CrawlJobs Logo

InfoSec Risk Senior Analyst / Analyst

Ethics HR

Location Icon

Location:

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Responsibility:

  • Review & maintain the Risk profile according to the bank's Cyber Security Risk appetite
  • Identify information security controls necessary to remediate identified risks and follow up remediation with the concerned business lines
  • Assess information security risks for IT assets and propose appropriate measures to eliminate/reduce risk
  • Coordinate with Information Security teams to manage the risk assessment activities
  • Engage InfoSec Teams in all new initiatives and projects to handle InfoSec risk assessment for new projects/technologies with concerned stakeholders
  • Follow up on Audit reports along with audit Findings/Recommendations by Internal Audit/External Audit, CBE and ensure remediation with the related parties
  • Ensure maintaining Global InfoSec Risk Register for all assessed IT assets & follow up on open risks until closure
  • Review the cases performed by the InfoSec Governance & Compliance Teams from risk perspective side
  • Participate in the Change Advisory Board (CAB) meeting
  • Work on standard and ad-hoc threats providing InfoSec risk assessment as needed
  • Conduct Risk Assessment on notified threats and/ or vulnerabilities received from (Cyber Security, CBE, Vendors)
  • Engage in new bank’s projects to identify, assess, and evaluate the inherent InfoSec Risk
  • Participate in updating the annual risk policy
  • Report to the Team Leader / Associate / Manager the challenges, business issues, breached SLAs, and internal team concerns
  • Ensure adhering to policies and procedures in order to guarantee that the bank's business in conducted in compliance with Local Laws, CBE, the bank's Rules and Regulations, as well as, International Standards
  • Ensure the correct functioning and implementation of Permanent Supervision system, compliance, money laundering and workplace success guidelines whenever & wherever possible

Requirements:

  • Bachelor's Degree in Computer Science or Electronics & Communication Engineering or a related field from a reputable university
  • Minimum 4 years of experience for the Senior Analyst and 2 years of experience for the Analyst in the banking sector and information security field, including the following background: Risk assessment, identification and mitigation
  • Security controls, security baseline, technology best practices
  • Has an integration knowledge across different security technologies and systems
  • Security control enforcement, measure of effectiveness and proposing compensating controls
  • CBE regulations

Additional Information:

Job Posted:
March 05, 2026

Icon
Ethics HR - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for InfoSec Risk Senior Analyst / Analyst

IT Business Senior Analyst

The IT Business Senior Analyst is an intermediate-level position responsible for...
Location
Location
India , Pune; Chennai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5 – 8 years of relevant experience as a business\process analysis in consumer\retail\personal banking domain
  • Proficient in at least two or more of the banking products such as Lending, Deposits, Payments, CASA, customer communication\management etc
  • Hands on end-to-end implementation experience in PDLC\SDLC using Agile\Hybrid agile methodology
  • Should have ability to understand business requirements and convert them into Individual shippable components, Epics, user story and technical solution documents
  • Good analytical, communication and problem-solving skills
  • Working Knowledge on workflow management tools like JIRA \ Confluence
  • Intermediate/advanced Microsoft Office Suite skills
  • Knowledge of applicable business systems and industry standards
  • Proven ability to work independently and in a team with understanding of how collaboration accomplishes objectives
  • Should be self-motivated individual with an ability to multitask and work under pressure to meet tight deadlines
Job Responsibility
Job Responsibility
  • Requirement Gathering: Understand & define high level system scope and project objective
  • Performing Impact analysis, technical feasibility assessment, Solution analysis to determine feasibility, systems impacted and dollar value of the project
  • Co-ordination and Stakeholder management: Required to co-ordinate with different stakeholders such as business operations, technology development, testing, technical project manager, Demand and Infosec teams
  • Requirement elicitation & classification: Clearly define and document scope and system requirements, break them to Epic, User story, functional specs or any sequence or flow diagrams as needed part of solution documentation
  • Should be able to clearly justify on accepted requirements from the aspects of needs and wants, practical or improbable requirements etc
  • Requirement communication: Should articulate the requirements to different teams without any ambiguity with clear justification of the requirement through acceptance criteria
  • Should prepare reports, metrics and presentations as required to present business and technology management
  • Clearly Identify risk and consider business implications of the technical solution changes
  • Has the ability to operate with a limited level or no direct supervision
  • Acts as SME to senior stakeholders and /or other team members
  • Fulltime
Read More
Arrow Right

