CrawlJobs Logo
Citi Logo Citi · IT - Administration

Cyber Risk Senior Analyst

Hungary, Budapest · Job Posted January 24, 2026
Apply Position
Job Link Share

Job Description

The Cyber Risk Senior Analyst is a developing professional who stays abreast of developments within own field and contributes to directional strategy by considering their application in own job and the business. Recognized technical authority for an area within the business. Requires basic commercial awareness. There are typically multiple people within the business that provide the same level of subject matter expertise. Developed communication and diplomacy skills are required in order to guide, influence and convince others, in particular colleagues in other areas and occasional external customers. Significant impact on the area through complex deliverables. Provides advice and counsel related to the technology or operations of the business. Work impacts an entire area, which eventually affects the overall performance and effectiveness of the sub-function/job family

Job Responsibility

  • Establish and oversee the application of operational cyber risk policies, technology and AI tools, and governance processes to create lasting solutions for minimizing losses from failed internal processes, inadequate controls, and emerging risks
  • Participate in the design, development, delivery and maintenance of best-in-class Cyber Risk, Technology Risk, programs, policies and practices for Risk
  • Analyze comparative data, prepare and present regional and global reports related to cyber risk assessments, and monitor cyber and Technology related issues
  • Identify and address potential Cyber and Technology risks
  • Knowledge & experience working with AI tools within Financial Services
  • Identify & assess risks associated with AI systems, including model risk, data risk, bias and fairness, explainability, robustness, privacy, security & third party risk
  • Investigate and respond to operational risks
  • Investigate regulatory inquiries, prepare required documentation, make recommendations to senior management on how to proceed, and prepare responses for the regulatory inquiries
  • Monitor adherence to Citi’s Cyber Risk Policies and relevant procedures
  • Prepare, edit and maintain Cyber and Technology Risk program related materials
  • Interact and work with other areas within Citi, as necessary
  • Keep abreast of regulatory changes, new regulations and internal policy changes in order to further identify new key risk areas
  • Additional duties as assigned

Requirements

  • 5-8 years of experience
  • Knowledge of Cyber Risk, AI Tools, rules, regulations, risks and typologies
  • Excellent written and verbal communication skills
  • Must be a self-starter, flexible, innovative and adaptive
  • Strong interpersonal skills with the ability to work collaboratively and with people at all levels of the organization
  • Work collaboratively with regional and global partners in other functional units
  • ability to navigate a complex organization
  • Excellent project management and organizational skills and capability to handle multiple projects at one time
  • Proficient in MS Office applications (Excel, Word, PowerPoint)
  • Bachelor’s/University degree or equivalent experience

What we offer

  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Socially active employee communities with diverse networking opportunities
Citi - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cyber Risk Senior Analyst

8 matching positions

InfoSec Risk Senior Analyst / Analyst

Location
Location
Salary
Salary:
Not provided
ethicshr.com Logo
Ethics HR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science or Electronics & Communication Engineering or a related field from a reputable university
  • Minimum 4 years of experience for the Senior Analyst and 2 years of experience for the Analyst in the banking sector and information security field, including the following background: Risk assessment, identification and mitigation
  • Security controls, security baseline, technology best practices
  • Has an integration knowledge across different security technologies and systems
  • Security control enforcement, measure of effectiveness and proposing compensating controls
  • CBE regulations
Job Responsibility
Job Responsibility
  • Review & maintain the Risk profile according to the bank's Cyber Security Risk appetite
  • Identify information security controls necessary to remediate identified risks and follow up remediation with the concerned business lines
  • Assess information security risks for IT assets and propose appropriate measures to eliminate/reduce risk
  • Coordinate with Information Security teams to manage the risk assessment activities
  • Engage InfoSec Teams in all new initiatives and projects to handle InfoSec risk assessment for new projects/technologies with concerned stakeholders
  • Follow up on Audit reports along with audit Findings/Recommendations by Internal Audit/External Audit, CBE and ensure remediation with the related parties
  • Ensure maintaining Global InfoSec Risk Register for all assessed IT assets & follow up on open risks until closure
  • Review the cases performed by the InfoSec Governance & Compliance Teams from risk perspective side
  • Participate in the Change Advisory Board (CAB) meeting
  • Work on standard and ad-hoc threats providing InfoSec risk assessment as needed
Read More
Arrow Right

