Information Security, Technology & Resiliency Risk Analyst Sr
Job in
New York, New York County, New York, 10261, USA
Listed on 2026-02-20
Listing for:
Flagstar Bank
Full Time
position Listed on 2026-02-20
Job specializations:
-
IT/Tech
Cybersecurity, Information Security, IT Business Analyst, Data Security
Job Description & How to Apply Below
Information Security, Technology & Resiliency Risk Analyst Sr page is loaded## Information Security, Technology & Resiliency Risk Analyst Sr locations:
New York/1400 Broadway/114025time type:
Full time posted on:
Posted Todayjob requisition :
19269
** Position Title
** Information Security, Technology & Resiliency Risk Analyst Sr
** Location
* * New York, NY 10018
** Job Summary
** pay Range: 71-115K As a key member of the second line of defense, the Information Security, Technology, and Business Resiliency Senior Analyst will support the Technology, Cyber, Third Party & Resilience Risk Management team to fulfill the Bank’s Second Line of Defense (“2
LoD”) mandate to identify, measure, monitor, and manage Information Security, Technology, and Business Resilience Risk profile of the Bank, ensuring risk exposure remains within the Bank’s established risk appetite. The candidate will be expected to demonstrate independent, effective, outcome-based oversight and challenge of the First Line of Defense (“1
LoD”) functions within the Enterprise Technology and Operations Services Department, including CISO and Enterprise Resilience teams, as well as throughout the Bank’s business divisions.
Pay Range:
Local Minimum Wage - $0.00 - $0.00
*
* Job Responsibilities:
**** JOB RESPONSIBILITIES
*** Provide independent, proactive oversight and challenge of Information Technology (including Cloud Computing), Cybersecurity, and Business Resilience capabilities at the Bank through execution of risk framework elements including RCSA, control assessment, issue management, incident reviews, targeted deep dives, key risk indicators and through embedded monitoring of relevant business functions and programs.
* Provide feedback to senior management in both first and second line of defense on risks, controls, testing, root cause analysis, remediation and reporting
* Assess and report on the Information Security and Resilience profile based on quantitative and qualitative risk measures including assessment of effectiveness of planned remediation/mitigation of excess risk exposure and compliance with key regulatory requirements.
** ADDITIONAL
ACCOUNTABILITIES
*** Performs special projects, and additional duties and responsibilities as required.
* Consistently adheres to regulatory and compliance policies and standards linked to the job as listed and complete required compliance trainings. Accountable to maintain compliance with applicable federal, state and local laws and regulations.
** JOB REQUIREMENTS
***
* Required Qualifications:
*** Education level required:
High School / High School Equivalency (GED, HiSET, TASC) / Foreign Equivalent.
* Business Management, Information Technology, Cybersecurity, or relevant field.
* Minimum experience required: 4+ years in an information technology, cybersecurity, business continuity, risk, audit, and/or compliance role
*
* Preferred Qualifications:
*** Education level:
Undergraduate Degree (4 years or equivalent)
* 2-3 years in a related function at a financial institution preferred
* Applicable technical, audit, enterprise risk, and/or compliance certifications and/or experience (e.g. CISSP, CISA, CRISC, etc.).
* Working knowledge of a GRC Risk Tool.
* Working knowledge of Microsoft Office tools, including excel, word, PowerPoint and Teams.
** Job
Competencies:
*** Knowledge of core IS and cybersecurity controls (e.g. IAM, DLP, vulnerability management, security threat detection and response, networks, etc.).
* Exposure to technology platforms and processes (e.g. change management, IT asset management, system availability monitoring, Cloud computing technologies, Dev Sec Ops , etc.
* Knowledge of business continuity and disaster recovery frameworks and processes (event scenarios, business impact analysis, recovery strategies, third party and supply chain implications, business process interdependency analysis, defining business work arounds, etc..).
* Strong knowledge of concepts and applicable interagency regulatory guidance (e.g. FFIEC).
* Knowledge of non-financial risk frameworks.
* Strong analytical skills with the ability to interpret data, draw conclusions, and formulate recommendations.
* Strong verbal and…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×