Information Security Analyst

Join a High-Performance Culture That Drives Innovation and Excellence

At Vertiv, we don’t just hire talent - we cultivate leaders who drive innovation and engage teams to push the limits of what’s possible. As a global leader in critical digital infrastructure, we are scaling up to meet the demands of AI, data centers, and next-gen technology—and we need bold, high-performing individuals like YOU to take us to the next level.

Why Vertiv?

• High-Performance Culture: We empower you to think big, execute with excellence, and deliver impact. Our performance-driven mindset rewards those who challenge the status quo and drive meaningful change. Over 50 CEO Awards are given annually to recognize top talent moving the needle forward.
• Leadership Without Limits: Leadership at Vertiv goes beyond just titles—it’s about accountability, trust, and ownership. Our leaders engage and drive with collaboration, innovation, and customer-centric thinking, setting the foundation for an action-focused culture.
• Limitless Growth & Learning: We believe in continuous development. Whether through rotational programs or high-impact projects, you’ll have the opportunity to expand your expertise and grow your career.
• A Place for Everyone: Our commitment to Inclusion ensures that all employee’s unique strengths and perspectives are valued. Your voice matters, your growth is prioritized, and your success is celebrated.

JOB SUMMARY:

The Junior Cybersecurity Compliance Analyst is responsible for supporting the cyber supply risk workstream to help de-risk Vertiv’s direct and indirect supply chain. Under the guidance of the Senior Analyst, you will execute cyber security risk strategies, support supplier assessments, contribute to risk remediation activities, and maintain ongoing adoption of ISO standards particularly ISO 27001. This role ensures company processes, policies, and practices align with applicable cybersecurity and compliance frameworks through internal audits, training development, gap analysis, and cross-functional collaboration. The position plays a key role in strengthening the organization's cyber resilience, supplier risk posture, and enterprise-wide risk management framework.

JOB RESPONSIBILITIES:

1. Supply Chain Cybersecurity Risk Assessment & Management

• Lead the deployment of the annual supplier cybersecurity assessment strategy.
• Survey the supply base to identify cybersecurity risks and evaluate supplier business continuity and preparedness.
• Prioritize suppliers based on cyber risk profile, criticality, and potential operational impact.
• Research industry trends, threat developments, and benchmarking to inform best practices.
• Support Third-Party Risk Management (TPRM) teams in remediation efforts for direct and indirect suppliers.
• Support development and integration of cybersecurity risk metrics into supply chain digital tools.

2. Cross-Functional Collaboration & Stakeholder Engagement

• Collaborate with Supply Chain, Cyber TPRM, Legal (OGC), IT, and Purchasing teams to align and drive risk management priorities.
• Lead engagements with direct and indirect teams to reinforce supplier compliance and cyber risk expectations.
• Prepare updates and communicate project status to executive leadership across L1, L2, and L3 governance meetings.

3. ISO Compliance, Internal Audits & Governance

• Plan and execute internal audits to ensure adherence to ISO standards and company procedures.
• Conduct ISO 27001 audits to verify the effectiveness of information security controls and client security practices.
• Evaluate documentation, processes, procedures, and risk assessments for alignment with ISO 27001.
• Identify process gaps, recommend corrective actions, and track remediation progress.
• Collaborate with management on development of Governance, Risk Management, and Compliance (GRC) strategies aligned to industry requirements.

4. Training, Documentation & Continuous Improvement

• Research, develop, and maintain training programs on ISO 27001 and cybersecurity processes.
• Create and refine operating procedures, process maps, and compliance documentation.
• Provide actionable recommendations that enhance compliance maturity and reduce risk.
• Promote a culture of continuous improvement and cybersecurity awareness across the organization.

JOB QUALIFICATIONS:

• Bachelor’s degree in Computer Science, Computer Engineering, Information Technology, or equivalent.
• 3–5+ years of experience in supply chain, cybersecurity compliance, or ISO standards implementation.
• Strong understanding of the broader supply chain landscape and supplier risk dynamics.
• Proficiency with Information Security Management System (ISMS) concepts.
• Strong knowledge of ISO 27001 risk management and audit practices.
• Demonstrated experience conducting ISO 27001 audits.
• Strong analytical and problem-solving skills with the ability to interpret complex data.
• Excellent organizational, project management, and planning skills; deadline-driven execution.
• Ability to understand strategic direction and ensure aligned implementation.
• Resourcefulness, attention to detail, and comfort providing solutions where ambiguity exists.
• Strong interpersonal skills with ability to de-escalate conflict independently.
• Self-motivated with a strategic, growth-oriented mindset.
• Strong written and verbal communication; able to simplify complex concepts.
• Ability to build and maintain positive cross-functional relationships with global teams.
• Political and organizational awareness to influence effectively.

Time Travel Needed

• 10%

The successful candidate will embrace Vertiv’s Core Principals & Behaviors to help execute our Strategic Priorities.

OUR CORE PRINCIPALS: Safety. Integrity. Respect. Teamwork. Diversity & Inclusion.

OUR STRATEGIC PRIORITIES

• Customer Focus
• Operational Excellence
• High-Performance Culture
• Innovation
• Financial Strength

OUR BEHAVIORS

• Own It
• Act With Urgency
• Foster a Customer-First Mindset
• Think Big and Execute
• Lead by Example
• Drive Continuous Improvement
• Learn and Seek Out Development
• Transparent and Open Communication