Cyber / Tech 2nd LOD Senior Lead Analyst, Senior Vice President

The Technology and Cyber Compliance and Operational Risk Office (TCCORO) at Citi...
Location
Location
Poland , Warsaw
Salary
Salary:
340990.00 - 580610.00 PLN / Year
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in technology and cyber risk assessments, metrics, enterprise technology services, risks, and controls within globally complex, dispersed, and diverse organizations
  • Advanced knowledge and experience leading control design and operating effectiveness evaluation, testing, and reporting with a track record of influencing effective risk mitigation strategies
  • Excellent presentation skills as well as the ability to effectively communicate complex topics to a broad audience
  • Advanced proficiency in creating written executive materials and mastery in verbal presentation to Executive audiences
  • Outstanding communication and influencing skills, with the ability connect with individuals throughout all levels of the organization and with external partners and vendors
  • Exceptional relationship management skills, including demonstrable experience managing through conflict and issue resolution with senior stakeholders
  • Proven ability to work within teams, manage cross-functional projects, influence executive-level strategic decision-making, and effectively translate technology / cyber risk insights to value-add risk mitigation solutions
  • Subject matter expert in one or more industry standard risk management frameworks (including ISO27001, COBIT, TOGAF and CRI for example), and an in-depth understanding of technology and cyber risk mitigation strategies
  • Deep knowledge of products within the coverage area (e.g, Markets, Banking), including a technical understanding of current and emerging trends as well as the ability to apply in-depth understanding of the business impacts of technical contributions
  • In-depth knowledge of technology and cyber risks and controls across various information system architecture and engineering domains including data protection, identity and access management, vulnerability management, network security, endpoint security, logging and monitoring, incident management, and third-party management
Job Responsibility
Job Responsibility
  • Manages internal projects on threat issues that support a variety of participants and stakeholders measuring the effectiveness and comprehensiveness of Citi’s first line defenses
  • Establishes and oversees the application of compliance and technology and cyber policies and procedures, technology and tools, and governance processes to provide credible challenge for minimizing losses from technology and cyber risks
  • Independently assesses technology and cyber risks and drive actions to address the root causes that persistently lead to operational risk losses by challenging both historical and proposed practices
  • Leads independent assurance activities to assess areas of concern including substantive and controls testing
  • Monitors, evaluates, and challenges Key Risks and associated Key Risk Indicators triggers and thresholds
  • Identifies potential risks associated with program/project delivery on a technical and detailed level
  • Leads various second line of defense technology and cyber assessments including risk assessments, control assessments, maturity assessments etc
  • Assesses technology and cyber risks associated with new initiatives and programs being proposed for implementation
  • Challenges the design, adequacy and strength of the control environment associated to technology and cyber and recommends actions to ensure the operational risk profile is in line with the technology and cyber risk appetite
  • Executes ad-hoc activities for the TCCORO organization, including but not limited to: researching and producing materials for presentations of deep dives into selected topics, coordinating deliverables related to audits and examinations, and maintaining associated data for executive reporting
What we offer
What we offer
  • Employer paid Defined Contribution Pension Plan contribution of 6% of employee’s pensionable earnings (PPE Program)
  • Employer paid Private Medical Care Package for employees and Private Medical Care Packages for certain family members available at preferential rates
  • Employer paid Life Insurance Program for employees and Life Insurance for certain family members available at preferential rates
  • Employee Assistance Program financed by Employer
  • Paid Parental Leave Program (maternity and paternity leave
  • statutory and 2 weeks additional paid paternity leave)
  • Sport Card for employees subsidised via Social Benefits Fund and Sport Cards for certain family members available at preferential rates
  • Additional benefits from Company’s Social Benefit Fund, in particular: Holidays Allowance, support for sport and cultural activities, team building events
  • Additional day off for volunteering
  • Cafeteria/ flex benefit
  • Fulltime
Read More
Arrow Right

