IT Cybersecurity Risk Analyst

What Makes a Honda, Is Who Makes a Honda

Honda has a clear vision for the future, and it’s a joyful one. We are looking for individuals with the skills, courage, persistence, and dreams that will help us reach our future-focused goals. At our core is innovation. Honda is constantly innovating and developing solutions to drive our business with record success. We strive to be a company that serves as a source of “power” that supports people around the world who are trying to do things based on their own initiative and that helps people expand their own potential. To this end, Honda strives to realize “the joy and freedom of mobility” by developing new technologies and an innovative approach to achieve a “zero environmental footprint.”

We are looking for qualified individuals with diverse backgrounds, experiences, continuous improvement values, and a strong work ethic to join our team.

If your goals and values align with Honda’s, we want you to join our team to Bring the Future!

Job Purpose

• Act as an IT risk quantification analyst in Cybersecurity Governance, Risk, and Compliance, to evaluate and measure the potential impact of cybersecurity threats on an organization, using structured methodologies and industry frameworks, e.g. - FAIR, MITRE, and NIST.
• The incumbent will identify, analyze, and prioritize risks based on likelihood and potential loss.
• This role involves collaborating with cybersecurity teams and business stakeholders to ensure risk insights support organizational objectives and regulatory requirements. The analyst will help develop and recommend mitigation strategies while translating complex technical findings into clear, data driven guidance for decision makers.
  
  

Key Accountabilities

• IT Risk Management
• Monitor and improve IT risk processes, tools, and documentation
• Update risk scenarios, benchmarks, and mitigation strategies
• Maintain the Information Security Management System (ISMS)
• Advise on balancing security controls with business impact
• Risk & Control Self Assessment (RCSA)
• Conduct cybersecurity risk assessments and identify control gaps
• Document results, prepare management reports, and drive remediation
• Support and train teams on RCSA standards and methodologies
• Risk Modeling & Analysis
• Develop and maintain data, process, and event based risk models
• Quantify risk, validate models, and communicate findings to stakeholders
• Data Collection & Reporting
• Gather, analyze, and document cybersecurity risk data
• Maintain the risk register and data libraries
• Collaboration & Domain Expertise
• Partner cross functionally to implement risk mitigation
• Stay current on cyber threats, regulations, and industry best practices
  
  

Qualifications, Experience, And Skills

• Education:
• A Bachelors level degree in IT / IS / Cybersecurity or equivalent level of relevant industry experience.
• Desired Certifications (any): OpenFAIR, CCSK, CISSP, CISM, or equivalent are highly desirable.
  
  

• Must have at least 3 or more years of demonstrable relevant experience in the industry, specifically in the cybersecurity space.
• Core skills must include risk assessment, analytical thinking, communication, and strong knowledge of cybersecurity frameworks, regulatory obligations, and evolving threat landscapes.
  
  

• Other job-specific skills:
• Decision Making & Critical Thinking: Ability to analyze situations accurately and make informed, productive decisions using appropriate tools and judgment.
• Communicating Complex Concepts: Skilled in simplifying and summarizing complex technical information using clear, audience appropriate communication techniques.
• Problem Solving: Able to recognize, anticipate, and resolve organizational or operational issues using structured problem solving methods.
• Project Management: Knowledge of effective planning, organizing, monitoring, and resource coordination to achieve project objectives.
• Technical Excellence: Ability to apply technology knowledge to develop solutions for significant technical challenges.
• Compliance & Assurance: Understands compliance processes and standards; enhances internal controls as requirements evolve.
• Frameworks & Industry Standards: Aligns cybersecurity programs and standards with regulations, business context, and threat landscapes.
• IT Security Policies: Applies security policies, standards, and procedures to ensure compliance.
• Statistical Analysis & Measurement: Uses mathematical and statistical tools to perform accurate analysis and measurement.
  

Workstyle

• This is an onsite position, based in Ohio.
  
  

Visa sponsorship issues

• This position is not eligible for work visa sponsorship.
  
  

Relocation assistance

• This posiiton is not eligible for relocation assistance.
  
  

What differentiates Honda and make us an employer of choice?

Total Rewards

• Competitive Base Salary (pay will be based on several variables that include, but not limited to geographic location, work experience, etc.)
• Paid Overtime
• Regional Bonus (when applicable)
• Industry-leading Benefit Plans (Medical, Dental, Vision, Rx)
• Paid time off, including vacation, holidays, shutdown
• Company Paid Short-Term and Long-Term Disability
• 401(K) Plan with company match additional contribution
  
  

Career Growth

• Advancement Opportunities
• Career Mobility
• Education Reimbursement for Continued Learning
• Training and Development programs
  
  

Additional Offerings

• Tuition Assistance & Student Loan Repayment
• Lifestyle Account
• Childcare Reimbursement Account
• Elder Care Support
• Wellbeing Program
• Community Service and Engagement Programs
• Product Programs
  
  

Honda is an equal opportunity employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status, or any other protected factor.