Senior Analyst, Cybersecurity Risk Management

At Trane TechnologiesTM and through our businesses including Trane® and Thermo King®, we create innovative climate solutions for buildings, homes, and transportation that challenge what’s possible for a sustainable world. We're a team that dares to look at the world's challenges and see impactful possibilities. We believe in a better future when we uplift others and enable our people to thrive at work and at home. We boldly go.What’s in it for you:Be a part of our mission! As a world leader in creating comfortable, sustainable, and efficient environments, it’s our responsibility to put the planet first. For us at Trane Technologies, sustainability is not just how we do business—it is our business. Do you dare to look at the world's challenges and see impactful possibilities? Do you want to contribute to making a better future? If the answer is yes, we invite you to consider joining us in boldly challenging what’s possible for a sustainable world.As part of the Cybersecurity Governance, Risk, and Compliance (GRC) team, the Senior Analyst, Cybersecurity Risk Management will play an integral role in identifying, evaluating, and reporting on information security risks in a manner that meets Trane Technologies’ risk program, regulatory and compliance requirements. Reporting to the Senior Manager, Cybersecurity Risk Management, the ideal candidate for this role has both the technical expertise and communication skills to influence and seamlessly collaborate across multiple stakeholder groups.Thrive at work and at home:• Benefits kick in on DAY ONE for you and your family, including health insurance, parental leave, fertility benefits and adoption assistance.• Significant opportunities for you in our wellness program such as fitness reimbursement, HSA contributions and back-up care for aging parents and children.• 6% 401K match, additional 2% core contribution = 8% overall match• Vacation, plus site paid holidays and volunteer days.• Educational and training opportunities through company programs along with tuition advancement, tuition reimbursement and tuition assistance programs.• Learn more about our benefits here!Where is the work:This is a Remote position.What you will do:• Conduct cybersecurity risk assessments of identified risks using Trane Technologies’ methodology, which includes analyzing the impact and likelihood of a risk.• Document and report on identified risks associated with Trane Technologies’ business, products, systems and information assets.• Work closely with key stakeholders on identifying adequate risk reduction measures where required, and collaborating with technical SMEs as needed.• Effectively communicate cybersecurity risks to the appropriate stakeholders and obtain documented risk treatment plans that address identified risks.• Track risks through their lifecycle to ensure the selected risk treatment plans are executed.• Determine residual risk after the implementation of the selected risk treatment plans.• Serve as a key cybersecurity risk SME to advise other IT and cybersecurity team members.• Continuously identify and implement improvements to the cybersecurity risk management program in collaboration with the Senior Manager, Cybersecurity Risk Management.• Support and continually enhance Trane Technologies’ GRC modules based in the Onspring GRC platform.What you will bring:• Bachelor’s degree in a related field and/or a minimum of 7-10 years of equivalent experience in Information Security, IT Audit/Governance/Risk/Compliance, or similar role(s).• Solid technical understanding of cybersecurity concepts, standards, guidelines and principles.• Effective project management and organizational skills, including managing multiple, concurrent projects and tasks.• Strong analytical background and technical skills with the ability to apply regulatory requirements to IT operational and technical controls.• Experience with applying IT control frameworks, such as NIST-CSF, NIST 800-53, ISO27001, PCI, SOX, SSAE 18.• In-depth knowledge of technology, security, risk, and compliance best practices.• Experience working with and administering GRC solutions, knowledge of Onspring preferred.• Excellent interpersonal skills and ability to create collaborative relationships with stakeholders across various groups and levels.• At least one of the following certifications preferred: CISM, CISSP, CISA, CRISC.Compensation:Base Salary: $114,000 - $152,000Additional Compensation: Total compensation for this role also will include an incentive plan.Disclaimer: This "range" could be a result of seniority, merit, geographic location where the work is performed, education, experience, travel requirements for the job, or because of a system the employer uses to measure earnings by quantity or quality of production (so, for example, positions that may not have traditional salary ranges).Equal Employment Opportunity:We offer competitive compensation and comprehensive benefits and programs. We are an equal opportunity employer; all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, pregnancy, age, marital status, disability, status as a protected veteran, or any legally protected status.#LI-Remote