CrawlJobs Logo

Information Security Risk Analyst

optiver.com Logo

Optiver

Location Icon

Location:
Netherlands , Amsterdam

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

We are seeking a proactive, curious and hands-on Information Security Risk Analyst to join our global Business Information Security Officers (BISO) team. This role is ideal for someone early in their security career who enjoys a varied workload, thrives in a fast-paced environment, and wants to deepen their expertise in the business side of security.

Job Responsibility:

  • Assist with policy maintenance, tracking implementation progress, and ensuring business adoption across global locations
  • Contribute to regulatory and audit responses by gathering evidence, interpreting requirements, and producing clear, accurate inputs
  • Support the management of the global security training and awareness program
  • Coordinate and support regular security control assessments, risk reviews, and assurance activities to verify that controls are operating as intended
  • Help maintain and strengthen Optiver’s control framework by identifying gaps, driving follow-up actions, and collaborating with technical and business teams
  • Support data analysis and automation efforts to streamline reporting, improve accuracy, and enable more efficient GRC processes

Requirements:

  • At least 2 years of professional experience in information security, technology risk, GRC, or a related field, ideally in an in-house environment
  • Experience in project management
  • Solid understanding of fundamental information security concepts
  • Comfortable managing multiple priorities concurrently while maintaining high-quality output under time pressure
  • Strong communication skills (written and verbal), with the ability to convey clear, concise updates to both technical and business stakeholders
  • Able to work effectively across global teams and time zones, while also operating independently and knowing when to align
  • Comfortable using modern tools, including data analysis/reporting platforms, and leveraging AI to improve efficiency and quality
  • Pragmatic and structured in problem-solving, with a focus on practical, outcome-driven solutions
  • Proactive, accountable, and curious, with a strong sense of ownership and a desire to continuously learn and deepen expertise

Nice to have:

  • Exposure to NIST, ISO27001, or similar frameworks (practical understanding preferred over theoretical knowledge)
  • Experience in contributing to activities such as control assessments, policy implementation projects, audits, and training programs
What we offer:
  • A performance-based bonus structure unmatched anywhere in the industry
  • The opportunity to work alongside best-in-class professionals from over 50 different countries
  • 25 paid vacation days in your first year, increasing to 30 from your second year onwards
  • Training opportunities, discounts on health insurance, and fully paid first-class commuting expenses
  • Extensive office perks, including breakfast, lunch and dinner, world-class barista coffee, in-house physio and chair massages, organized sports and leisure activities, and Friday afternoon drinks
  • Training and continuous learning opportunities, including access to conferences and tech events
  • Competitive relocation packages and visa sponsorship where necessary for expats

Additional Information:

Job Posted:
April 23, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
Optiver - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Information Security Risk Analyst

Information Security Analyst

Robert Half is the world’s first and largest specialized talent solutions firm t...
Location
Location
United States , Ashland
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, or related field
  • 3-5+ years of experience in information security, with specific expertise in risk assessments, compliance, and strategic security planning
  • Strong working knowledge of NIST, ISO/IEC 27001, and other industry standards
  • Experience conducting security-focused business impact analyses
  • Familiarity with regulatory requirements such as GDPR, HIPAA, and PCI DSS
  • Strong communication skills with the ability to translate technical concepts for non-technical audiences in consultative settings
  • Industry certifications such as CISSP, CISM, CRISC, or CISA are highly preferred
Job Responsibility
Job Responsibility
  • Develop and implement comprehensive information security strategies and programs that align with the business’s overall goals
  • Facilitate consultative discussions across departments to identify security needs and integrate them into long-term planning processes
  • Apply and customize NIST Cybersecurity Framework (CSF) and ISO/IEC 27001 standards to create secure systems, processes, and environments
  • Conduct gap analyses to benchmark current security processes against established frameworks and recommend improvements
  • Perform and document risk assessments, evaluating potential vulnerabilities and threats
  • Conduct business impact analyses to prioritize assets and ensure appropriate allocation of security resources to critical areas
  • Evaluate the organization’s compliance with relevant regulatory standards, such as GDPR, HIPAA, CCPA, and PCI DSS, and provide remediation plans to address deficiencies
  • Partner with internal and external auditors to perform compliance-related audits and assessments
  • Act as a point of consultative support for business leaders and departments regarding information security risks, requirements, and best practices
  • Collaborate with IT teams, project managers, and other stakeholders to ensure security is embedded into new system implementations and upgrades
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Read More
Arrow Right

