← all jobs

[Remote] Senior Information Security Analyst

Work from home Full-time role Hiring

Note: The job is a remote job and is open to candidates in USA. Nike, Inc. is a leading technology company focused on revolutionizing the future at the intersection of technology and sport. They are seeking a Senior Information Security Analyst to join the Information Risk Management team, where the role will involve conducting risk assessments and ensuring compliance with security policies across Nike's technology landscape.

Responsibilities

  • Perform formal risk assessments on partner and vendor connections, evaluating vendor processes at the point of engagement with Nike
  • Ensure sufficient validation of data sharing arrangements and agreements to protect Nike's sensitive information
  • Confirm business objectives align with the type and volume of data used, maintaining a "need to know/use" mindset
  • Review third-party SOC reports and vendor security documentation as part of assessment activities
  • Help establish risk and remediation ownership for identified vendor-related risks and document findings in the Risk Register
  • Assess moderately complex platforms and systems against Nike security and configuration standards
  • Evaluate and process exceptions to information security policies and standards
  • Perform compliance control validation testing to determine the operating effectiveness of IT controls for scoped systems
  • Consult with technology units on IT general controls (ITGCs) and compliance matters
  • Champion information security policies, standards, controls, and processes so compliance requirements are addressed as part of business-as-usual operations
  • Identify, document, and elevate visibility to information risk where business direction creates potential exposure to employee, athlete, and product sensitive data streams
  • Identify and profile Nike systems and processes that require risk assessments; scope specific assessments accordingly
  • Perform detailed analysis of threats and vulnerabilities across information security domains including network security, asset security, security engineering, identity and access management, security operations, and software development security
  • Review key system configurations and complex IT infrastructures (e.g., cloud services)
  • Communicate effectively through risk reports, presentations, and stakeholder interactions to drive remediation of identified risks
  • Support vendor risk management metrics, reporting, and master data stewardship to improve accuracy, timeliness, and completeness
  • Provide analysis and insights into data supporting the effectiveness of technical and process-based cybersecurity controls
  • Collaborate on process improvements for data retrieval, analysis, and risk assessment intake
  • Contribute to IRM team projects and strategic initiatives as assigned, including documentation in ServiceNow (SNOW) and Box
  • Support the risk analysis intake process and participate in daily standups and weekly process meetings
  • Execute targeted internal and external (vendor) risk assessments in support of IRM strategy, following established team processes and enablers
  • Be proactive in anticipating next steps in the risk assessment process and take action accordingly
  • Collaborate with team members on assessment approach, scoping, documentation, and issue presentation activities
  • Serve as an information security and CIS ambassador to Nike lines of business and management
  • Provide enforcement of security policies, standards, and procedures by working cross-functionally with Compliance and Governance functions
  • Stay current on information security technologies, trends, standards, best practices, and emerging threats and vulnerabilities

Skills

  • Bachelor's degree in Business Information Management, Computer Science, or a related field, OR relevant experience in lieu of a degree
  • 5+ years of experience in information security, risk management, GRC, or a related field
  • Knowledge of information security principles and practices, best practice security architectures, general procedures, and guidelines
  • Knowledge of information security frameworks and best practices (e.g., NIST, ISO 27000, COBIT, COSO)
  • Experience performing vendor/third-party risk assessments and internal information security risk assessments
  • Experience assessing systems against security standards and performing control validation or baseline assessments
  • Strong analytical and problem-solving skills with experience identifying solutions for complex problems in enterprise environments
  • Superb communication skills (written and verbal) with comfort and experience in presentation delivery and proven persuasion skills
  • The ability to appropriately communicate complex security risks to non-technical staff
  • Must be trustworthy in keeping sensitive data confidential
  • Demonstrated desire for continual learning and improvement
  • Experience reviewing third-party SOC reports preferred
  • Experience with ServiceNow, Confluence, or Jira preferred
  • Advanced knowledge of Excel and PowerPoint; experience organizing and analyzing large datasets preferred
  • CISSP, CISM, CRISC, or relevant GIAC Management Focus Area certifications preferred

Company Overview

  • Nike, Inc. is one of the largest and best-recognized global sports and athleticwear brands. It was founded in 1964, and is headquartered in Beaverton, Oregon, USA, with a workforce of 10001+ employees. Its website is https://www.nike.com/ph/.
  • Company H1B Sponsorship

  • Nike has a track record of offering H1B sponsorships, with 72 in 2026, 340 in 2025, 302 in 2024, 328 in 2023, 543 in 2022, 426 in 2021, 253 in 2020. Please note that this does not guarantee sponsorship for this specific role.
  • More open positions

    [Remote] Commercial Lines, Sr. Account Manager-Sports & Ent. (NY hybrid or EST remote)

    Work from home Full-time role

    [Remote] Senior Backend Engineer

    Work from home Full-time role

    [Remote] Manager, Global Financial Reporting

    Work from home Full-time role

    [Remote] Events Data Associate

    Work from home Full-time role

    [Remote] Creator & Influencer Marketing Lead

    Work from home Full-time role

    Account Executive

    Work from home Full-time role

    Outside Sales Representative (Denver, CO)

    Work from home Full-time role

    Key Account Executive IM ES - Denver area

    Work from home Full-time role

    Medical Virtual Assistant (Insurance Verification & Authorization Specialist)

    Work from home Full-time role

    Account Executive - Productions - North America

    Work from home Full-time role

    Go-to-Market - Santa Cruz, CA, USA

    Work from home Full-time role

    [Remote] Operational Readiness Project Manager

    Work from home Full-time role

    Remote Data Entry Specialist – Home‑Based Data Management for careerzynith Logistics Operations

    Work from home Full-time role

    Student Admission Specialist

    Work from home Full-time role

    Director of Engineering — Trust & Safety

    Work from home Full-time role

    Health Science Research Intern

    Work from home Full-time role

    Licensed Practical Nurse (LPN) – Virtual Nursing (VN) – Full-time

    Work from home Full-time role

    Experienced Full Stack Customer Experience Specialist – Amazon Customer Service Delivery

    Work from home Full-time role

    Experienced Entry-Level Data Entry Clerk – Remote Opportunity at careerzynith

    Work from home Full-time role

    [PART_TIME Remote] Online Apple Jobs $30/Hour -

    Work from home Full-time role

    Customer Experience Representative

    Work from home Full-time role