Position Title

Cyber Risk Management Analyst

Location

Nationwide, MI 48098

Job Summary

Pay Range: 74 - 117K

JOB SUMMARY

As a key member of the second line of defense Technology, Cyber, Third Party Risk Management & Resilience Risk Management team, the Cyber Risk Senior Analyst will support the Cyber Risk team to fulfill the Bank’s Second Line of Defense (“2LoD”) mandate to identify, measure, monitor, and manage the Cybersecurity/Information Security (“Cyber”) risk profile of the Bank, ensuring risk exposure remains within the Bank’s established risk appetite. The candidate will be expected to demonstrate independent, effective, outcome-based oversight and challenge for the risk domains to the First Line of Defense (“1LoD”) CISO and Information Security team, IT Risk, IT Infrastructure and Architecture teams, as well as IT business technology teams.Pay Range: Local Minimum Wage - $0.00 - $0.00

Job Responsibilities:

JOB RESPONSIBILITIES

Provide independent, proactive oversight and challenge of Cyber risk management at the Bank through execution of risk framework elements including RCSA, control assessment, issue management, incident reviews, targeted deep dives, key risk indicators and through embedded monitoring of Cyber programs.
Assess risk trends and risk exposures against approved limits by leveraging analytical tools.
Support the assessment and reporting of Cyber risk profile based on quantitative and qualitative risk measures and including assessment of effectiveness of planned remediation/mitigation of excess risk exposure and compliance with key regulatory requirements.
Provide feedback to IT Risk, CISO, and other IT teams on risks, controls, testing, root cause analysis, remediation and reporting.

ADDITIONAL ACCOUNTABILITIES

Performs special project review, and additional duties and responsibilities as required.
Consistently adheres to regulatory and compliance policies and standards linked to the job as listed and complete required compliance trainings. Accountable to maintain compliance with applicable federal, state and local laws and regulations.

JOB REQUIREMENTS

Required Qualifications:

Education level required: Undergraduate Degree (4 years or equivalent) (Computer Science, Information Technology, Cybersecurity or relevant field)
Minimum experience required: 2+ Years in an information technology, cybersecurity, risk, audit, and/or compliance role.

Preferred Qualifications:

Additional information security, enterprise risk, and/or compliance certifications and/or experience
Financial institution experience a plus
Working knowledge of a GRC Risk Tool
Working knowledge of Microsoft Office tools, including excel, word, PowerPoint and Teams

Job Competencies:

Knowledge of core IS and cybersecurity controls (e.g. IAM, DLP, vulnerability management, security threat detection and response, networks, cloud technologies, etc.)
Knowledge of non-financial risk frameworks.
Exposure to Artificial Intelligence Tools and Concepts
Strong analytical skills with the ability to interpret data, draw conclusions, and formulate recommendations
Strong verbal and written communications skills, including the ability to create engaging and informative PowerPoint presentations
Detail oriented with strong organizational skills, able to thrive in a fast-paced environment with multiple competing priorities at times
Ability to utilize advanced Excel functionality and data visualization tools to support data analysis
Ability to provide outcome-based risk oversight and challenge to first line risk management teams
Demonstrates a strong ability to build and maintain effective relationships with stakeholders by communicating clearly, engaging in proactive collaboration, and leveraging cross functional insights. Aligns relationship building efforts with enterprise goals to accelerate performance and drive strategic results.
Builds trusted client relationships, whether internal or external, by identifying needs and delivering tailored solutions to enhance the overall client experience.
Physical demands (ADA): No unusual physical exertion is involved.

Flagstar is an Equal Opportunity Employer

Flagstar provides teammates access to a variety of benefits including medical, dental, vision, life, and disability insurance, as well as a comprehensive leave program. Please click the following link for detailed information: Benefits | Flagstar Bank

Qualified applicants with arrest or conviction records will be considered for employment in accordance with the California Fair Chance Act, the Los Angeles County Fair Chance Ordinance, the City of Los Angeles Fair Chance Initiative for Hiring Ordinance, and the San Francisco Fair Chance Ordinance, as appliable.