Senior Third-Party Security Risk Analyst

As a Senior Third-Party Security Risk Specialist at Ledger, you will play a vita...
Location
Location
France , Paris
Salary
Salary:
Not provided
https://www.ledger.com Logo
Ledger
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master degree in Information Security, Cybersecurity, or a related field
  • 5+ years of progressive experience in third-party risk management, with a strong background in audit, risk management, compliance, or a related control function within a complex organization
  • Proven project management skills with the ability to manage complex, cross-functional projects and maintain comprehensive documentation
  • In-depth knowledge of security frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework) and experience in applying them to third-party risk management and regulatory requirements
  • Excellent analytical and problem-solving skills with a focus on identifying root causes and developing effective solutions
  • Strong communication and interpersonal skills, including the ability to influence and negotiate with vendors and stakeholders at all levels
Job Responsibility
Job Responsibility
  • Conduct comprehensive security assessments of third-party vendors, including reviewing their security policies, procedures, and controls
  • Proactively identify and evaluate potential security/privacy risks associated with a particular focus on those that could impact Ledger's reputation, financial stability, and customer trust
  • Develop and implement risk mitigation strategies to address identified vulnerabilities
  • Lead the collaboration with vendors to remediate security gaps and ensure compliance with Ledger's stringent security requirements
  • Establish and maintain a robust vendor security monitoring program, driving continuous improvement in vendor security posture and compliance
  • Develop, implement, and continuously improve Ledger's third-party security risk management program, including policies, standards, procedures, and tools
  • Prepare reports and presentations on vendor security risks and mitigation efforts to senior management, stakeholders, and the Comex
  • Participate in audits as part of the Privacy audit program according to the agreed annual audit plan
What we offer
What we offer
  • Equity: Employees are the foundation of our success, and we award stock options so you can share in that success as we grow
  • Flexibility: A hybrid work policy
  • Social: Annual company outing for Ledgerdary Days, plus frequent social events, snacks and drinks
  • Medical: Comprehensive health insurance policy offering extensive medical, dental and vision care coverage
  • Well-being: Personal development, coaching & fitness with our dedicated partners
  • Vacation: Five weeks of paid leave per year, in addition to national holidays and rest & relaxation (RTT) days
  • High tech: Access to high performance office equipment and gadgets
  • Transport: Ledger reimburses part of your preferred means of transportation
  • Discounts: Employee discount on all our products
  • Fulltime
Read More
Arrow Right

Information Security Lead Analyst

As part of Citi Infrastructure Defense team, the analyst position will participa...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience with multiple security disciplines and strong understanding of layered defense concepts
  • Deep understanding of TCP/IP technologies and knowledge of network routing protocols
  • Experience defining enterprise security strategy and ecosystem across diverse products
  • Strong hands on experience with firewall and proxy technologies (Bluecoat, Squid, NGINX)
  • Large Scale Network and Security design experience is essential
  • Work with and understand regulatory and risk management requirements
  • Strong unix / linux experience
  • Scripting (Python/Perl/Bash)
  • University / College degree in any STEM area or equivalent industry/technology knowledge
Job Responsibility
Job Responsibility
  • Identify opportunities to automate and standardize information security controls
  • Resolve any vulnerabilities or issues detected in an application or infrastructure
  • Analyze source code to mitigate identified weaknesses and vulnerabilities within the system
  • Review and validate automated testing results and prioritize actions that resolve issues based on overall risk
  • Scan and analyze applications with automated tools, and perform manual testing if necessary
  • Reduce risk by analyzing the root cause of issues, their impact, and required corrective actions
  • Direct the development and delivery of secure solutions by coordinating with business and technical contacts
  • Assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup
What we offer
What we offer
  • Opportunity to work on the internal security posture for a large financial and thus shaping the industry overall
  • Exposure to a broad range of investment technology businesses and products
  • Access to our word class testing lab with physical hands on using hundreds of devices in the IT security ecosystem
  • Fulltime
Read More
Arrow Right

Information Security Technology Analyst - Governance

The Information Security Technology Analyst is an intermediate level position re...
Location
Location
Philippines , City of Taguig, Metro Manila
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-8 years of relevant experience
  • Consistently demonstrates clear and concise written and verbal communication
  • Proven influencing and relationship management skills
  • Proven analytical skills
  • Bachelor's degree/University degree or equivalent experience
Job Responsibility
Job Responsibility
  • Assist Security Incident Response Teams with incident investigations and aid in technical risk assessments
  • Coordinate with system development and infrastructure units to identify Information Security (IS) risks and the appropriate controls for development, day-to-day operation, and emerging technologies
  • Perform regular assessments based on changes in the threat landscape
  • Monitor vulnerability assessments and ethical hacks, ensuring that issues are addressed for the applications that they support
  • Provide information security support with related activities during systems development (e.g. authentication, encryption)
  • Identify and develop new and improved technical procedures and process control manuals
  • Identify significant IS threats and vulnerabilities
  • Assume informal/formal mentorship role within teams and assist with the coaching and training of new team members
  • Appropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets
  • Fulltime
Read More
Arrow Right

Information Security Analyst

The Information Security Analyst will play a key role in safeguarding the organi...
Location
Location
United States , Atlanta
Salary
Salary:
Not provided
oceanbluecorp.com Logo
Ocean Blue Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in information security, Cybersecurity, IT, or related field
  • or equivalent 1 year
  • or Preference will be given to candidates with relevant State of Georgia Experience
  • Hands-on experience with Splunk, CrowdStrike Falcon, and Tenable Nessus/Tenable.sc.
  • Strong understanding of CUI protection requirements and compliance frameworks (NIST, FISMA, IRS Pub 1075, CMS, SSA)
  • Experience with incident response, vulnerability management, and risk assessments
  • Strong analytical, documentation, and communication skills
Job Responsibility
Job Responsibility
  • Conduct continuous monitoring of enterprise systems using CrowdStrike (EDR), Splunk (SIEM), and Tenable (Vulnerability Management)
  • Detect, investigate, and respond to potential threats and incidents impacting CUI and overall system security
  • Maintain dashboards, alerts, and reports to ensure proactive detection and escalation of risks
  • Perform ongoing vulnerability assessments with Tenable, track remediation efforts, and validate closure of findings
  • Support patch management and configuration management processes to reduce the attack surface
  • Deliver metrics and risk posture updates to leadership
  • Maintain and update System Security Plans (SSPs) to document the implementation of security controls
  • Support external and internal audits (IRS, CMS, SSA, NIST, FISMA) by providing required evidence, documentation, and remediation tracking
  • Assist in compliance with evolving frameworks (e.g., NIST SP 800-53 Rev. 5)
  • Triage, analyze, and document security incidents across enterprise systems
Read More
Arrow Right

Information Security Analyst

Location
Location
United States
Salary
Salary:
Not provided
sygnasolutions.com Logo
Sygna Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ Yrs Experience
  • Minimum of a bachelor’s degree in computer science or equivalent
  • Strong experience with Identity Lifecycle Management (Provisioning, De-provisioning and JML flows)
Job Responsibility
Job Responsibility
  • Integrated different kind of applications like connected mode and disconnected mode applications
  • Application Onboarding (Provisioning/De-provisioning), Birthright Provisioning, Application and Workflows
  • Configuring of workflows in Saviynt IAM tool
  • System, Rule Management, User Provisioning, Access Certification
  • Configured technical rules and user update rules
  • Configured SMPT server, email templates and UI branding
  • Build and Configure SailPoint tasks like aggregation, ID refresh, schedule tasks
  • Implemented Certification Exclusion Rule to excuse certification items from certification List
  • Implemented Customization Rule to identify the uncorrelated accounts or dormant accounts
  • Developed custom Build Map Rules, Correlation Rules and having knowledge Workflows as per the business needs
  • Fulltime
Read More
Arrow Right

