Cyber Risk Analyst, IT DR Specialist

Come make the world and accelerate your success.

It takes great people to achieve greatness. People with a sense of purpose and integrity. People with a relentless pursuit of excellence. People who care about making things better For Those Who Make The World™. Sound like you? Join our top-notch team of approximately 48,000 diverse and high-performing professionals globally who are making their mark on some of the world’s most beloved brands, including DEWALT®, BLACK+DECKER®, CRAFTSMAN®, STANLEY®, CUB CADET®, and HUSTLER®.

As a Cyber Risk Analyst – BCP/IT DR Specialist, you’ll be part of our Corporate Cyber Security team working as a remote employee. The Cyber Risk Analyst – BCP/IT DR Specialist is responsible for supporting and enhancing the organization’s Business Continuity Planning (BCP) and IT Disaster Recovery (DR) programs. This role will assess cyber risks, develop and maintain BCP/DR strategies, coordinate testing and exercises, and ensure compliance with regulatory requirements.

The specialist will collaborate with cross-functional teams to identify potential threats, evaluate the effectiveness of existing controls, and recommend improvements to minimize business disruption and data loss in the event of a cyber incident or disaster.

Key Responsibilities:

Represent and articulate BCPIT DR risk to the organization, ensuring risks are clearly communicated and understood at all levels.

Lead the governance of the BCP/IT DR program, focusing on the creation and ongoing documentation of comprehensive plans.

Define and develop metrics that highlight the programs risks and operational performance for SBD leadership.

Develop and drive holistic mitigation strategies, collaborating with business units to ensure ownership of mitigation actions that are aligned to overarching governance principles.

Facilitate the development and execution of risk response tasks, ensuring mitigation efforts across business units are coordinated and governed effectively.

Establish and maintain governance frameworks that unify business unit approaches to BCP/IT DR, ensuring consistency, scalability, and accountability.

Support enhancing the risk management program regarding the planning, documentation, quantification, and response to cybersecurity and technology risks.

Support risk assessments, policy exception analysis, issue management, risk tolerance definition, and the creation and monitoring of key risk indicators (KRIs).

Ensure risk response activities are documented, tracked, and aligned with organizational risk tolerance and strategic objectives.

Drive continuous improvement in risk management practices, promoting a culture of risk awareness and proactive mitigation.

Document BCP/IT DR risks and issues according to the defined risk management framework

Partner with leadership to determine risk appetite in accordance with BCP/IT DR risks

Develop, maintain, and enhance the governance process for BCP/IT DR standards, processes, and documentation.

Partner with business owners to implement and manage BCP/IT DR programs, including testing and continuous improvement.

Conduct gap analyses and recommend enhancements for BCP/IT DR controls.

Create and monitor program metrics for operational performance for leadership consumption.

Create and monitor Key Risk Indicators (KRIs) to track risk exposure.

Support and oversee the execution of risk assessments.

Collaborate with embedded risk managers and the Cyber Security Organization to align initiatives and address risks.

Analyze and execute policy exceptions, ensuring appropriate risk acceptance and mitigation.

Maintain risk governance documentation, dashboards, and reports.

You love to learn and grow and be acknowledged for your valuable contributions. You’re not intimidated by innovation. Wouldn’t it be great if you could do your job and do a world of good? In fact, you embrace it. You also have:

Strong understanding of BCP/IT DR program management…