Senior Director Analyst, Cybersecurity, Governance, Risk & Compliance

📋 Description

• Develop innovative, thought-provoking, and essential insights content that resonates with audiences.

• Generate fresh insights and concepts through thought leadership, providing compelling and actionable solutions to meet client needs that enhance their decision-making capabilities.

• Conduct thorough analyses to uncover the underlying causes of client challenges and reshape perspectives to advance strategic initiatives.

• Exhibit thought leadership by establishing Insights positions within a team of analysts.

• Deliver independent, provocative insights to Gartner leaders that can influence the direction of research initiatives.

• Research, analyze, and forecast market trends and changes to equip clients and vendors with actionable insights.

• Offer clients and prospects actionable guidance relevant to their content area through virtual or in-person engagements.

• Create and present high-value materials for Gartner events, industry conferences, and client briefings, both on and off stage.

• Assist BTI and Sales teams.

⛳️ Requirements

• Bachelor’s degree or equivalent experience; a graduate degree is preferred.

• Over 12 years of experience in Cyber GRC, Information Security, or Enterprise Risk Management, with a minimum of 5 years in a leadership role.

• Expertise in identifying, assessing, mitigating, and monitoring cyber risks across the organization.

• Experience applying quantitative and qualitative risk analysis methodologies (e.g., FAIR, NIST RMF).

• Proven track record of leading cross-functional initiatives to integrate cyber risk management into business processes.

• Experience in developing and executing a Cyber GRC strategy aligned with organizational objectives and risk appetite.

• Proven ability to establish and maintain strong cyber governance frameworks, including policies, standards, and procedures.

• Expertise in ensuring clients comply with relevant regulations (e.g., GDPR, CCPA, HIPAA, PCI DSS, SOX, NIST, ISO 27001).

• Experience leading audits, assessments, and remediation efforts.

• In-depth knowledge of one or more Cyber GRC platforms, such as ServiceNow, Drata, Archer, or MetricStream.

• Exceptional organizational skills; capable of working under tight deadlines while delivering high-quality outputs.

• Strong written and verbal communication, analytical, and presentation skills; adept at engaging clients and addressing inquiries effectively.

• Proficient in data analysis and synthesis; able to identify and apply patterns and frameworks while defending conclusions related to client challenges.

• Excellent communication abilities - capable of clarifying complex concepts succinctly.

• Subject matter expertise; comfortable speaking at both large and small-scale events.

• Strong business and financial acumen.

• Extensive knowledge of the global competitive landscape within the subject area and its market dynamics.

• Ability to work autonomously while being intrinsically motivated to collaborate with teams and support others in a multicultural global context.

• Learning agile and skilled at navigating complex, matrixed environments.

• Ability to effectively represent Gartner's research methodologies and strategies at all organizational levels.

• Willingness and capability to travel up to 25% (where applicable).

🏝️ Benefits

• Generous paid time off (PTO).

• 401k match up to $7,200 annually.

• Option to purchase company stock at a discounted rate.

• Annual bonus program based on both company and individual performance.

• Market-leading benefits programs.