Information Security Analyst 2
Role details
Job location
Tech stack
Job description
Our Financial Services Industry Client is seeking an Information Security Analyst 2 to support enterprise cybersecurity, information protection, governance, risk management, compliance, and security automation initiatives. This role offers the opportunity to work alongside cybersecurity, risk, engineering, and business teams to help improve security posture, reduce risk, and ensure adherence to enterprise information security policies and standards., * Support enterprise information security governance, risk, and compliance (GRC) activities.
- Assist with remediation and tracking of security assessment findings, audit observations, and control gaps.
- Participate in security control testing, risk assessments, and compliance reviews.
- Analyze information security metrics and develop reports that support risk management and decision making.
- Build and maintain dashboards, reports, and automation solutions that improve cybersecurity visibility.
- Query, analyze, and transform data from multiple sources to identify trends and support security initiatives.
- Collaborate with cybersecurity, engineering, audit, compliance, risk, and business teams to address security challenges.
- Maintain accurate, audit-ready documentation, evidence, and reporting artifacts.
- Track governance and remediation activities through workflow management tools.
- Support continuous process improvement efforts through automation and analytics.
- Communicate security risks, findings, and recommendations to both technical and non-technical stakeholders., * Cybersecurity Risk Management
- Governance, Risk & Compliance (GRC)
- Information Protection
- Data Security
- Security Assessments
- Control Testing
- IT Audit
- Regulatory Compliance
- Data Privacy
- Security Reporting and Analytics
- Security Automation
- Risk and Control Management
Requirements
The ideal candidate combines strong analytical abilities, cybersecurity knowledge, attention to detail, and the ability to translate technical findings into meaningful business insights., * 2+ years of experience in Information Security, Cybersecurity, IT Risk, Compliance, Governance, or a related field.
- Experience supporting security assessments, compliance reviews, audits, risk management, or security remediation activities.
- Strong analytical and problem-solving skills.
- Experience working within large enterprise or highly regulated environments.
- Excellent written and verbal communication skills.
- Strong attention to detail with the ability to manage multiple priorities independently.
- Experience creating documentation, reports, and executive-level presentations.
Technical Skills Required
- Microsoft Excel
- Microsoft PowerPoint
- Jira or similar workflow management tools
- Data analysis and reporting experience
- Experience working with enterprise security metrics and reporting
Preferred
- Python
- SQL
- REST APIs
- Power BI
- Power Automate
- Power Apps
- Microsoft Lists
- ServiceNow
- Confluence, * Information protection and data security principles
- Encryption technologies and key management concepts
- Regulatory and audit requirements
- Security controls and risk frameworks
- Cybersecurity governance best practices
- Enterprise technology environments
Education & Certifications
Bachelor's degree in Information Security, Cybersecurity, Information Systems, Computer Science, Business, or a related field preferred.
Relevant certifications are a plus, including:
- Security+
- CISSP
- CISM
- CRISC
- CISA
- CGRC
- Cloud Security Certifications (AWS, Azure, Google Cloud Platform)
What Makes a Strong Candidate
- Experience supporting cybersecurity governance or risk programs within large organizations.
- Strong technical curiosity with the ability to learn new technologies quickly.
- Comfortable working with both security and business stakeholders.
- Able to balance operational execution with strategic thinking.
- Demonstrated success improving processes through automation, reporting, or analytics.
- Highly organized with exceptional documentation and communication skills.