Track This Job
Add this job to your tracking list to:
- Monitor application status and updates
- Change status (Applied, Interview, Offer, etc.)
- Add personal notes and comments
- Set reminders for follow-ups
- Track your entire application journey
Save This Job
Add this job to your saved collection to:
- Access easily from your saved jobs dashboard
- Review job details later without searching again
- Compare with other saved opportunities
- Keep a collection of interesting positions
- Receive notifications about saved jobs before they expire
AI-Powered Job Summary
Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.
Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.
mthree is seeking a Cybersecurity Business Analyst to join a highly regarded Multinational Investment Bank and Financial Services Company.
Job Description:
Position Title: Cybersecurity Business Analyst
Location: Hyderabad/Pune/Bengaluru, India (2/3 day per week in office)
Employment Type: Full-Time
The role sits in Cybersecurity Risk and Controls’ Strategy, Team supporting Group Cybersecurity Control Owners in the effective controls management and governance. The Cybersecurity Business Analyst will work closely with various stakeholders to ensure that the cybersecurity control processes are effective, efficient, and aligned with organizational standards. This is a dynamic role that involves oversight of the control management lifecycle and providing support during regulatory assessments (internal and external).
YOUR RESPONSIBILITIES
- Engage with Cyber, business and functional stakeholders to identify business requirements for control lifecycle management with a focus on regulatory assessments, and provide support during the analysis of the bank’s compliance with new regulations
- Support internal and external assessments on behalf of Cybersecurity teams
- Support the build of regulatory evidence collection process and documentation
- Support the mapping of new standards and regulations to current controls applicable.
- Be able to think out of the box and propose creative solutions / improvements for the evidence collection process definition
- Apply discipline and scrutiny for collection and maintenance of evidence within the repository.
SKILLS & EXPERIENCE WE REQUIRE
Understanding of risk and control frameworks
- Experience in Control Management. This includes but is not limited to controls design and their implementation
- Familiarity with Cybersecurity risks and controls.
Technical background
- Knowledge of Information Technology, at least a generalist level with specialist area expertise welcome
- Understanding of 2LOD/ 3LOD and external bodies review or assessment methodologies would be a plus
Stakeholder management and communications skills
- Ability to connect variety of stakeholders and join the dots to ensure an effective communication channel between the involved project’s parties
- Experience within fast-moving, complex and demanding corporate environments where Information Technology or Security issues have to be handled on a large scale and with a need to multi-task whilst dealing with ambiguity and change.
Interpersonal Skills
OPTIONAL/NICE TO HAVE
- Familiarity with the industry best practices, Cybersecurity regulatory requirements for and frameworks in Information Technology is a plus
- Business/ Data analysis is a plus
- Industry certification in Risk/Technology/Security is a plus.
*******