Position Title
Cloud/Cyber Risk Management Analyst Sr
Location
New York, NY 10018
Job Summary
***This is an Onsite role in Midtown NYC***As a key member of the second line of defense Technology, Cyber, Third Party Risk Management & Resilience Risk Management team, the Cyber Risk Management Analyst Sr will support the Cyber Risk team to fulfill the Bank’s Second Line of Defense (“2LoD”) mandate to identify, measure, monitor, and manage the Cybersecurity/Information Security (“Cyber”) risk profile of the Bank, ensuring risk exposure remains within the Bank’s established risk appetite. The candidate will be expected to demonstrate independent, effective, outcome-based oversight and challenge for the risk domains within the First Line of Defense (“1LoD”) CISO and Information Security team, IT Risk, IT Infrastructure and Architecture teams, as well as IT business technology teams.
Job Responsibilities:
JOB RESPONSIBILITIES
- Provides independent, proactive oversight and challenge of Cyber risk management at the Bank through execution of risk framework elements including RCSA, control assessment, issue management, incident reviews, targeted deep dives, key risk indicators and through embedded monitoring of Cyber programs.
- Provides feedback to IT Risk, CISO, and other IT teams on risks, controls, testing, root cause analysis, remediation and reporting.
- Assesses and report Cyber risk profile based on quantitative and qualitative risk measures and including assessment of effectiveness of planned remediation/mitigation of excess risk exposure and compliance with key regulatory requirements.
- Uses independent judgement and discretion to make decisions.
- Analyzes and resolves problems.
ADDITIONAL ACCOUNTABILITIES
- Performs special projects, and additional duties and responsibilities as required.
- Consistently adheres to regulatory and compliance policies and standards linked to the job as listed and complete required compliance trainings. Accountable to maintain compliance with applicable federal, state and local laws and regulations.
JOB REQUIREMENTS
Required Qualifications:
- Education level required: Undergraduate Degree (4 years or equivalent) in Computer Science, Information Technology, Cybersecurity or relevant field.
- Minimum experience required: 6+ Years in an information technology, cybersecurity, risk, audit, and/or compliance role.
Preferred Qualifications:
- 2-3 years in a related function at a financial institution preferred.
- Applicable information security, enterprise risk, and/or compliance certifications and/or experience.
- Working knowledge of a GRC Risk Tool.
Job Competencies:
- Excellent knowledge of core IS and cybersecurity controls (e.g. IAM, DLP, vulnerability management, security threat detection and response, networks, cloud technologies, etc.).
- Strong knowledge of IT and Cyber risk management concepts and applicable interagency regulatory guidance (e.g. FFIEC guidelines).
- Ability to provide outcome based risk oversight and challenge to first line risk management.
- Knowledge of non-financial risk frameworks.
- Strong analytical skills with the ability to interpret data, draw conclusions, and formulate recommendations.
- Strong verbal and written communications skills
- Ability to utilize advanced Excel functionality, create engaging and informative PowerPoint presentations, and work effectively in Word.
- Detail oriented with strong organizational skills, able to thrive in a fast-paced environment with multiple competing priorities at times.
- Demonstrates a strong ability to build and maintain effective relationships with stakeholders by communicating clearly, engaging in proactive collaboration, and leveraging cross functional insights. Aligns relationship building efforts with enterprise goals to accelerate performance and drive strategic results.
- Builds trusted client relationships, whether internal or external, by identifying needs and delivering tailored solutions to enhance the overall client experience.
- Fosters or supports a positive work culture and productive work environment, displaying importance of effective relationships with customers and stakeholders.
- Physical demands (ADA): No unusual physical exertion is involved.
Flagstar is an Equal Opportunity Employer
We are committed to providing clear and accurate compensation information in accordance with applicable laws. Actual starting base pay will be determined based on location, experience, and other non-discriminatory factors permitted by law. Total compensation may also include variable incentives, bonuses, commissions, or other awards as outlined in the offer of employment. Flagstar provides teammates access to a variety of benefits including medical, dental, vision, life, and disability insurance, as well as a comprehensive leave program. Please click the following link for detailed information: Benefits | Flagstar Bank
Pay Range
$90,597.00 - $150,440.00Skills Required
- Undergraduate Degree in Computer Science, Information Technology, Cybersecurity or relevant field
- 6+ Years in an information technology, cybersecurity, risk, audit, and/or compliance role
- Applicable certifications and/or experience in information security, enterprise risk, and/or compliance
- Working knowledge of a GRC Risk Tool
Flagstar Bank Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Flagstar Bank and has not been reviewed or approved by Flagstar Bank.
-
Leave & Time Off Breadth — Time‑off programs include accrued PTO that scales with tenure, separate sick time, company holidays plus a floating day, and a paid community involvement day. Paid parental bonding leave of six weeks is available after a year of service.
-
Healthcare Strength — Coverage includes multiple medical plan choices (Cigna OAP options and Kaiser for CA/HI) with preventive medications at no cost and integrated pharmacy benefits. Dental through Delta Dental and two VSP vision plans provide additional coverage choice.
-
Retirement Support — A 401(k) plan with a company match supports long‑term savings. Employer‑paid life/AD&D and disability coverage complement retirement planning.
Flagstar Bank Insights
What We Do
Thank you for visiting Flagstar Bank on LinkedIn, and we look forward to being part of your financial journey. On December 1, 2022, New York Community Bank (NYCB) and Flagstar Bank joined together to become one company. Today, New York Community Bancorp, Inc. is the parent company of Flagstar Bank, N.A., one of the largest regional banks in the country. The company is headquartered in Hicksville, New York. At June 30, 2024, the company had assets of $119.1 billion. We operate over 400 branches across 10 states, including a significant presence in the Northeast and Midwest and locations in high growth markets in the Southeast and on the West Coast. Flagstar Mortgage operates nationally through a wholesale network of approximately 3,000 third-party mortgage originators. We believe in cultivating a diverse, inclusive, and respectful workplace that engages employees, broadens perspectives, and encourages teamwork. We hire people who represent the talents, experiences, backgrounds, and diversity of the communities we serve. Together our goal is to deliver a new energy in banking to our customers, opening new doors for financial and personal success. Customers will have access to a broad spectrum of technology, products and services—all with a shared customer-first approach. Relationships are at the center of all that we do, enhanced by our commitment to delivering local market expertise, personalized solutions, and a long-standing focus on strengthening our communities. Follow us on LinkedIn to stay up to date on news and updates, new hires, community initiatives, access to our collective insights, and banking industry updates that you need to know.