Senior Analyst, Cyber Security

The Senior Analyst, Cyber Security supports the Manager, Cybersecurity & Network...
Location
Location
Canada , Vancouver
Salary
Salary:
90300.00 - 129000.00 USD / Year
canfor.com Logo
Canfor
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree or diploma in IT or related field
  • 5+ years enterprise experience across multi-site environments
  • Professional-level Security certifications preferred
  • Strong troubleshooting, documentation, and communication skills
  • Hands‑on experience with Microsoft Defender, Sentinel, Purview, or equivalent
  • Experience managing cloud security for Azure/M365/SaaS
  • Demonstrated ability to collaborate with MDR/SOC teams
  • Experience with privacy legislation (PIPEDA, BC PIPA)
  • Experience developing or maintaining incident response playbooks
  • Threat-informed defense (MITRE ATT&CK familiarity)
Job Responsibility
Job Responsibility
  • Plan, design, and implement enterprise security solutions
  • Resolve Tier 3 incidents and outages
  • Execute security projects and coordinate vendors
  • Maintain accurate documentation, runbooks, and inventories
  • Support for Zero Trust architecture, including network segmentation, identity hardening, and continuous monitoring
  • Responsibilities related to cloud security across Azure, M365, SaaS, and hybrid workloads
  • Oversight of third‑party risk, recognizing increased vendor dependence
  • Work with MDR (Managed Detection & Response) providers such as Arctic Wolf to improve detection, triage, and response maturity
  • Responsibilities related to governance frameworks (NIST CSF 2.0, CIS Controls v8)
  • Integration with privacy compliance (PIPEDA, BC PIPA) and corporate policy governance
What we offer
What we offer
  • performance-based incentive plans
  • recognition programs
  • benefits
  • paid leaves
  • pension plans with base and matching contributions
  • savings options
  • robust health & well-being initiatives
  • development of our talent
  • value proposition that promotes diversity, equity and inclusion
  • Fulltime
Read More
Arrow Right

Bdo Digital Senior Cyber Analyst

We’re BDO. An accountancy and business advisory firm, providing the advice and s...
Location
Location
United Kingdom , Birmingham
Salary
Salary:
Not provided
bdo.co.uk Logo
BDO UK LLP
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in IT security domains
  • Experience in performing IT security audits and/ or control gap assessments against CIS Benchmarks and NIST
  • Certification, such as CISA preferred
  • Demostrable interest, training, experience or certification (e.g. Security+, Network +, SSCP, CISSP) in cybersecurity is highly beneficial
  • Strong technical foundation to support the understanding of controls
  • Experience in cybersecurity, IT risk (consultancy experience) or regulatory landscape
  • Ability to meet project deadlines and manage multiple engagements
  • Strong analytical and problem-solving skills, with the ability to present information in a clear and concise manner
  • Ability to build strong relationships with clients
Job Responsibility
Job Responsibility
  • Manage risk for our clients to make them stronger for the future
  • Performing assessments of cybersecurity controls to guide clients on their level of cyber risk
  • Support technical engagement managers on cyber advisory services
  • Support the Cyber Management team as they look to develop the proposition and grow the business
  • Delivery of cyber engagements to help clients assess their cyber risk and support technical engagements
What we offer
What we offer
  • Agile working
  • Programmes, resources, and frameworks that provide clarity and structure around career development
  • Informal success conversations to formal mentoring and coaching
  • State-of-the-art collaboration spaces in our offices
  • Multidisciplinary events and dedicated resources
Read More
Arrow Right

