Company Description
Fortune Brands Innovations, Inc. is an industry-leading innovation company focused on creating smarter, safer and more beautiful homes and improving lives. Our driving purpose is that we elevate every life by transforming spaces into havens. We believe our work and our brands can have incredibly positive impacts for not just our business and shareholders, but for people and the planet, too. When you join Fortune Brands, you become part of a high-performing team who are empowered to think big, learn fast and make bold decisions. We support an inclusive and diverse culture where everyone is encouraged and empowered to be their authentic selves, and where our differences and unique perspectives are a key strength. Explore life at Fortune Brands here
Job Description
JOB SUMMARY: As Information Security Governance Analyst, you support the security of organizational data, networks, and systems. You will be responsible for developing, implementing, and maintaining adequate security standards and procedures to protect information and systems. You will also guide and support employees and other stakeholders on information security services and issues. The position works closely with Information Security Operations, IT engineers and management.

• Gather, analyze and report key security tool coverage (e.g. EDR, vulnerability management, security monitoring, FDE) and vulnerability metrics and trends.
• Assess AD accounts for dormancy, weak passwords, and missed terminations.
• Administer security awareness training process. Support users, develop and evaluate content, and monitor progress.
• Administer third party security assessment process. Support and provide security guidance to business owners, work with third party assessment service provider, complete service provider risk assessments, and drive completion of reviews.
• Assess data security discovery and classification information. Make recommendations and take action to address risks.
• Properly document systems security implementation, operations and maintenance activities and update as necessary.
• Document and assess policy exceptions. Work with owners to understand risk, potential solutions, and track to resolution.
• Develop and maintain security governance procedures.
• Provide cybersecurity recommendations that enhance our security technical and process controls.