Senior Cyber Risk Analyst

Job Description

About the Role

Title: Sr. Cyber Risk Analyst

Location: Miami Lakes United States

Job Description:

BankUnited (NYSE: BKU) is a national bank headquartered in Miami Lakes, Florida with banking centers in Florida, the New York metropolitan area, Dallas and Atlanta. BankUnited has two subsidiaries, Pinnacle Public Finance headquartered in Scottsdale, Arizona and Bridge Funding Group headquartered in Hunt Valley, Maryland. We pride ourselves on our entrepreneurial and collaborative culture encompassing the best minds, the brightest talent and the boldest decision makers.

BankUnited is honored to announce that we have been included on the Newsweek and Statista America’s Most Trusted Companies Award List!

BankUnited has been recognized by Newsweek for two outstanding awards in 2023 as one of America’s Greatest Workplaces and as one of America’s Greatest Workplaces for Job Starters, which acknowledges our commitment to creating an exceptional workplace.

Our Culture

At BankUnited, we foster a diverse and inclusive environment where all employees have the opportunity to advance, grow and achieve their goals. Our rally cry is to GO FOR MORE, a call to action to go above and beyond to provide the best customer experience to every client and to GO FOR MORE in your career.

Why BankUnited

Working for BankUnited offers you exciting challenges and opportunities to advance your professional development, while empowering you to deliver and be your best. We are happy to report the average tenure according to LinkedIn insights is 8.3 years. We strive to provide a competitive benefits plan to our employees and are proud to have been nationally ranked #1 as one of the 2023 Healthiest 100 Workplaces in America by Springbuk and awarded HEALTHIEST EMPLOYER by the South Florida Business Journal since 2020.

As a company, we believe we are only as successful as our people and are committed to providing training and innovative resources that prepare you to reach your full potential. That’s why in addition to tuition reimbursement, we provide our employees with exciting career coaching, courses and training through our own GO FOR MORE Academy and mentoring opportunities through our iCARE (Inclusive Community of Advocacy, Respect and Equality) program.

At BankUnited, we strive to provide our employees with a work life balance. Specifically, retail branches operate 5 days a week Monday – Friday, excluding evening and/or weekend hours. For many of our positions, we offer a hybrid work environment, as well as a remote work environment for designated positions.

If you thrive in a fast-paced collaborative work environment, Apply Now and start your journey with BankUnited today!

SUMMARY: We are seeking a highly skilled and experienced Senior Cyber Risk Analyst to join our financial institution’s Second Line of Defense team. This critical role involves providing oversight of threat and vulnerability management programs and spearheading the implementation and management of a cutting-edge cyber risk quantification solution. The ideal candidate will have a strong background in cyber risk management, exceptional analytical skills, and a proactive approach to identifying and mitigating cyber threats. The candidate will provide independent assessment and oversight of the cyber risk practices carried out by the first line of defense. The candidate will ensure that cyber risk is managed in accordance with the risk appetite defined by senior management and promote a strong risk culture through the organization.

ESSENTIAL DUTIES AND RESPONSIBILITIES include the following. Other duties and special projects may be assigned.

Conduct independent controls testing and vulnerability scans on a regular basis and provide credible challenge to the First Line of Defense on security gaps and weaknesses. Collaborate with the First Line of Defense to ensure timely and effective identification and mitigation of vulnerabilities.

Participate in the implementation of a comprehensive cyber risk quantification solution. Continuously monitor and update the cyber risk quantification tool to reflect the evolving threat landscape and organizational changes.

Identify, develop, and report on key risk indicators (KRIs) to provide insights into the Bank’s cyber risk profile.

Support the development and maintenance of security policies, standards, and procedures.

Evaluate and recommend cloud security controls and best practices, such as those recommended by NIST CSF and 800-53, CIS, etc.

Coordinate with internal and external stakeholders to ensure the timely and effective implementation of security controls and remediation actions.

Adheres to and complies with applicable, federal and state laws, regulations and guidance, including those related to anti-money laundering (i.e. Bank Secrecy Act, US PATRIOT Act, etc.).

Adheres to Bank policies and procedures and completes required training.

Identifies and reports suspicious activity.

EDUCATION

Bachelor’s Degree in Cybersecurity, Computer Science, or a related field

EXPERIENCE

Minimum 4-6 years of experience in cybersecurity, threat and vulnerability management, or related fields

Experience with cybersecurity tools and risk quantification methodologies preferred

CERTIFICATES, LICENSES, REGISTRATIONS

Professional certifications such as CISSP and CRISC are highly desirable.

Professional certifications such as CCSK, CCSP, or AWS are preferred. Mandatory after 1-1/2 years.

KNOWLEDGE, SKILLS AND ABILITIES

Strong understanding of risk management principles, control frameworks (NIST CSF, 800-53), and regulatory requirements.

Excellent analytical, communication, and leadership skills.

Ability to work effectively in a fast-paced and dynamic environment.