Be Part Of A High-Performing Team

This opportunity sits within the cybersecurity and risk organization of a globally recognized banking institution known for its strong presence in capital markets, corporate banking, and financial technology innovation. The team operates in a highly regulated environment where security, compliance, and operational resilience are essential to the organization’s success.

The group focuses on protecting critical information assets while enabling secure digital transformation across cloud and SaaS platforms. Working alongside experienced security engineers, risk professionals, and technology leaders, this role contributes directly to improving security governance, strengthening vendor risk oversight, and ensuring compliance with global regulatory expectations. The environment is collaborative, fast-paced, and focused on continuous improvement of security practices.

What's In Store For You

• Engagement: W2 only (no C2C/1099)
• Opportunity to build deep expertise in security governance, risk, and compliance within a major financial services environment
• Exposure to enterprise cloud platforms, SaaS security architecture, and third-party risk assessments
• Collaboration with cross-functional teams across technology, risk, compliance, and business units
• Hands-on involvement in strengthening enterprise information security practices and regulatory compliance

How You Will Make An Impact

• Conduct information security risk assessments for SaaS applications, cloud services, and technology initiatives
• Review third-party security documentation including SOC 1/SOC 2 reports, ISO certifications, penetration test summaries, and security questionnaires
• Evaluate SaaS architectures and data flows with focus on encryption, identity and access management, monitoring, and logging controls
• Identify security control gaps and determine inherent and residual risks across technology solutions
• Partner with technical and business stakeholders to define mitigation strategies or compensating controls
• Translate technical risks into clear, business-focused language to support decision making
• Track remediation activities and validate risk mitigation efforts through governance processes
• Support continuous improvement of risk assessment methodologies, templates, and reporting processes
• Collaborate with IT, compliance, and risk teams to align security practices with regulatory requirements

Are you an experienced information security risk professional ready to make an impact?

• 2–3 years of experience in information security, cybersecurity risk, or IT risk management within banking, financial services, or another regulated industry
• Working knowledge of cloud service platforms such as AWS, Microsoft Azure, or Google Cloud
• Foundational understanding of information security principles including risk assessment, security controls, and governance frameworks
• Familiarity with regulatory and security frameworks such as NIST, NYDFS Cybersecurity Regulation, GLBA, ISO 27001, or NIST CSF
• Understanding of enterprise technology environments including operating systems, databases, and identity and access management
• Ability to analyze SaaS or cloud application architectures and evaluate security risks
• Strong written and verbal communication skills with the ability to explain complex security risks clearly
• Comfortable collaborating with both technical and business stakeholders
• Highly organized with the ability to manage multiple risk assessments and priorities simultaneously
• Experience using tools such as Microsoft Excel, Jira, or similar systems for tracking risk data

Preferred Qualifications

• Experience supporting vendor or third-party risk management programs
• Familiarity with GRC platforms or security risk management tools
• Experience reviewing and interpreting SOC reports
• Security certifications or certifications in progress such as Security+, Cloud+, AWS, Azure, GCP, CCSP, or CRISC

#dice