SUMMARY
Information Security Analyst will be responsible for developing and implementing Information Security program, policy and relevant security standards Information Security Analyst will design proper security controls to protect the bank’s informational assets against confidentiality, integrity, and availability loss. Monitor, track and report all control weaknesses and violations for security policy and standards.
Information Security Analyst also responsible for designing and implementing security controls and framework for infrastructure, databases, internal applications, vendor and third-party applications and cloud solutions.
JOB FUNCTIONS/DUTIES AND RESPONSIBILITIES
1. Identify & Prioritize Automation Opportunities-Partner with business units (Ops, Risk, Compliance, IT) to identify high-impact, low-risk automation use cases
2. Evaluate processes for AI suitability (data sensitivity, repeatability, control impact) Build and deploy automation workflows using tools (e.g., RPA, low-code platforms, LLM orchestration tools like n8n, Power Automate)
3. Integrate AI solutions with enterprise systems (ServiceNow, IAM tools, data platforms)
4. Ensure all AI/automation use cases align with internal policies and frameworks (e.g., NIST AI Risk Management Framework, NIST Cybersecurity Framework, FFIEC expectations)
5. Conduct risk assessments for AI use cases (data leakage, model bias, third-party risk)
6. Classify and validate data used in automation pipelines (PII, confidential, restricted)
7. Ensure encryption, masking, and access controls are enforced within AI workflows
8. Educate business users on safe and effective use of AI tools
9. Develop guidelines for prompt usage, data input restrictions, and acceptable use
10. Develop dashboards/KRIs showing automation impact (cost savings, time reduction, risk reduction)
11. Provide periodic updates to senior management on AI adoption and associated risks
12. Review of compliance with the information security policy and standards.
13. Provides periodic reporting on information security issues and gaps
14. Performs all Information Security related functions as assigned by ISO
15. Provide high quality work by ensuring accuracy and seeking to continuously improve Information Security processes by embracing new and better ways of doing things..
REQUIREMENTS
1. Bachelor’s degree or equivalent.
2. Strong understanding of IP Network, Microsoft Windows, AI LLMs, AI bot, MS Copilot
3. Good knowledge of Cyber Risk and Technology Risk Controls, Third Party Vendor Risk.
4. Microsoft SharePoint, GRC Tool, NIST, ISO framework
5. Basic knowledge of firewalls, switches, routers and other network technologies.
6. 1 to 3 years’ experience in Information Security field
7. Strong skills in Vendor/Third-party security controls, security auditing tools
8. Strong project management skills, technical writing and presentation skills
9. Office 365 Tools, Excel, PowerPoint, Teams
10. CEH, Security+ type of certifications are plus
PHYSICAL DEMANDS
SUMMARY
Information Security Analyst will be responsible for developing and implementing Information Security program, policy and relevant security standards Information Security Analyst will design proper security controls to protect the bank’s informational assets against confidentiality, integrity, and availability loss. Monitor, track and report all control weaknesses and violations for security policy and standards.
Information Security Analyst also responsible for designing and implementing security controls and framework for infrastructure, databases, internal applications, vendor and third-party applications and cloud solutions.
JOB FUNCTIONS/DUTIES AND RESPONSIBILITIES
1. Identify & Prioritize Automation Opportunities-Partner with business units (Ops, Risk, Compliance, IT) to identify high-impact, low-risk automation use cases
2. Evaluate processes for AI suitability (data sensitivity, repeatability, control impact) Build and deploy automation workflows using tools (e.g., RPA, low-code platforms, LLM orchestration tools like n8n, Power Automate)
3. Integrate AI solutions with enterprise systems (ServiceNow, IAM tools, data platforms)
4. Ensure all AI/automation use cases align with internal policies and frameworks (e.g., NIST AI Risk Management Framework, NIST Cybersecurity Framework, FFIEC expectations)
5. Conduct risk assessments for AI use cases (data leakage, model bias, third-party risk)
6. Classify and validate data used in automation pipelines (PII, confidential, restricted)
7. Ensure encryption, masking, and access controls are enforced within AI workflows
8. Educate business users on safe and effective use of AI tools
9. Develop guidelines for prompt usage, data input restrictions, and acceptable use
10. Develop dashboards/KRIs showing automation impact (cost savings, time reduction, risk reduction)
11. Provide periodic updates to senior management on AI adoption and associated risks
12. Review of compliance with the information security policy and standards.
13. Provides periodic reporting on information security issues and gaps
14. Performs all Information Security related functions as assigned by ISO
15. Provide high quality work by ensuring accuracy and seeking to continuously improve Information Security processes by embracing new and better ways of doing things..
REQUIREMENTS
1. Bachelor’s degree or equivalent.
2. Strong understanding of IP Network, Microsoft Windows, AI LLMs, AI bot, MS Copilot
3. Good knowledge of Cyber Risk and Technology Risk Controls, Third Party Vendor Risk.
4. Microsoft SharePoint, GRC Tool, NIST, ISO framework
5. Basic knowledge of firewalls, switches, routers and other network technologies.
6. 1 to 3 years’ experience in Information Security field
7. Strong skills in Vendor/Third-party security controls, security auditing tools
8. Strong project management skills, technical writing and presentation skills
9. Office 365 Tools, Excel, PowerPoint, Teams
10. CEH, Security+ type of certifications are plus
PHYSICAL DEMANDS
Never miss an opportunity! Create an alert based on the job you applied for.
