Compensation Range

$123,000 - $134,000 / Year

Position Overview:

Eligible for a hybrid work schedule split between home & office, with a minimum of 3 days in the office each week.

 

You may be familiar with our extensive menu of delectable dishes and our recognition by Fortune Magazine as one of the "100 Best Companies to Work For®" since 2014! But what you might not know is that we're a company driven by cutting-edge technology.

As an Information Security Risk Analyst reporting to the Information Security Manager, you’ll be at the center of enterprise risk, compliance, and third-party oversight. This role is instrumental in building scalable security and governance processes that support growth, enhance resilience, and enable teams across the organization to move faster with confidence.

You’ll thrive in this role if you are:

Stakeholder Savvy: You work confidently with auditors and senior leaders, communicating with clarity and professionalism that strengthens collaboration and drives alignment.
Precision Driven: You thrive in structured environments, bringing a process minded approach that ensures accurate, consistent, and high quality work every time.
Business Focused Translator: You turn complex security and risk concepts into clear business insights, helping leaders make informed, practical decisions with confidence.
Governance Minded: You’re energized by policy, structure, and accountability—preferring governance, compliance, and risk work over hands on security engineering.

 

Here’s more of what you’ll get to do:

Enterprise Governance & Compliance

Lead and support audits including PCI DSS, SOX, and NIST CSFCoordinate evidence collection, control testing, and remediation trackingMaintain and enhance security policies, procedures, and audit documentationPartner with Internal Audit and Accounting on annual and quarterly audit requirements

Third-Party Risk Management (TPRM)

Own the end-to-end third-party risk lifecyclePerform security assessments for new and existing vendorsPartner with Legal, Procurement, and business teams on vendor risk decisionsDevelop risk scoring, reporting, and ongoing monitoring processes

Identity, Access & Directory Risk Oversight

Review and analyze Active Directory and Entra ID access reportsSupport SOX access reviews and privilege validationIdentify access anomalies and partner with IT/Security for remediationEnsure access changes follow approval and ticketing workflows

Risk Reporting, Automation & Insights

Produce risk assessment and audit reports for leadershipAssist with automating recurring audit and compliance reportingTrack control failures, root causes, and remediation plans
What we require:

3+ years of experience in Governance, Risk & Compliance, IT Audit, or Security RiskHands-on experience with at least one framework: PCI DSS, SOX, or NISTWorking knowledge of identity governance conceptsStrong analytical, documentation, and communication skills

What we prefer:

Experience with TPRM programs or GRC platformsExposure to public accounting, consulting, or regulated enterprisesRelevant certifications (CISA, CISSP, ISO 27001) a plus
What we offer:

Vacation and sick timeMedical, Dental & Vision401K with company matchTuition Reimbursement25%-35% discount when dining as a guestAnnual stipend for dining in our restaurants
About the Company:

Named to FORTUNE Magazine’s “100 Best Companies to Work For®” list every year since 2014, The Cheesecake Factory Incorporated is a leader in experiential dining. We are culinary-forward and relentlessly focused on hospitality. Delicious, memorable experiences created by passionate people—this defines who we are and where we are going.

We currently own and operate 353 restaurants throughout the United States and Canada under brands including The Cheesecake Factory®, North Italia®, Flower Child® and a collection of other FRC brands. Internationally, 34 The Cheesecake Factory® restaurants operate under licensing agreements. Our bakery division operates two facilities that produce quality cheesecakes and other baked products for our restaurants, international licensees and third-party bakery customers.

 

We are committed to creating an inclusive and welcoming workplace for all. We welcome applicants from a wide variety of identities, ideas, perspectives, backgrounds and experiences to apply. The Cheesecake Factory offers reasonable accommodations to job applicants with disabilities.

 

#SoCheesecake #LifeAtCheesecake

 

 

To notify of a non-compliant job posting, please send a notice to ats@thecheesecakefactory.com.