Cyber Security Risk Analyst
Dormont Manufacturing Company
Company Federal Reserve Bank of New York When you work at the New York Fed, you have the opportunity to make an impact in our communities and across the nation. Our mission-driven, curious, and dedicated colleagues apply their diverse perspectives and unique talents to support the strength of the U.S. economy and stability of the global financial system. At the Bank, we work full-time onsite with our teams. We believe being physically together allows us to draw on our collective strengths, while recognizing that the ability to work flexibly from time to time remains important to achieving our mission. Information Security New York (ISNY) ISNY is responsible for developing, executing, and maintaining a superior information security program that promotes resiliency by identifying and mitigating cyber risks and threats through risk-based consultation, advice, and direction for controls, designs, and investments for the entire Bank. Cyber Security Assurance Department (CSA) The CSA is responsible for assessing risks associated with third‑party vendor systems, software, IoT devices, industrial control systems, technology processes, or outsourcing arrangements handling, processing, or storing Federal Reserve data. The team works directly with the business, providing guidance and managing risks. The department is also responsible for integrating security practices into DevSecOps methodology, performing application security testing, and working on security tooling integration as part of the CI/CD pipeline. Engagement and guidance to product development teams are implemented through CSA analysts being embedded in squads to provide security advice during development and by managing the Security Champion Program in the Bank. How you’ll make an impact as a Cyber Security Assurance Analyst You will work in a dynamic team environment and play an important role in helping the Federal Reserve carry out its responsibilities. The Cyber Security Risk Analyst will be responsible for risk assessments, cloud mitigations, security application testing, threat modeling, security design review, and overall information systems risk management. The role is an individual contributor who will work closely with technology squads to flawlessly deliver technological projects to the business customers. The candidate will perform risk assessments that include application security testing focusing on cloud migration workloads with specific focus on the mission‑critical systems supporting Markets operations. The position resides in the Information Security Function and reports to the Cyber Security Assurance Manager. Role’s objectives are: Perform cloud application security risk assessments. Execute assessments timely and accurately. Manage relationship with the assigned business unit. Embed within the development squad to provide timely security advice. Perform application security testing ensuring only compliant workloads move to the cloud. Support development squads in implementing security tooling in the CI/CD pipeline. The unique skill sets we’re looking for: Experience in executing assessments in the cloud and against third‑party SaaS solutions. Expert knowledge of performing risk management based on NIST 800‑53. Experience in determining vulnerability risk impact on key objectives and critical processes; ability to link risk management programs to inform critical business strategies. Experience thriving in the DevSecOps culture and working closely with developers in an agile, quick‑release environment. Demonstrated leadership experience, managing projects, strong decision‑making and execution abilities. Strong experience managing and timely resolving security findings in agile practice. Expert level application security testing skills supporting CI/CD pipeline. Experience evaluating third‑party vendors supporting bank processes with focus on data protection. Proven ability evaluating and securing Gen AI systems with internal and embedded models. Possession of or ability to obtain and maintain national security clearance, which includes U.S. citizenship when required. Salary Range $170,000k‑$230,000k Other Things to Know We believe in transparency at the New York Fed. This salary range reflects a variety of skills and experiences candidates may bring to the job. We pay individuals along this range based on their unique backgrounds. Whether you’re stretching into the job or are a more seasoned candidate, we aim to pay competitively for your contributions. This position requires possession of or the ability to obtain and maintain national security clearance, which requires U.S. citizenship. Candidates must undergo an enhanced background check and will be tested for all controlled substances prohibited by federal law, including marijuana. How we’ll support you Learning & Growing: Educational assistance, career development tools, and stretch opportunities Supporting Your Family: Parental leave, adoption assistance, backup dependent and elder care, college planning resources, and more Managing Your Health: Comprehensive insurance plans, leave policies, onsite Health & Wellness Center, and onsite Fitness Center Optimizing Your Finances: Pension plan, 401(k) with generous match, financial planning resources, and subsidized public transportation program Our culture is deeply grounded in our Touchstone Behaviors By working with us, you’ll have the opportunity to develop and demonstrate your ability to communicate authentically, collaborate inclusively, drive progress, develop others, and take ownership. These competencies