Senior Risk Analyst

Join us as a Senior Risk Analyst and play a pivotal role in shaping the future o...
Location
Location
Australia , Sydney
Salary
Salary:
Not provided
tmgm.com Logo
TMGM
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years' experience across enterprise risk, operational risk, cyber security risk or internal audit, preferably within financial services
  • Demonstrated exposure to the design and implementation of effective risk management frameworks, and a sound working knowledge of ASIC requirements
  • Tertiary qualification in a related discipline (e.g., Finance, Business, Commerce, Risk, IT, Audit, or a related discipline)
  • Professional certifications such as FRM, CISA, CA, CPA, CIA, or equivalent are desirable
  • Prior exposure to Forex and CFD trading (or financial services) risk environment is preferred
  • Prior exposure to ICT, cybersecurity or IT Audit will be a plus
  • Excellent interpersonal and stakeholder engagement skills
  • Structured thinker with strong written and verbal communication skills
  • High attention to detail with strong analytical and reporting capabilities
  • Highly adaptable and able to manage multiple priorities in a demanding environment
Job Responsibility
Job Responsibility
  • Contribute to distinct types of risk identification, assessments, mitigation strategies, reporting, and monitoring across our businesses in alignment with our Enterprise Risk Management Framework
  • Proactively monitor emerging risks, trends, and systemic issues, escalating risks through appropriate channels, and supporting resolution as required
  • Manage Incidents and Breaches via Jira, including registering incidents in incident register and risk register, updating incident status, replying to customers, and notifying assessments and evaluations results to customers
  • Participate in cross-functional incident reviews, including CEO risk meetings, supporting timely resolution and comprehensive post-incident risk reporting
  • Support both short- and long-term initiatives stemming from incidents, helping embed risk management practices into core business operations
  • Help to drive improvements in risk reporting, analytics, and visualization to support decision-making
  • Promote a culture of continuous improvement by driving lessons-learned reviews and supporting the implementation of preventative measures
  • Assist in the delivery of assurance activities including RCSA, walkthroughs and control testing
  • Leverage data insights to identify control weaknesses and improvement opportunities, collaborating with control owners to implement effective enhancements
  • Help to prepare and update Business Continuity Plan (BCP) and the implementation of business continuity testing
What we offer
What we offer
  • Competitive salary and performance-based bonuses
  • Opportunities for career growth and development within a global company
  • Collaborative and inclusive work environment with exposure to cross-region operations
  • Health and wellness benefits
  • Flexible working arrangements
  • Fulltime
Read More
Arrow Right

Senior Cyber Operations Analyst

Join us as a Cyber Operations at Barclays, responsible for supporting the succes...
Location
Location
India , Pune
Salary
Salary:
Not provided
barclays.co.uk Logo
Barclays
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proficiency in Develop and maintain audit documentation and reports
  • Proficiency in SIEM technologies & usability in a Large & Complex Computing Environment
  • Analysis and response of detected security incidents, timely escalation and drive to ensure the closure of incidents
  • Knowledge of auditing standards and frameworks (e.g., CSF, Mitre Att£ck & Detection Lifecycle Management)
  • Incident Response skills including proficiency in PCAP Capture, Network Analysis, and Traffic Patterns
  • Identify attacks and malware (Trojans, Ransomware, etc.) analysing event data generated from proxy, endpoints, IDS, MPS, network devices etc.
Job Responsibility
Job Responsibility
  • Management of security monitoring systems, including intrusive prevention and detection systems, to alert, detect and block potential cyber security incidents, and provide a prompt response to restore normal operations with minimised system damage
  • Identification of emerging cyber security threats, attack techniques and technologies to detect/prevent incidents, and collaborate with networks and conferences to gain industry knowledge and expertise
  • Management and analysis of security information and event management systems to collect, correlate and analyse security logs, events and alerts/potential threats
  • Triage of data loss prevention alerts to identify and prevent sensitive data for being exfiltrated from the banks network
  • Management of cyber security incidents including remediation & driving to closure
  • To advise and influence decision making, contribute to policy development and take responsibility for operational effectiveness
  • Lead a team performing complex tasks, using well developed professional knowledge and skills to deliver on work that impacts the whole business function
  • Consult on complex issues
  • providing advice to People Leaders to support the resolution of escalated issues
  • Identify ways to mitigate risk and developing new policies/procedures in support of the control and governance agenda
What we offer
What we offer
  • Competitive holiday allowance
  • Life assurance
  • Private medical care
  • Pension contribution
  • Fulltime
Read More
Arrow Right