Risk & Information Security Associate Analyst

We are looking for a highly organized, detail-oriented Risk & Information Securi...
Location
Location
Cyprus , Nicosia
Salary
Salary:
Not provided
www-ap.albourne.com Logo
Albourne
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2–3 years of professional experience
  • Excellent organizational skills with the ability to manage multiple workstreams and meet deadlines in a dynamic environment
  • Strong written and verbal communication skills, including the ability to prepare concise, well-structured documents and interact professionally across all levels of the business
  • Meticulous attention to detail, particularly in preparing audit materials, compliance documentation, and reviewing access controls
  • Proactive and self-motivated, able to work independently and across time zones without direct daily supervision
  • Comfortable handling sensitive and confidential information with discretion
  • Interest in technology, cybersecurity, and enterprise risk
  • Basic understanding of information security principles and frameworks (e.g., ISO 27001, NIST)
  • Ability to interpret and work with structured information (e.g., policies, risk registers, audit plans)
  • Capable of coordinating inputs from multiple stakeholders and compiling them into coherent outputs (e.g., committee papers, training summaries, client DDQs)
Job Responsibility
Job Responsibility
  • Monitor and report on the effectiveness of information security controls
  • Support the identification, tracking, and resolution of security incidents or weaknesses
  • Assist in maintaining security metrics and dashboards for internal reporting
  • Contribute to the assessment of operational, technology, and third-party risks
  • Assist in evaluating controls and proposing mitigation strategies aligned with risk appetite
  • Participate in internal audits and control testing, ensuring timely remediation of findings
  • Help maintain and enforce security and risk management policies and procedures
  • Support compliance with relevant data protection, privacy, and information security regulations
  • Coordinate periodic user access reviews and assist with awareness initiatives
  • Work across departments to gather risk-related information and support secure business operations
What we offer
What we offer
  • Support for professional qualifications (such as CFA and CAIA)
  • Career growth and tools for ongoing learning and development
  • Medical insurance for you and your dependents
  • Provident fund
  • Yearly bonus dependent upon performance and company growth
  • Opportunity for international travel (i.e., short periods of secondment to other Albourne offices)
  • 5 additional service recognition holidays in surplus to standard annual leave
  • Albourne Training Days (minimum of 40 hours per year)
  • Free office parking
  • A supportive, diverse, and multi-cultural work environment
  • Fulltime
Read More
Arrow Right

Senior Third-Party Security Risk Analyst

As a Senior Third-Party Security Risk Specialist at Ledger, you will contribute ...
Location
Location
France , Paris
Salary
Salary:
Not provided
https://www.ledger.com Logo
Ledger
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master degree in Information Security, Cybersecurity, or a related field
  • 5+ years of progressive experience in third-party risk management, with a strong background in audit, risk management, compliance, or a related control function within a complex organization
  • Proven project management skills with the ability to manage complex, cross-functional projects and maintain comprehensive documentation
  • In-depth knowledge of security frameworks and standards (e.g., ISO 27001, NIST Cybersecurity Framework) and experience in applying them to third-party risk management and regulatory requirements
  • Excellent analytical and problem-solving skills with a focus on identifying root causes and developing effective solutions
  • Strong communication and interpersonal skills, including the ability to influence and negotiate with vendors and stakeholders at all levels.
Job Responsibility
Job Responsibility
  • Conduct comprehensive security assessments of third-party vendors, including reviewing their security policies, procedures, and controls
  • Proactively identify and evaluate potential security/privacy risks associated with a particular focus on those that could impact Ledger's reputation, financial stability, and customer trust
  • Develop and implement risk mitigation strategies to address identified vulnerabilities
  • Lead the collaboration with vendors to remediate security gaps and ensure compliance with Ledger's stringent security requirements
  • Establish and maintain a robust vendor security monitoring program, driving continuous improvement in vendor security posture and compliance
  • Develop, implement, and continuously improve Ledger's third-party security risk management program, including policies, standards, procedures, and tools
  • Prepare reports and presentations on vendor security risks and mitigation efforts to senior management, stakeholders, and the Comex
  • Participate in audits as part of the Privacy audit program according to the agreed annual audit plan.
What we offer
What we offer
  • Equity: Employees are the foundation of our success, and we award stock options so you can share in that success as we grow
  • Flexibility: A hybrid work policy
  • Social: Annual company outing for Ledgerdary Days, plus frequent social events, snacks and drinks
  • Medical: Comprehensive health insurance policy offering extensive medical, dental and vision care coverage
  • Well-being: Personal development, coaching & fitness with our dedicated partners
  • Vacation: Five weeks of paid leave per year, in addition to national holidays and rest & relaxation (RTT) days
  • High tech: Access to high performance office equipment and gadgets
  • Transport: Ledger reimburses part of your preferred means of transportation
  • Discounts: Employee discount on all our products.
  • Fulltime
Read More
Arrow Right
Remote jobs Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog Salaries Tools About Us FAQ Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy