Cyber Risk Analyst
New York City | Technology, Data & Innovation
Cyber Risk Analyst
The Office of Technology and Innovation (OTI) leverages technology to drive opportunity, improve public safety, and help government run better across New York City. From delivering affordable broadband to protecting against cybersecurity threats and building digital government services, OTI is at the forefront of how the City delivers for New Yorkers in the 21st century. At OTI, we offer great benefits, and the chance to work on projects that have a meaningful impact on millions of people. You'll have the opportunity to work with cutting-edge technology and collaborate with other passionate professionals who share your drive and commitment to making a difference through technology. About Cyber Command Cyber Command is charged with protecting all City systems against cyber threats, including systems that deliver vital services to New Yorkers. Headed by the Chief Information Security Officer of the City of New York, we provide in-depth support to over 100 agencies and offices to protect, detect, identify, respond to, and recover from cyber threats.
About This Role The Cyber Risk Analyst will serve in the Cyber Command Risk Program under the direction of the Senior Advisor. They will help shape Cyber Command's approach to risk management, build new risk frameworks and processes, and assess and monitor NYC agencies' cybersecurity risks. Responsibilities will include:
- Build new risk processes and implement risk frameworks to enable better monitoring and evaluation of risks across the City;
- Manage projects, pushing through ambiguity and challenges which may arise;
- Work with stakeholders across various divisions, soliciting input and working through feedback;
- Review and analyze various cybersecurity risk cases, justifications, and exceptions documents submitted by agencies;
- Assist in developing cybersecurity risk assessment procedures and control testing methodologies based on established frameworks and guidelines;
- Assess NYC agencies' documented information security and technology policies, procedures, and practices.
- Draft risk cases accompanied by working papers, concise controls assessments, and systems testing reports;
- Present risk findings to senior leadership;
- Engage in communications with NYC agencies to assist them in successfully managing risk;
- Handle special projects and initiatives as assigned.
HOURS/SHIFT Day - Due to the necessary technical duties of this position in a 24/7 operation, candidate may be required to work various shifts such as weekends and/or nights/evenings. WORK LOCATION Brooklyn, NY
Minimum Qualifications
A baccalaureate degree from an accredited college and four years of satisfactory full-time experience related to projects and policies required by the particular position; or, Education and/or experience which is equivalent to "1" above.
Preferred Skills
The successful candidate should possess the following:
- 2-3 years of experience in cybersecurity risk management, IT auditing, or policy
- Familiarity with cybersecurity framework(s) (NIST, SANS, PCI, ISO 27001/27002, or CIS)
- Experience performing security controls assessments
- Knowledge of hardware, software, data, and network principles and systems related to Private and/or Public Sectors services
- Understanding of commonly used computer operating systems, databases, network structures
- Experience managing projects
- Being a highly organized, motivated, and self-directed professional
- Ability to work effectively in a team environment
- Investigative and analytical skills
- Excellent oral and written communication skills
- Knowledge of the current and evolving cyber threat landscape
- Knowledge of laws, regulations, policies, and ethics related to cybersecurity and information privacy
One or more of the following certifications is preferred:
- CompTIA Security+
- CompTIA Network+
- CompTIA A+
- CompTIA CySA+
- Cisco Certified Network Associate - CCNA
- CEH: Certified Ethical Hacker
- GIAC Information Security Fundamentals GISF)
- GIAC Security Essentials (GSEC)
- ISC)2 Systems Security Certified Practitioner (SSCP)
One or more of the following certifications are a plus:
- Certified Information Systems Auditor (CISA)
- Certified Information Systems Security Professional CISSP)
- Certified in Risk and Information Systems Control (CRISC)
- Certified Information Security Manager (CISM)
Public Service Loan Forgiveness
As a prospective employee of the City of New York, you may be eligible for federal loan forgiveness programs and state repayment assistance programs. For more information, please visit the U.S. Department of Education's website at
Residency Requirement
New York City Residency is not required for this position
Additional Information
The City of New York is an inclusive equal opportunity employer committed to recruiting and retaining a diverse workforce and providing a work environment that is free from discrimination and harassment based upon any legally protected status or protected characteristic, including but not limited to an individual's sex, race, color, ethnicity, national origin, age, religion, disability, sexual orientation, veteran status, gender identity, or pregnancy.
