Sr InfoSec Compliance & Risk Analyst

Job description

Overview Waters is seeking a driven and experienced Sr. Information Security Compliance and Risk Analyst to lead and advance our enterprise-wide GRC program, ensuring our security posture remains resilient, audit-ready, and aligned with industry-leading frameworks such as ISO 27001, SOC 2, NIST CSF, and CMMC. In this high-impact role, you will own risk assessments, compliance initiatives, conduct interal audits within the IT organization, and third-party vendor evaluations while partnering with cross-functional stakeholders to embed a culture of risk aware security accountability across the organization. You will serve as a trusted advisor to IT leadership, translating complex regulatory requirements and emerging threats into clear, actionable strategies that protect our business and our customers. If you bring 5+ years of cybersecurity and GRC expertise, a sharp analytical mindset, and a passion for building world-class security programs, we want to hear from you — certifications like CISSP, CISM, or CRISC are a strong plus. Responsibilities: Information Security Governance & Risk Management: - Lead and manage security compliance initiatives across the organization (e.g., ISO 2700...