shape our culture here at the Bank. They also provide a shared language for how we work together and achieve success and set clear expectations for leading with impact at every stage of your career. Apply now if you’re ready to join us in strengthening the U.S. economy together. Equal Employment Opportunity The New York Fed expects its employees to perform their duties with honesty, integrity, and impartiality, and without improper preferential treatment of any person. Accessibility We value accessibility for all candidates and are happy to provide an accommodation or assistance. Please email us at View email address on click.appcast.io and we’ll be glad to help. Disclaimer This is not necessarily an exhaustive list of all responsibilities, duties, performance standards or requirements, efforts, skills or working conditions associated with the job. While this is intended to be an accurate reflection of the current job, management reserves the right to revise the job or to require that other or different tasks be performed when circumstances change. Job Details Full time, Regular, Exempt, Information Technology Family Group, First (United States of America) EEO Statement The Federal Reserve Banks are committed to equal employment opportunity for employees and job applicants in compliance with applicable law and to an environment where employees are valued for their differences. #J-18808-Ljbffr Dormont Manufacturing Company
$170k - $230k
The Federal Reserve Bank of New York is seeking a Cyber Security Assurance Analyst to assess risks related to third-party vendors and cloud infrastructure. This role will involve performing security assessments, managing security testing, and providing guidance throughout...Suggested- ...Permanent - Full Time Location: Flexible Description The Cyber Risk & Compliance Analyst supports the cybersecurity function by ensuring accurate,... ...role acts as a coordination and assurance bridge between Security, Legal, Sales, and Business stakeholders. This is a primarily...SuggestedPermanent employmentFull timeContract workWork at officeFlexible hours
$100k - $145k
A consulting firm is seeking an Application Vulnerability & Obsolescence Analyst to manage software security for financial clients. The candidate must have at least 3 years of experience in vulnerability management, a Bachelor's degree in IT or Cybersecurity, and familiarity...Suggested- Baker Tilly Advisory Group, LP is hiring an IT Audit, Cybersecurity & Risk Senior Consultant. This role focuses on helping clients manage their technology risks and improve their business operations using in-depth industry knowledge. Candidates should have a Bachelor's...Suggested
- Dormont Manufacturing Co is seeking a Senior Analyst for Cyber Risk & Control Monitoring in New York, NY. This role focuses on improving cybersecurity... ...and over 5 years of experience in information security. You'll work collaboratively with various teams and have opportunities...Suggested
- A dynamic consulting firm in the United States seeks a Senior Associate for its Cyber Security & Data Privacy (CSDP) group. This role involves leading client engagements to implement cybersecurity programs and managing daily compliance operations. Ideal candidates will...
$80k - $100k
Framework Ventures is looking for a Cyber Compliance & Risk Management professional to protect digital assets and enhance organizational resilience. This role involves identifying, assessing, and mitigating cybersecurity risks while ensuring compliance with regulations...$90k - $100k
...difference through technology. About Cyber Command Cyber Command is charged with... ...Yorkers. Headed by the Chief Information Security Officer of the City of New York, we provide... ...threats. About This Role The Cyber Risk Analyst will serve in the Cyber Command Risk...Full timeWork at officeShift workNight shiftWeekend workAfternoon shift$30 - $36.77 per hour
.... is looking for a Cybersecurity Compliance Analyst GRC (Remote) to join their team. You will contribute... ...collaborate with business units to mitigate risks. The role emphasizes teamwork, independent activities, and ensuring security compliance. Ideal candidates must have 3+...Remote job$58.5k - $71.5k
SwiftCruit is looking for a Cyber Security Analyst to assess risks and analyze market trends to protect the organization. The candidate will utilize their knowledge of operational risk and enterprise risk models to develop effective risk management strategies. Qualifications...- A Cyber Security Analyst plays a crucial role in the Cyber Defense Team, focusing on the advanced aspects of cybersecurity management, threat analysis, and response activities. This position carries a high level of responsibility and requires both depth and breadth of...
- The New York City Department of Consumer and Worker Protection is hiring a Cyber Security Analyst Level II to implement policies and handle cybersecurity incidents. This role involves analyzing network traffic, responding to security alerts, and collaborating with other...
- ...client a well known Financial Services Company is seeking a Sr. Cyber Security Analyst in their New York, New York Location The Vulnerability... ...and international platforms. Assess vulnerability impact and risk levels to inform strategic remediation. Prioritize patch...Work at office
- The Cybersecurity Analyst is responsible for the administration, monitoring, and optimization of the firm's Microsoft security ecosystem, including Microsoft Defender, Entra ID, Purview,... ...Protection, Data Classification, Insider Risk, and eDiscovery. Monitor and enhance...