Compliance Analyst

insightsoftware is seeking a detail-oriented and proactive Compliance Analyst to...
Location
Location
United States , Remote
Salary
Salary:
Not provided
insightsoftware.com Logo
insightsoftware
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in information security, Cybersecurity, Computer Science, Risk Management, Legal Studies, Business Administration, or related field
  • Minimum 3+ years of experience in compliance program management, risk management, or information security roles, preferably in regulated industries or technology companies
  • Demonstrated experience responding to third-party risk assessments, security audits, customer security questionnaires, RFPs, and compliance due diligence requests
  • Working knowledge of regulatory frameworks and standards (e.g., ISO 27001, SOC 2 (Type II), NIST, FedRAMP, CMMC, PCI DSS, GDPR, CCPA), trade control regulations (EAR, ITAR), anti-bribery/corruption laws (FCPA, UK Bribery Act), and data privacy principles
  • A strong knowledge of at least one regulatory framework governing matters pertaining to data privacy, cybersecurity, trade compliance, or third-party risk management
  • Experience with third-party screening tools and vendor risk management platforms
  • Familiarity with GRC or data protection management platforms (e.g., OneTrust, ServiceNowMetricStream)
Job Responsibility
Job Responsibility
  • Support the development, implementation, and maintenance of a global compliance program, including trade compliance, anti-bribery/corruption, anti-trust, and business ethics
  • Conduct secondary screening of third parties (vendors, partners, customers) , and assess potential matches against government watchlists of denied, debarred, sanctioned, or restricted parties to ensure compliance with applicable trade compliance, export control and sanctions regulations (e.g., U.S. Department of the Treasury Office of Foreign Assets Control ("OFAC"), U.S. Department of Commerce Bureau of Industry and Security ("BIS"), U.K. Office of Financial Sanctions Implementation ("OFSI"), European Union, and United Nations)
  • Assist with export classification determinations and licensing requirements for software products and services, including evaluation of Export Control Classification Numbers ("ECCNs")
  • Support the company's compliance with applicable data protection regulatory frameworks (e.g., GDPR, CCPA)
  • Support the Corporate Counsel, Data Privacy, AI, Cybersecurity with data protection initiatives and obligations including data mapping exercises, processing activity records, and privacy impact assessments, and coordinate responses to data subject access requests ("DSARs") and privacy-related inquiries
  • Support privacy management tools and platforms for consent management and privacy workflow automation
  • Partner with company counsel, InfoSec, and other stakeholders with compliance audits, data privacy questionnaires, and third-party risk assessment processes including vendor due diligence and ongoing monitoring
  • Support risk and control self-assessments ("RCSA"), audit management, and remediation tracking
  • Collaborate with stakeholders including the Chief Information Security Officer ("CISO") and the team to quantify, monitor, and report on security and compliance performance
  • Maintain GRC platforms (e.g., ServiceNow, Archer, MetricStream) to track compliance activities, risks, and controls
Read More
Arrow Right

IT Business Lead Analyst

The IT Business Lead Analyst is a senior-level position responsible responsible ...
Location
Location
India , Pune; Chennai
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8 – 12 years of relevant experience as a business\process analysis in consumer\retail\personal banking domain
  • Proficient in at least two or more of the banking products such as Lending, Deposits, Payments, CASA, customer communication\management etc
  • Hands on end-to-end implementation experience in PDLC\SDLC using Agile\Hybrid agile methodology
  • Should have ability to understand business requirements and convert them into Individual shippable components, Epics, user story and technical solution documents
  • Good analytical, communication and problem-solving skills
  • Working Knowledge on workflow management tools like JIRA \ Confluence
  • Proficiency in MS Office (Word, Excel, Visio, PowerPoint) with extensive experience using Excel for data analysis
  • Knowledge of applicable business systems and industry standards
  • Proven ability to work independently and in a team with understanding of how collaboration accomplishes objectives
  • Should be self-motivated individual with an ability to multitask and work under pressure to meet tight deadlines
Job Responsibility
Job Responsibility
  • Requirement Gathering: Understand & define high level system scope and project objective
  • Performing Impact analysis, technical feasibility assessment, Solution analysis to determine feasibility, systems impacted and dollar value of the project
  • Co-ordination and Stakeholder management: Required to co-ordinate with different stakeholders such as business operations, technology development, testing, technical project manager, Demand and Infosec teams
  • Requirement elicitation & classification: Clearly define and document scope and system requirements, break them to Epic, User story, functional specs or any sequence or flow diagrams as needed part of solution documentation
  • Should be able to clearly justify on accepted requirements from the aspects of needs and wants, practical or improbable requirements etc
  • Requirement communication: Should articulate the requirements to different teams without any ambiguity with clear justification of the requirement through acceptance criteria
  • Should prepare reports, metrics and presentations as required to present business and technology management
  • Clearly Identify risk and consider business implications of the technical solution changes
  • Has the ability to operate with a limited or no direct supervision
  • Acts as SME to senior stakeholders and /or other team members
  • Fulltime
Read More
Arrow Right
New

