CareerZen Logo
Company logo

Information Security Risk Analyst

The Cheesecake Factory

Calabasas Hills, CA

Job description

Compensation Range

$123,000 - $134,000 / Year


Overview

Eligible for a hybrid work schedule split between home & office, with a minimum of 3 days in the office each week.

You may be familiar with our extensive menu of delectable dishes and our recognition by Fortune Magazine as one of the "100 Best Companies to Work For®" since 2014! But what you might not know is that we're a company driven by cutting-edge technology.

As an Information Security Risk Analyst reporting to the Information Security Manager, you’ll be at the center of enterprise risk, compliance, and third-party oversight. This role is instrumental in building scalable security and governance processes that support growth, enhance resilience, and enable teams across the organization to move faster with confidence.

You’ll thrive in this role if you are:

Stakeholder Savvy: You work confidently with auditors and senior leaders, communicating with clarity and professionalism that strengthens collaboration and drives alignment.
Precision Driven: You thrive in structured environments, bringing a process minded approach that ensures accurate, consistent, and high quality work every time.
Business Focused Translator: You turn complex security and risk concepts into clear business insights, helping leaders make informed, practical decisions with confidence.
Governance Minded: You’re energized by policy, structure, and accountability—preferring governance, compliance, and risk work over hands on security engineering.


Responsibilities

Enterprise Governance & Compliance
  • Lead and support audits including PCI DSS, SOX, and NIST CSF
  • Coordinate evidence collection, control testing, and remediation tracking
  • Maintain and enhance security policies, procedures, and audit documentation
  • Partner with Internal Audit and Accounting on annual and quarterly audit requirements
Third-Party Risk Management (TPRM)
  • Own the end-to-end third-party risk lifecycle
  • Perform security assessments for new and existing vendors
  • Partner with Legal, Procurement, and business teams on vendor risk decisions
  • Develop risk scoring, reporting, and ongoing monitoring processes
Identity, Access & Directory Risk Oversight
  • Review and analyze Active Directory and Entra ID access reports
  • Support SOX access reviews and privilege validation
  • Identify access anomalies and partner with IT/Security for remediation
  • Ensure access changes follow approval and ticketing workflows
Risk Reporting, Automation & Insights
  • Produce risk assessment and audit reports for leadership
  • Assist with automating recurring audit and compliance reporting
  • Track control failures, root causes, and remediation plans


Qualifications

  • 3+ years of experience in Governance, Risk & Compliance, IT Audit, or Security Risk
  • Hands-on experience with at least one framework: PCI DSS, SOX, or NIST
  • Working knowledge of identity governance concepts
  • Strong analytical, documentation, and communication skills
What we prefer:
  • Experience with TPRM programs or GRC platforms
  • Exposure to public accounting, consulting, or regulated enterprises
  • Relevant certifications (CISA, CISSP, ISO 27001) a plus


Benefits

  • Vacation and sick time
  • Medical, Dental & Vision
  • 401K with company match
  • Tuition Reimbursement
  • 25%-35% discount when dining as a guest
  • Annual stipend for dining in our restaurants


About the Company

Named to FORTUNE Magazine’s “100 Best Companies to Work For®” list every year since 2014, The Cheesecake Factory Incorporated is a leader in experiential dining. We are culinary-forward and relentlessly focused on hospitality. Delicious, memorable experiences created by passionate people—this defines who we are and where we are going.

We currently own and operate 353 restaurants throughout the United States and Canada under brands including The Cheesecake Factory®, North Italia®, Flower Child® and a collection of other FRC brands. Internationally, 34 The Cheesecake Factory® restaurants operate under licensing agreements. Our bakery division operates two facilities that produce quality cheesecakes and other baked products for our restaurants, international licensees and third-party bakery customers.

We are committed to creating an inclusive and welcoming workplace for all. We welcome applicants from a wide variety of identities, ideas, perspectives, backgrounds and experiences to apply. The Cheesecake Factory offers reasonable accommodations to job applicants with disabilities.

#SoCheesecake #LifeAtCheesecake

To notify of a non-compliant job posting, please send a notice to [email protected].
Apply