Company Description

Arista Networks is an industry leader in data-driven, client-to-cloud networking for large data center, campus and routing environments. Arista is a well-established and profitable company with over billion in revenue. Arista’s award-winning platforms, ranging in Ethernet speeds up to 800G bits per second, redefine scalability, agility, and resilience.  Arista is a founding member of the Ultra Ethernet consortium. We have shipped over 100 million cloud networking ports worldwide with CloudVision and EOS, an advanced network operating system. Arista is committed to open standards, and its products are available worldwide directly and through partners.

At Arista, we value the diversity of thought and perspectives each employee brings. We believe fostering an inclusive environment where individuals from various backgrounds and experiences feel welcome is essential for driving creativity and innovation.

Our commitment to excellence has earned us several prestigious awards, such as the Great Place to Work Survey for Best Engineering Team and Best Company for Diversity, Compensation, and Work-Life Balance. At Arista, we take pride in our track record of success and strive to maintain the highest quality and performance standards in everything we do.

Job Description

Who You’ll Work With

In this role, you will collaborate closely with internal teams such as IT, Legal, Compliance, and HR to assess and manage risks affecting business operations. You will work directly with security teams, including network security, cloud security, and security operations, to align risk management efforts and identify vulnerabilities. You will also partner with the Compliance team to ensure adherence to regulatory requirements and industry best practices, and regularly communicate with senior management to report on risk assessments, mitigation strategies, and opportunities for improvement across the organization.

What You’ll Do

We are seeking an experienced Senior Risk Analyst to work on our Risk Management Program. The Senior Risk Analyst will be responsible for identifying, assessing, and mitigating potential risks that could impact the organization's confidential information. This role requires an individual with strong analytical abilities, a deep understanding of risk management practices, understanding technology used in processes, and the ability to collaborate across departments to implement effective risk controls. Need solid understanding of security frameworks, regulatory requirements, and risk management principles. Candidate to play key role in safeguarding the organization’s assets, supporting risk assessments, and ensuring that security measures are effective and aligned with industry best practices.
 
Key Responsibilities:

Periodical review and enhancing risk assessment policy, procedures, methodology, templates and risk questionnaires.Identify and assess information security risks across the organization, including potential vulnerabilities in networks, systems, applications, and data.Evaluate and recommend security controls to protect sensitive information and ensure compliance with industry standards and regulations.Work on complete risk management process activities i.e. risk assessment, analyzing risk, risk treatment, control effectiveness check, periodical risk management reporting.Maintain and update risk registers for all departments.Develop and maintain reports on the status of security risks, including impact, likelihood, and mitigation strategies.Provide clear and concise analysis of potential risks, highlighting areas of concern and recommending corrective actions.Assist in developing and delivering training programs to increase employee awareness of information security risks, policies, and procedures.Stay current with emerging cybersecurity trends, tools, and threat intelligence.Proactively recommend improvements to the organization’s security risk management framework and contribute to the evolution of security policies and procedures.

Qualifications

Required Skills and Qualifications:
Education:

Bachelor’s degree in information technology, Computer Science, or a related field.Professional certifications in Information security, cybersecurity, risk management etc.At least 8 years of experience and at least 3 years’ experience in information security risk management.Proven experience in conducting risk assessments, vulnerability management, and implementing security controls.Excellent verbal and written communication skills, with the ability to clearly communicate technical risks to both technical and non-technical stakeholders.Experience in preparing reports, presentations, and security documentation for senior management.Familiarity with information security frameworks and standards, including NIST, ISO 27001, CIS Controls, and others.Understanding of security technologies like firewalls, intrusion detection/prevention systems (IDS/IPS), encryption, and access control mechanisms.Understanding of cloud security (AWS, GCP etc) and securing cloud-based environments.Knowledge of information security regulations and compliance frameworks, such as GDPR, DPDP, SOC 2, and others.Strong ability to assess risks, identify vulnerabilities, and recommend effective security measures.Ability to analyze complex security incidents, identify root causes, and propose practical mitigation strategies.

Additional Information

Arista stands out as an engineering-centric company. Our leadership, including founders and engineering managers, are all engineers who understand sound software engineering principles and the importance of doing things right.

We hire globally into our diverse team. At Arista, engineers have complete ownership of their projects. Our management structure is flat and streamlined, and software engineering is led by those who understand it best. We prioritize the development and utilization of test automation tools.

Our engineers have access to every part of the company, providing opportunities to work across various domains. Arista is headquartered in Santa Clara, California, with development offices in Australia, Canada, India, Ireland, and the US. We consider all our R&D centers equal in stature.

Join us to shape the future of networking and be part of a culture that values invention, quality, respect, and fun.