InfoSec Compliance Senior Analyst / Analyst

Assist in achieving adequate information security control levels across the bank...
Location
Location
Salary
Salary:
Not provided
Ethics HR
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in Computer Science or Electronics & Communication Engineering or a related field from a reputable university
  • Minimum 4 years of technical & functional experience in Information Security field for the Senior Analyst
  • Minimum 2 years of technical & functional experience in Information Security field for the Analyst
  • Analytical, self-motivated, cooperative & proactive
  • Excellent interpersonal, leadership and directing skills
  • Excellent communication & computer skills
  • Strong understanding of banking operations
  • Analytical mind-set with ability to grasp new concepts and diverse aspects of bank and risk operations
  • Fluency in Arabic and English written/spoken
Job Responsibility
Job Responsibility
  • Assist in achieving adequate information security control levels across the bank's information assets
  • Ensure clear understanding to information security controls necessary to remediate identified risks and follow up remediation with the concerned business lines
  • Assist in implementing PCI-DSS controls allowing for annual re-certification by coordinating with IT and the concerned Business lines
  • Follow up on all PCI-DSS activities to be delivered on time & reviewed by InfoSec Compliance Team Leader and validated by InfoSec Compliance Manager/Associate before delivering to the QSA
  • Ensure clear understanding for information security controls necessary to fulfil compliance and regulatory requirements (Swift, CBE, PCI-DSS, etc.) to ensure an acceptable level of security maturity across the bank
  • Follow up on all information security policies and security controls related to different standards are properly implemented before reviewing by InfoSec Compliance Team Leader & validating by InfoSec Compliance Manager/Associate
  • Follow up on the effectiveness of applied security controls and share knowledge with Information Security Governance Team of future suggested enhancements and optimization
  • Coordinate with Information Security Team in raising non-compliance and risk of lack of security controls
  • Follow up on breaches SLA’s and non-compliances & notify InfoSec Compliance Team Leader to be reported to InfoSec Compliance Manager/Associate & Cyber Security Team to consider in the watch list
  • Attends project design work shops and ensure that the security architecture standards are followed and considered
Read More
Arrow Right

Threat Intelligence Analyst

Threat Intelligence Analyst - initial 3-6 month contract. We're seeking a highly...
Location
Location
United Kingdom , Portsmouth or London
Salary
Salary:
Not provided
triarecruitment.com Logo
TRIA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years' experience in Threat Intelligence, SOC or Incident Response
  • Strong working knowledge of MITRE ATT&CK and threat actor lifecycle analysis
  • Hands-on experience with threat intelligence platforms such as MISP, Recorded Future, Anomali or similar
  • Strong experience with Microsoft security tooling, ideally Sentinel and Defender
  • Proficiency in KQL and working knowledge of Python for automation and enrichment
  • Experience integrating intelligence into SIEM, EDR/XDR, and cloud security platforms (Microsoft, AWS, CrowdStrike, etc.)
  • Deep understanding of the UK cyber threat landscape, particularly critical national infrastructure and public sector threats
  • Comfortable operating as a sole senior threat intelligence specialist while collaborating across SOC and InfoSec teams
Job Responsibility
Job Responsibility
  • Lead threat actor tracking and attribution, focusing on APTs, ransomware, supply chain attacks and UK-relevant campaigns
  • Maintain adversary profiles using MITRE ATT&CK, Diamond Model and sector-specific threat frameworks
  • Correlate internal security telemetry with external intelligence feeds (e.g. MISP, Recorded Future, ISACs, Microsoft TI)
  • Operationalise STIX/TAXII feeds and enrich IOC/IOA pipelines for SOC and Incident Response teams
  • Translate threat intelligence into actionable detections, working with engineers on KQL/SPL queries and proactive threat hunts
  • Produce regular threat reports and briefings for SOC leadership, CISO and senior stakeholders, including board-level risk narratives
  • Manage and oversee a third-party cyber threat intelligence provider, ensuring quality, relevance and value
  • Engage with UK threat-sharing communities and maintain internal threat intelligence documentation and playbooks
  • Fulltime
Read More
Arrow Right