- ...Department: Enabling : IT Employment Type: Permanent - Full Time Location: Flexible Description The Cyber Risk & Compliance Analyst supports the cybersecurity function by ensuring accurate, timely, and consistent responses to client-facing compliance requirements and third...SuggestedPermanent employmentFull timeContract workWork at officeFlexible hours
- ...Cybersecurity Risk Analyst We are seeking a Cybersecurity Risk Analyst to join our Information Security Risk team. This role focuses on assessing risks across applications (on-prem and cloud), infrastructure, and third-party vendors through a formalized risk assessment...Suggested
- ...driven by our common purpose to deliver a better world. Join us. Job Description AECOM Technical Services, Inc. is seeking a Risk Analyst in New York, NY: Job Details: Review project documents and analyze project data to develop risk profiles and risk...SuggestedWork at officeLocal areaWorldwideFlexible hours
- ...Interest in Computer Science, Information Systems, Cybersecurity, or a related field Experience in technology audit, governance, risk, and compliance, information security, or related field is preferred, and willingness to learn is required Experience working...SuggestedWork at office
- ...We are working with a well-established financial services firm that is looking to bring on a Risk Analyst to their Enterprise Risk Management team. The role will primarily focus on their credit, market, and operational risk. Responsibilities : Design...Suggested
$70k - $100k
...Join Mizuho as a Risk Tech Analyst! In this role, you will be part of the NPE (New product Enablement) team whose purpose is to support Quants and Risk models validation efforts. The ideal candidate will specifically help generate and assess the calculated data quality...Work at officeLocal areaRemote workWorldwide$45 - $50 per hour
...Role :- Third Party Risk Analyst/Banking - Required Location: Hybrid/Midtown New York City 3 days a week.Hybrid 1 year+ - Rate :- $50/hr on c2c pv rate Interview Required: Video Candidate Visa's Accepted : No Opt. Candidates must...Work at officeLocal areaRelocationFlexible hours3 days per week$97k - $132k
...rewarded here. Everything that makes you unique is welcome; join us and let’s build what’s next – together! As our new Third Party Risk Analyst , you will play a critical role in protecting Anaplan by managing the risks associated with our third‑party suppliers and...- ...seeks a talented governance professional to enhance its AI governance program based in New York, NY. You will manage AI compliance and risk assessments while collaborating with various teams to ensure the responsible usage of AI capabilities. The ideal candidate will have...
- ...Jobot Consulting is seeking an experienced AI Risk & Compliance Analyst to join their Governance, Risk & Compliance team. The ideal candidate will have 5+ years of experience in governance and compliance, along with 2+ years specifically in AI governance. The role involves...
$75k - $95k
...Department Profile The cornerstone of Morgan Stanley's risk management philosophy is the execution of risk-adjusted returns through... ...trading counterparties. Position Summary Morgan Stanley is seeking an Analyst for the Risk Capital group, based in New York. Risk Capital,...Temporary work- ...effort to coordinate analytics to enhance operational efficiencies and data accuracy. The Analyst will work with internal and external stakeholders in quantifying and analyzing risk results and practice patterns to explain and financial performance and key drivers. Scope...
- ...Fraud/Risk Analyst Fin is a next-generation payments platform built for high-value, global, and instant transactions. We are a Series A-stage company backed by Sequoia, Circle, and other notable investors. Powered by stablecoins, Fin enables users and businesses to...Worldwide
- ...Senior Catastrophe Risk Analyst If you're looking for the stability of a profitable, growing company with the entrepreneurial spirit of a startup, we're hiring. SageSure, a leader in catastrophe-exposed property insurance, is seeking a Senior Catastrophe Risk Analyst...
$70k - $90k
...rated, operating in 64 countries. Founded in 2013 by security and risk experts Dr. Alex Yampolskiy and Sam Kassoumeh and funded by... ...self-monitoring, third-party risk management, board reporting, and cyber insurance underwriting; making all organizations more resilient...Full time$77.5k - $102k
...Family partner with agents and brokers to provide insurance solutions that enable businesses to manage risks with confidence. Job Description The Enterprise Risk Analyst supports the development, implementation, and continuous enhancement of the organization's Enterprise...Work at officeLocal area- ...We partnered with a commercial bank is hiring an Enterprise Risk Analyst to support its Enterprise Risk Management (ERM) function. This role provides broad exposure across enterprise risk governance, risk reporting, and operational risk activities, with visibility to...
