy based on our risk management program, control frameworks (NIST, ISO, etc), existing governance tools, and other inputs from global, cross-functional stakeholders

• Manage a global common controls framework across our GCS/GRC services, including working with leaders on requirements roadmaps

• Assess project artifacts and enable teams' compliance to governance tools, using principles of change management, impact assessment, and risk management

• Demonstrate effective verbal and written communication skills with all levels of cross-functional leadership (Director+) on technically complex topics

• Produce service-oriented deliverables, trainings, and templates to provide consistency and scale to policy and controls lifecycle management

We'd love to hear from people with:

• 3-5 year's experience in IT compliance (SOX, PCI, internal controls), IT risk management, Internal Audit or Data Privacy fields, or in a related area. Certifications such as CISSP, CISA, CIPP and other technical certifications are desired.

• Ability to collaborate across teams, fostering engagement and building relationships.

• Demonstrated ability to improve individual job skills through training, self-research and self-study

• Ability to communicate clearly and concisely, both verbally and in writing; active listening skills

• Ability to plan, organize and prioritize tasks and provide guidance to others

• Strong skills in Microsoft Word, Excel and PowerPoint.

• Ability to work in a dynamic work environment, handle ambiguity and maintain productivity.

• Experience leading SOX or PCI or other regulatory audits or readiness assessments.

• Experience developing or enhancing existing data security, compliance or privacy program processes, or developing continuous controls monitoring processes.

• Experience in assessing, developing or executing to a management framework such as ISO 27001, a control framework such as COBIT, or principle framework such as GAPP, preferred.

• Experience developing unified control frameworks or conducting cross-controls mapping, preferred.

• Experience in goal-based metrics development or reporting utilizing either a common framework such as Goal- Question-Metric (GQM) or equivalent, preferred.

• Experience with Archer or similar GRC workflow platform, preferred.

• Experience building functional, operational or technical requirements, preferred.

• Experience utilizing data analysis and visualization tools such as PowerPivot, R, or Tableau, desired.

As a Starbucks partner, you (and your family) will have access to medical, dental, vision, basic and supplemental life insurance, and other voluntary insurance benefits. Partners have access to short-term and long-term disability, paid parental leave, family expansion reimbursement, paid vacation from date of hire*, sick time (accrued at 1 hour for every 25 hours worked), eight paid holidays, and two personal days per year. Starbucks also offers eligible partners participation in a 401(k) retirement plan with employer match, a discounted company stock program (S.I.P.), Starbucks equity program (Bean Stock), incentivized emergency savings, and financial well-being tools. Additionally, Starbucks offers 100% upfront tuition coverage for a first-time bachelor's degree through Arizona State University's online program via the Starbucks College Achievement Plan, student loan management resources, and access to other educational opportunities. You will also have access to backup care and DACA reimbursement. Starbucks will comply with any applicable state and local laws regarding employee leave benefits, including, but not limited to providing time off pursuant to the Colorado Healthy Families and Workplaces Act, and in accordance with its plans and policies. This list is subject to change depending on collective bargaining in locations where partners have a certified bargaining representative. For additional information regarding partner perks and more detailed information about benefits, go to ~~~ (file:///C:/Users/rofunk/AppData/Local/Microsoft/Windows/INetCache/Content.Outlook/EHRXPAYM/~~~) .

*If you are working in CA, CO, IL, LA, ME, MA, NE, ND or RI, you will accrue vacation up to a maximum of 120 hours (190 in CA) for roles below director and 200 hours (316 in CA) for roles at director or above. For roles in other states, you will be granted vacation time starting at 120 hours annually for roles below director and 200 hours annually for roles director and above.

The actual base pay offered to the successful candidate will be based on multiple factors, including but not limited to job-related knowledge/skills, experience, geographical location, and internal equity. At Starbucks, it is not typical for an individual to be hired at the high end of the range for their role, and compensation decisions are dependent upon the facts and circumstances of each position and candidate.

If you live in the greater Seattle area, we offer a flexible workplace that allows for hybrid work. Partners can work remotely up to two days per week.

Join us and inspire with every cup. Apply today!

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

We are committed to creating a diverse and welcoming workplace that includes partners with diverse backgrounds and experiences. We believe that enables us to better meet our mission and values while serving customers throughout our global communities. People of color, women, LGBTQIA+, veterans and persons with disabilities are encouraged to apply.

Qualified applicants with criminal histories will be considered for employment in a manner consistent with all federal state and local ordinances. Starbucks Corporation is committed to offering reasonable accommodations to job applicants with disabilities. If you need assistance or an accommodation due to a disability, please contact us at ~~~.