Job Title: Cyber Risk AnalystLocation: San Antonio, TX
Experience: 6-8 Years
Role OverviewThe Cyber Risk Analyst will play a critical role in evaluating, mitigating, and monitoring technology and cyber risks across the organization. This role requires strong analytical capabilities, clear communication with senior leadership, and a solid understanding of risk frameworks and assessment methodologies. The analyst will drive risk assessments, manage gaps and issues, and ensure alignment with enterprise security standards.
Key ResponsibilitiesRisk Assessment & Analysis - Conduct detailed cyber and technology risk assessments across applications, infrastructure, and business processes.
- Identify control weaknesses, vulnerabilities, and emerging threats.
- Evaluate residual risk and provide clear recommendations.
Risk Mitigation & Gap Management - Collaborate with cross-functional teams to develop and track mitigation plans.
- Perform gap analysis against regulatory and organizational standards.
- Monitor remediation progress ensuring timely closure.
Issue Management - Maintain end-to-end oversight of identified issues and risks.
- Validate evidence for issue closure and ensure alignment with compliance requirements.
- Prepare detailed documentation and reports for audit readiness.
Senior Leadership Reporting & Communication - Present risk findings, trends, and recommendations to senior leaders and risk committees.
- Prepare concise reports, dashboards, and executive summaries.
- Advise leadership on risk impact and priority.
Documentation & Governance - Review and update risk documentation, policies, and procedures.
- Ensure all assessments, artifacts, and evidence are compliant with governance frameworks.
- Support governance, risk, and compliance (GRC) activities.
Required Skills - 6-8 years of experience in Cyber Risk, IT Risk, or InfoSec domains.
- Strong understanding of risk assessment methodologies (NIST, ISO 27001, SOC, etc.).
- Hands-on experience with issue tracking, gap analysis, and mitigation management.
- Excellent written and verbal communication-especially with senior leadership.
- Ability to review and interpret technical documentation, architecture diagrams, and security controls.
- Strong analytical mindset with attention to detail.