£60k per year
Senior Cyber Security Analyst | ISO 27001 | £60,000 per annum | Remote A Cyber Security Risk Analyst is needed for a leading compliance and energy solutions company who are looking for support for their rapid growth and transformation with the mission to enhance energy...Remote job- ...Incident Response, Vulnerability Management, Security Audits, SIEM, Firewalls, Identity... ...: Immediate Job Summary : Seeking a Cyber Security Analyst to monitor security threats, respond... ..., standards, and procedures. Conduct risk assessments to identify and prioritize...Work at officeImmediate start
- ...Insight Global is seeking a Vulnerability Analyst to support and supplement Natixis's... ...Americas and Head Office, partner with the Risk Management team on governance, and help bring... ...and KRIs (Key Risk Indicators) for a security or risk program. Relevant certifications...Work at officeImmediate startShift work
- CyberCoders is hiring a Cyber Security Analyst for a 12+ month contract. This role involves advanced threat detection, security monitoring, log aggregation, and event correlation to protect systems and infrastructure. The ideal candidate should have 3+ years of experience...Contract work
- The Cyber Security Analyst will safeguard computer systems and networks from cyber threats. This role involves monitoring networks for security... ...Ability to recognize, detect, and remediate potential security risks/breaches. Working knowledge of and experience in the policy...Contract work
- ...Management and Configuration Assurance (VMCA) Analyst plays a critical role in identifying, assessing, and reducing cyber risk across the enterprise by delivering effective... ...misconfigurations, ensuring alignment with secure baseline standards, and enabling risk-informed...
$70k - $87.5k
Covius is seeking a Cyber Security Analyst to strengthen our Information Security function. Responsible for monitoring security alerts and recommending controls, the role combines remote work with in-office presence. Ideal candidates will have 1-3 years as an IT security...Remote jobWork at office- A leading digital therapeutics company in New York is seeking a Cybersecurity Project Analyst to support its information security program. This role involves managing risk assessments, compliance programs, and developing security measures. Candidates should have experience...
- Fable Security is seeking a Head of IT & Security to lead security, compliance, and IT functions. This role involves owning compliance programs, such as SOC 2 and ISO 27001, while managing risks and ensuring regulatory adherence. The ideal candidate will have over 7 years...
$60k - $80k
...Pension Risk Transfer Benefits & Implementation Associate Location Designation: Hybrid - 3 days per week Role Overview At New... ..., our Pension Risk Transfer (PRT) business helps institutions secure the retirement futures of thousands of individuals. As a Pension...Contract workWork at officeFlexible hours3 days per week$104k - $156k
...Overview Job Overview As an Advanced Security Engineer focused on Endpoint Security, you... ...security foundations that reduce risk while preserving productivity, partnering... ...related investigations in partnership with Cyber teams Continuously improve endpoint security...Remote work- ...Employment Type: Full-Time Location: ONSITE - New York, NY Department: Information Security / IT Operations About the Role We are seeking a dedicated Cyber Security Help Desk Analyst to join our growing security team. This role serves as the first line of defense for...Full timeWork experience placementWork at officeFlexible hours
- A global consulting firm is seeking an IT Risk & Vulnerability Analyst to ensure software security and compliance for strategic clients. The role involves tracking software versions, collaborating with IT teams, and maintaining accurate reports. Candidates should have...
$100k - $145k
...Join us and be part of meaningful change! Job Description We are looking for an IT Risk & Vulnerability Analyst to support one of our strategic CIB clients in keeping their software secure and up to date. The ideal candidate has experience reviewing software versions,...$48.73k - $57.5k
...Technology is seeking a Technical IBM Mainframe Applications/Systems Analyst to join our growing team. At TISTA, you’ll do meaningful,... ...products. This role ensures system stability, performance, and security while supporting business‑critical applications running on IBM...Temporary workRemote workMonday to FridayFlexible hours$134k - $176.4k
...with your name on it We're seeking an experienced Enterprise Security Engineer with a passion for developing enterprise security controls... ...has breadth and depth across multiple security domains, driving risk reduction while balancing enablement and user experience. You...Temporary workLocal areaWorldwide
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Security Risk Analyst. Be the first to apply!
- information security consultant New York, NY
- cyber security analyst New York, NY
- remote cyber security analyst New York, NY
- operational risk specialist New York, NY
- transaction risk analyst New York, NY
- risk analyst New York, NY
- risk compliance officer New York, NY
- governance risk & compliance analyst New York, NY
- risk officer New York, NY
- risk analyst intern New York, NY