Senior Cyber Security Analyst

We are supporting a leading international organisation in the search for a Senio...
Location
Location
United Kingdom , London
Salary
Salary:
600.00 - 601.00 GBP / Day
welovesalt.com Logo
Salt
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8-15+ years in Cyber Security
  • Strong focus on Application Security and DevSecOps
  • Experience working closely with engineering and platform teams
  • Strong stakeholder engagement and communication skills
  • Experience within regulated or enterprise environments preferred
  • Financial services, government, or large-scale enterprise experience highly desirable
  • Application Security & Secure SDLC (OWASP Top 10 / ASVS, Secure coding practices, Threat modelling (STRIDE / MITRE ATT&CK), Security architecture and design reviews, Vulnerability management and remediation, Secure Software Development Lifecycle (SSDLC))
  • DevSecOps & CI/CD Security (Integration of security tooling into CI/CD pipelines, Experience with GitHub, GitLab, Jenkins, Azure DevOps, Hands-on experience with SAST, DAST, SCA, Secrets scanning, Container security)
  • Cloud & Platform Security (AWS and/or Azure security, Kubernetes / Docker / container security, API security, IAM / Identity Federation / SSO, WAF and cloud-native security tooling, Infrastructure-as-Code security (Terraform / Checkov / tfsec))
  • Security Tooling (SonarQube, Checkmarx, Veracode, Fortify, OWASP ZAP, Burp Suite, Snyk, Aqua, Wiz, Prisma Cloud, Defender for Cloud, Sentinel)
Job Responsibility
Job Responsibility
  • Perform security risk assessments, secure design reviews, and threat modelling exercises for applications, APIs, and cloud platforms
  • Define and implement secure-by-design principles across software engineering and DevOps teams
  • Embed security controls into CI/CD pipelines using modern DevSecOps practices
  • Lead and support SAST, DAST, SCA, and container security integration activities
  • Conduct application and infrastructure security assessments aligned to OWASP, NIST, and industry best practices
  • Work closely with development teams to triage vulnerabilities and support remediation activities
  • Define security requirements for modern application architectures including APIs, Microservices, Kubernetes / Containers, Cloud-native platforms
  • Support secure architecture reviews across AWS and/or Azure environments
  • Collaborate with stakeholders across Security, Engineering, DevOps, Risk, and Architecture teams
  • Support vulnerability management, security governance, and secure delivery processes
Read More
Arrow Right

Senior Cyber Security Analyst

At Boeing, we innovate and collaborate to make the world a better place. We’re c...
Location
Location
Australia , Enoggera
Salary
Salary:
Not provided
boeing.com Logo
Boeing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Relevant degree or 6 years+ relevant experience in similar role
  • Prior Defence, aerospace or cyber industry experience (desirable)
  • Effective communication and interpersonal skills, and demonstrated ability to engage, influence and cooperate with a wide range of internal and external stakeholders
Job Responsibility
Job Responsibility
  • Defines, develops, integrates, designs and maintains security technical controls in a variety of IT environments and systems
  • Defines security product specifications tools and techniques for intrusion detection, intrusion prevention, data loss prevention, Encryption of data, Identity/Access management and authentication methods
  • Analyses security designs and recommends design solutions to lower security risk along with being knowledgeable of national and international privacy requirements
  • Reviews design data elements (threat models, data flow diagrams, requirements, etc.) along with known vulnerabilities associated with IT systems and creates designs and recommendations that lower or eliminate security risk
  • Leads the maintenance of the Apache Assessments and Authorisation
  • Capable of attaining AASB Engineering Authority: Design Engineer
What we offer
What we offer
  • Competitive base pay and incentive programs
  • Industry-leading tuition assistance program pays your institution directly
  • Resources and opportunities to grow your career
  • Up to $10,000 match when you support your favorite nonprofit organizations
  • Fulltime
Read More
Arrow Right