$45 - $50 per hour
...and Weekly Pay Key Responsibilities: Engage business partners in risk/control identification, documentation, mapping, and RCSA... ...Seniority level Mid-Senior level Employment type Contract Job function Analyst, Management, and Business Development Industries Financial Services...Weekly payContract workTemporary workRemote work$70k - $100k
...Join Mizuho as a Risk Tech Analyst! In this role, you will be part of the NPE (New product Enablement) team whose purpose is to support Quants and Risk models validation efforts. The ideal candidate will specifically help generate and assess the calculated data quality...Work at officeLocal areaRemote work- ...AI Risk & Compliance Analyst AI Risk & Compliance Analyst | Location: New York, NY or Charlotte, NC | Contract To Hire AI Risk & Compliance Analyst role supporting governance, assessment, and oversight of AI initiatives across the enterprise. This hands-on position...Contract work
$83.33k
...across the City, access to mainstream banking, and encouraging Earned Income Tax Credit utilization. DCWP is seeking to hire a Cyber Security Analyst Level II to join its IT Services Division. Under the direction of the Executive Director Infrastructure, the Cyber Security...Permanent employmentFull timeWork at office$104k - $153k
...Cyber Threat Analyst Minimum qualifications: ~5 years of experience in an analytical role (e.g., network forensics analyst, intelligence threat analyst, or security engineer/consultant) in a customer facing environment. ~ Experience in stakeholder management...Full time- ...controllers, RADIUS, RSA. • Develop and implement firewall changes for supported networks • Evaluate requested changes for possible Cyber-Security Threats • Provide 3rd level support to troubleshoot networking issues. • Interact with support-customers to resolve...Work experience placementLocal areaRotating shift
- ...Trinnex is searching for a Senior Cyber Security Analyst to join their Security Team in Jersey City, New Jersey. This role focuses on securing the software development lifecycle for critical systems that support water utilities. You will analyze security threats, manage...
- ...Brooklyn, United States | Posted on 12/09/2025 JobTitle: Cyber Command Forensic Analyst Location: Brooklyn, NY 11201 SCOPE OF SERVICES The forensics Analyst will investigate network intrusions and other cyber incidents to determine cause, extent and consequences of the...
$102.17k
...Job Description Join the Trinnex Security Team as a Senior Cyber Security Analyst, where you will operate at the intersection of cybersecurity... ...with Mend for software composition analysis (SCA), open‑source risk management, and vulnerability remediation. Experience...H1b- ...Position: Cyber Security Zero Trust Analyst Location: Brooklyn, NY Duration: 36 months Required Skills 5+ years of experience in Development of Zero Trust design patterns, Implementation of Zero Trust Policy Engine, and Zero Trust Policy Administration and...
- ...Vulnerability Management Analyst Review and process vulnerability scan results Analyze vulnerability intelligence and use cybersecurity... ...Identify assets associated with vulnerabilities Assess risk presented by identified vulnerabilities Create tickets to document...
- ...Cyber Security Operations Center Position The Cyber Security Operations Center is seeking individuals in a fast-paced environment focused on operational technology. The employee should perform monitoring and response including follow-up and escalation measures on security...
- ...Overview This position is contingent upon award of contract SOSi is seeking a Risk and Compliance Analyst to support mission requirements for a structured approach to further develop, integrate, and sustain a scalable, federated data ecosystem that enhances interoperability...Contract workFor contractorsRemote work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cyber Risk Analyst. Be the first to apply!
- information security consultant Brooklyn, NY
- cyber security analyst Brooklyn, NY
- risk officer Brooklyn, NY
- it risk analyst Brooklyn, NY
- risk analyst Brooklyn, NY
- senior quantitative risk analyst Brooklyn, NY
- risk consultant Brooklyn, NY
- cyber Brooklyn, NY
- technology risk Brooklyn, NY
- risk underwriter Brooklyn, NY

