Get C2C/W2 Jobs & hotlist update

Top 5000+ USA Jobs, Hotlist, C2C Jobs & vendors lists

US Jobs

Business Analyst /Security –(NIST, GLBA”) -Banking – /NYC or Troy, MI (hybrid) -Long term

Hello Team,

I hope you're doing well.

This is Manish from Marencor, We have an exciting opportunity with our client. Please review the job description below and let me know if

you're interested. Please share your updated resume

ONLY GC OR USC

Title: Business Analyst /Security –(NIST, GLBA”) -Banking

Location: Hybrid/NYC or Troy, MI 

Duration: 1 year+

Interview: Video

   **Candidates must have Long Projects/Good Tenure, Excellent communication skills and a state-issued ID (Not Bills) showing they are Local.

 

Candidates must be LOCAL to the Hybrid/NYC or Troy, MI area and COMMUTE into the office THREE TIMES A WEEK.

NO RELOCATION CONSIDERED.

*** PLEASE only send me candidates in the Hybrid/NYC or Troy, MI area. Open to hybrid.

  We are seeking a highly motivated Business Analyst with specialized experience in risk and security to support business operations and projects within a banking or capital markets environment. The ideal candidate will possess a strong understanding of NIST frameworks, GLBA, controls, and vulnerabilities in a financial services context. Additionally, experience with Power BI or other data visualization tools is a plus, as this role will involve transforming complex risk and security data into actionable insights for stakeholders. As a Business Analyst, you will work closely with cross-functional teams to assess and improve business processes, enhance security practices, and ensure regulatory compliance across risk management initiatives.

 

Key Responsibilities:

  • Risk & Security Analysis:
    • Conduct thorough risk assessments and security gap analyses to identify vulnerabilities and weaknesses in current business processes, security frameworks, and technology platforms within banking and capital markets.
    • Work closely with risk, compliance, and IT teams to define security controls, implement NIST and GLBA compliance, and manage vulnerabilities within enterprise systems.
    • Gather business requirements related to security, controls, and compliance; assess the impact on operations and provide actionable recommendations.
    • Collaborate with business stakeholders to identify and prioritize risk-related requirements, ensuring they align with organizational security policies and compliance standards.
    • Analyze and assess the effectiveness of existing security measures and recommend improvements based on industry standards and best practices (e.g., NIST, GLBA, SOC 2, etc.).
  • Business Requirements & Process Improvement:
    • Translate complex risk and security requirements into clear, actionable business requirements and technical specifications for implementation teams.
    • Facilitate workshops and discussions with stakeholders to gather and document detailed business requirements, focusing on security, compliance, and risk management.
    • Assess and optimize business processes, ensuring that they align with security and compliance objectives and mitigate any risk exposure.
    • Support the design and implementation of new business processes, systems, and workflows that improve security posture and ensure adherence to regulatory standards.
  • Data Analysis & Reporting:
    • Use PowerBI, dashboards, and other data visualization tools to create real-time reports, security metrics, and dashboards for senior leadership and compliance teams.
    • Develop risk reporting frameworks that provide stakeholders with insights into ongoing vulnerabilities, mitigation efforts, and compliance status.
    • Analyze security data, such as audit logs and system scans, to identify trends, potential risks, and areas for improvement in security posture.
    • Provide actionable insights based on data-driven analysis to support decision-making related to risk management and security initiatives.
  • Collaboration & Communication:
    • Work closely with key business, IT, security, and compliance stakeholders to ensure alignment between business requirements and security objectives.
    • Develop strong relationships with external auditors, regulatory bodies, and third-party vendors to ensure compliance with industry regulations (e.g., NIST, GLBA).
    • Provide regular status updates, risk assessments, and recommendations to senior leadership and cross-functional teams.
    • Ensure effective communication and collaboration between technical and non-technical teams, acting as a liaison for risk and security topics.
  • Compliance & Regulatory Adherence:
    • Ensure compliance with relevant regulatory frameworks such as NIST, GLBA, GDPR, and other data security regulations.
    • Monitor evolving regulatory changes within the banking and capital markets space and advise the business on necessary adjustments to maintain compliance.
    • Assist in preparing documentation and reports required for regulatory audits, ensuring that risk management practices and security controls meet required standards.

 

Qualifications:

  • 3+ years of experience as a Business Analyst, preferably in a banking or capital markets environment with a focus on risk and security.
  • Strong understanding of NIST (National Institute of Standards and Technology) frameworks, GLBA (Gramm-Leach-bliley Act), and other industry standards related to security and compliance.
  • Demonstrated ability to analyze risks, identify vulnerabilities, and recommend security solutions to mitigate them.
  • Proficiency with PowerBI or other data visualization tools (e.g., Tableau, QlikView) for building reports, dashboards, and visual analytics to track security and risk metrics.
  • Solid understanding of security controls and their application in business processes to ensure regulatory compliance.
  • Experience with security vulnerabilities, pen-testing, and remediation processes.
  • Strong experience in data analysis and the ability to draw actionable insights from large datasets to support decision-making.
  • Excellent communication skills, with the ability to collaborate with cross-functional teams, and present complex information clearly and concisely.
  • Experience with SQL and ability to extract and manipulate data for reporting and analysis.
  • Ability to translate technical risk and security information into business-friendly language for non-technical stakeholders.
  • Familiarity with industry compliance and regulatory frameworks, such as GDPR, SOX, PCI-DSS, or ISO 27001.

 

Preferred Qualifications:

  • Certified Information Systems Security Professional (CISSP), Certified Risk and Information Systems Control (CRISC), or similar security-related certifications.
  • Experience with cloud security (AWS, Azure) and understanding of cloud-based risk management strategies.
  • Exposure to Agile or Scrum project management methodologies.
  • Familiarity with audit processes and supporting documentation for regulatory assessments.
  • Experience with data governance and data protection strategies in a financial services environment.

 

 

 

  

Thanks and regards.

 

Manish Kumar
Sr. Talent Acquisition Executive

Marencor | Morena Global Inc.

Innovate Now, Innovate Always

 

Manish@marencor.com

1013 Centre Rd #403s, Wilmington, DE 19805, USA

ISO 27001:2022 | ISO 9001:2015 | ACA Certified

www.marencor.com

 
 
 

To unsubscribe from future emails or to update your email preferences click here

Leave a Reply

Your email address will not be published. Required fields are marked *