Senior Information Security Analyst

We are seeking a highly skilled and technically strong (Senior) Information Secu...
Location
Location
Germany , Munich; Berlin
Salary
Salary:
Not provided
hawk.ai Logo
Hawk
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of hands-on experience in Information Security, IT Security, or System Administration within a B2B tech or SaaS environment
  • Strong technical competence across multiple operating systems (macOS, Windows, Linux) including admin-level experience
  • Experience with identity and access management tools (e.g., JumpCloud, Okta), MDM solutions, and enterprise security platforms
  • Solid understanding of IT security fundamentals, including authentication, endpoint security, encryption, and network basics
  • Familiarity with ISO 27001 or ISMS operations
  • experience supporting audits or certification maintenance
  • Basic security certifications (e.g., CompTIA Security+, CEH) are highly desirable
  • Fluent German and English — mandatory due to regular customer-facing security discussions
  • Ability to articulate complex technical issues clearly to diverse audiences (engineers, customers, auditors, leadership)
  • Strong documentation skills with attention to accuracy and clarity
Job Responsibility
Job Responsibility
  • Respond to security questionnaires, RFPs, and due-diligence requests in collaboration with Sales and Pre-Sales
  • Participate in customer calls to explain Hawk’s security posture and answer technical, compliance, and infrastructure-related questions
  • Represent Hawk’s security capabilities clearly and confidently to regulated financial institutions
  • Support the ongoing operation and improvement of Hawk’s ISMS, ensuring alignment with ISO 27001 controls and underlying processes
  • Assist in internal audits, evidence gathering, and risk assessments
  • Help maintain certification readiness by driving documentation, process adherence, and corrective actions
  • Provide operational support for core IT & security tools, including JumpCloud (SSO/IdP), MDM, endpoint policies, and access management workflows
  • Support the roadmap toward centralized, secure workstation management — monitoring, controlling, and updating all endpoints across macOS, Windows, and Linux
  • Assist in evaluating and managing security-related 3rd party SaaS tools used across the business
  • Monitor the security posture of Hawk’s corporate tools, infrastructure, and integrations
  • Fulltime
Read More
Arrow Right
New

DotNet Developer

Location
Location
India , Mumbai
Salary
Salary:
Not provided
NeoQuant Solutions Pvt Ltd
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in developing Web API using C#, .Net6 and Entity framework
  • Extensive NodeJS/Angular experience building web applications
  • Hands-on development experience with HTML, CSS, JavaScript, and frontend frameworks like React Js
  • Experience with Source Code management tools like Git is required
  • Hands-on development experience in writing SQL queries and database management with Postgres or MySQL
  • Experience in working with Kafka services and Message Queue
  • Experience in Agile development methods
  • Use of tools such as Eclipse, Postman, SoapUI, .Net (or any other equivalent)
  • Overall Understanding of web development lifecycle including frontend and backend using modern frameworks
  • Troubleshooting and resolution of technical problems and issues, on web applications in a production environment
Job Responsibility
Job Responsibility
  • Maintaining and developing web applications and the REST API’s
  • Building and consuming APIs – Restful and GraphQL
  • Development and use of APIs plus associated data modelling to build reusable, maintainable APIs aligning to our data strategy
  • Fulltime
Read More
Arrow Right
New

Microsoft Dynamics 365 Developer

We are seeking a skilled and experienced Microsoft Dynamics 365 Developer to joi...
Location
Location
India , Greater Noida
Salary
Salary:
Not provided
InnoAge-Technologies PVT. LTD.
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in Microsoft Dynamics 365 development and implementation
  • Proficiency in Dynamics 365 (CRM and ERP) modules
  • Strong experience with C#, .NET, JavaScript, SQL Server, and related technologies
  • Experience with Power Platform (PowerApps, Power BI, Power Automate) is a plus
  • Expertise in integrating Dynamics 365 with third-party systems such as live marketplaces, websites, WMS, EDI, and APIs
  • Experience with Azure services and API management
  • Strong problem-solving skills and the ability to analyze and address complex business requirements
  • Excellent verbal and written communication skills, with the ability to explain technical concepts to non-technical stakeholders
  • Experience with Agile/Scrum methodologies and project management tools
  • Microsoft Dynamics 365 certifications are highly desirable
Job Responsibility
Job Responsibility
  • Lead the design, development, and deployment of Microsoft Dynamics 365 solutions
  • Assist in the integration of Dynamics 365 with live marketplaces, websites, WMS, EDI, and various APIs
  • Customize Dynamics 365 modules to meet specific business requirements
  • Provide ongoing support and maintenance for existing Dynamics 365 implementations
  • Work closely with cross-functional teams including IT, operations, and sales to ensure successful implementation and integration
  • Create and maintain comprehensive documentation for all Dynamics 365 projects and integrations
  • Identify and resolve issues related to Dynamics 365 and its integrations promptly
  • Provide training and support to end-users on Dynamics 365 functionalities and best practices
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy