Cyber Security Risk Analyst
Description:
Requisition Number
289548BR
Your role
Do you have a strong technical cyber security background? Do you have proven experience in cyber risk governance?
We’re looking for a Cyber Security Risk Governance Specialist to:
•serve as a subject matter expert in a number of Cyber and Information Security (CIS) domains and capabilities, providing active risk oversight for these areas
•proactively and constructively challenge the status quo, identifying operational risks and proposing realistic remediation or improvement solutions
•review the firm’s CIS threats, controls, deficiencies, indicators and events, in support of conclusions on the firm’s residual risk
•build and develop long-term relationships with security and risk professionals and other stakeholders across the firm
•collaborate across multi-disciplinary teams from different geographies and business divisions on change initiatives
•streamline and standardize processes for CIS risk governance
Function Category
Information Technology (IT)
Business Divisions
Group Functions
Job Type
Full Time
Your team
You’ll be working as a member of the Cyber Governance, Requirements and Regulatory Affairs team. We are part of our Group Chief Information Security Office (Group CISO) and support all divisions and functions of the firm. As a Cyber Security Risk Governance Specialist, you’ll help proactively govern CIS risks and controls through data-driven analysis, enabling transparent risk-based decision making.
Your expertise
•proven experience in cyber and information security risk governance, management and/or control
•strong technical expertise in areas such as Data Protection, Identity and Access Management, Cyber Defense, Network Security and/or Cyber Hygiene. Technical knowledge and passion for enabling technologies to operate securely (e.g. Cloud). Ability to judge effectiveness of security control implementation against threats and risk scenarios
•good understanding of cyber and information security risk or threat management frameworks, for example NIST CSF, CRI Profile, COBIT and MITRE ATT&CK
•experienced in engaging with senior stakeholders
•excellent communication and interpersonal skills in global environment
•understanding of the financial industry is preferred
•industry recognized certifications such as CISSP, CCSP, CGRC, CISM, CISA, OSCP, SANS etc. are a bonus
•team player with the ability to work independently and take initiative in order to organize, manage and complete projects and deliverables within tight deadlines
About us
UBS is the world’s largest and the only truly global wealth manager. We operate through four business divisions: Global Wealth Management, Personal & Corporate Banking, Asset Management and the Investment Bank. Our global reach and the breadth of our expertise set us apart from our competitors..
We have a presence in all major financial centers in more than 50 countries.
How we hire
This role requires an assessment on application. Learn more about how we hire:
Join us
At UBS, we embrace flexible ways of working when the role permits. We offer different working arrangements like part-time, job-sharing and hybrid (office and home) working. Our purpose-led culture and global infrastructure help us connect, collaborate, and work together in agile ways to meet all our business needs.
From gaining new experiences in different roles to acquiring fresh knowledge and skills, we know that great work is never done alone. We know that it's our people, with their unique backgrounds, skills, experience levels and interests, who drive our ongoing success. Together we’re more than ourselves. Ready to be part of #teamUBS and make an impact?
Contact Details
UBS Business Solutions SA
UBS Recruiting
Disclaimer / Policy Statements
UBS is an Equal Opportunity Employer. We respect and seek to empower each individual and support the diverse cultures, perspectives, skills and experiences within our workforce.