Job DescriptionWhat You Will Be A Part Of:The Security and Privacy Analyst has global responsibility for supporting IT and Cybersecurity and Data Privacy Risk Management as part of the Corporate Information Security (CIS) Program.The Assessments & Authorizations (A&A) team is responsible for evaluating IT Cybersecurity and Data Privacy controls and ensuring compliance with corporate policies as well as external standards and regulations. The Security and Privacy analyst will perform control assessments in support of various Company initiatives, perform ongoing data gathering and analysis identifying and reporting overall compliance state, metrics and reporting.What You Will Do:Support A&A team operational activities by performing & assisting with risk assessments and analysis within Cybersecurity and Data Privacy domains.Maintain the controlassessment workflow and ensure all tickets are actioned according to team procedures.Identify, collect and mine data required for various facets of the Risk Compliance team (eg risk register, CMDB, metrics and reports)Perform Data Privacy assessments to support company's internal DPaP practices and adherence to GDPR regulations.Monitor and maintain guidelines, processes and procedures required for the general operation of the CIS Risk Compliance Program.Gather and store evidence in accordance with corporate standards to ensure programs can prove and track compliance.Collaborate with team to assist in developing and maintaining tools & processes for Governance, Risk & Compliance (GRC) program to help provide visibility into and across all systems, applications, and projects globally to aid in risk and compliance measurement across the organization.Perform other duties as assigned.How You Will Get Here:Bachelor's degree in Computer Science, IT Information Systems, Security Compliance, Risk Management or Information Security & Assurance. Equivalent work experience acceptable.2+ years IT systems infrastructure, cybersecurity, data privacy or equivalent technical work is highly preferred.Strong interpersonal, organizational, presentation, and excellent documentation skills are a must.Excellent customer service skills required.Excellent verbal and written communication skills and the ability to interact professionally with a diverse groupof executives, managers, and subject matter experts.Bonus Qualifications (not explicitly required):Relevant security certifications such as CRISC or CISA isa plusHigh level knowledge of ISO 27001 and NIST 800-30High level knowledge of GDPS regulation and/or PII standardsNon-Negotiable Hiring Criteria:Strong attention to detail and high organizational acumenProven ability to handle conflict and adversity with confidence and integrityWillingness to become an expert in realm of risk management, information security and data privacy.If you are an individual with a disability who requires reasonable accommodation to complete any part of our application process, click here for further assistance. Thermo Fisher Scientific is an EEO/Affirmative Action Employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability or any other legally protected status.