Security Analyst

Overview

Primary

Job Title:

Security Analyst

Alternate / Related Job Titles: Cyber Security Risk Analyst; IT Risk & Controls Analyst;
Cybersecurity Risk Management Consultant; IT Security Risk Lead

Location & Onsite Flexibility: New York City, NY — Hybrid (Onsite 3 days/week at 250 Vesey Street, Floors 23-24)

Contract Details:
Position Type: Contract •
Contract Duration: 6 months •
Start: As Soon As Possible •
Pay Rate: $75-80 per hour •
Schedule: Monday-Friday, 9:00 AM - 5:00 PM (37.5 hours/week; possible overtime) •
Number of Openings: 1 •
Reason for Opening: Backfill •
Extension/Conversion: Possibility of extension and conversion to FTE

Our client, a leading Canadian bank, is seeking a highly experienced Security Analyst to support the Global Risk Management - Cyber Security team
. This role focuses on 2nd line Review & Challenge activities related to cybersecurity and IT risk remediation, ensuring effective closure of issues and successful Internal Audit validation. The Security Analyst will act as a subject matter expert across the end-to-end Issue Management / MRA lifecycle
, partnering closely with 1st and 3rd line stakeholders to challenge remediation actions, enhance control effectiveness, and support risk governance objectives. This is a high-visibility role offering broad exposure across cybersecurity, IT risk, and enterprise controls within a global financial institution.

• Execute 2nd line cyber security and IT risk management Review & Challenge
  , including methodology review and issue testing
• Serve as a Review & Challenge lead across workstream and enterprise-level tollgate panels
• Partner with 1st line domain experts to understand remediation design and implementation addressing MRA/Issue concerns
• Challenge issue owners on remediation effectiveness and provide feedback on control improvements, including control automation opportunities
• Liaise with 1st and 3rd line teams to align on remediation actions and audit expectations
• Support successful Internal Audit validation of remediated issues
• Engage with stakeholders to provide ongoing guidance, support, and feedback on remediation progress
• Contribute to continuous improvement of risk and control practices across cybersecurity and IT

• Required Experience
  : 8+ years of experience as an IT Security Analyst
• 5+ years of experience creating management-level reporting
• 5+ years of experience working in an Issues Management / MRA environment

• Required Technical Skills
  :
  Strong proficiency in Microsoft Excel and Power Point ; solid understanding of cybersecurity risk, IT controls, and remediation frameworks

• Required Soft Skills
  :
  Strong written communication skills; ability to perform effectively in a fast-paced, high-stakes environment
  ; strong stakeholder engagement and collaboration skills

• CISSP (Cyber Security)
• CCSP (Cloud Security)
• Service Now Certification
• Experience with GRC tools and/or Service Now

• Bachelor’s degree in a related field required

Candidate Value Proposition: The selected candidate will gain exposure to a wide range of cybersecurity, IT risk, and enterprise control areas within a global environment, working closely with senior stakeholders and influencing high-impact remediation outcomes.

Our client is a leading Canadian bank offering a comprehensive range of financial services. The organization is committed to employee development, innovation, and performance-based rewards, providing an environment where professionals can build meaningful, long-term careers.

GTT is a minority-owned staffing firm and a subsidiary of Chenega Corporation, a Native American-owned company based in Alaska. As an economically disadvantaged business, we value diverse and inclusive workplaces. Our clients include Fortune 500 organizations across banking, insurance, financial services, technology, life sciences, biotech, utilities, and retail throughout the U.S. and Canada.

Job Number: 25-29720 #gttjobs