Cyber Security Risk Analyst

Customers Bank•Malvern, PA

4d•Hybrid

About The Position

At Customers Bank, we believe in working hard, working smart, working together to deliver memorable customer experiences and having fun. Our vision, mission, and values guide us along our path to achieve excellence. Passion, attitude, creativity, integrity, alignment, and execution are cornerstones of our behaviors. They define who we are as an organization and as individuals. Everyone is encouraged to have personal development plans. By doing so, our team members are on their way to achieve their highest potential and be successful in their personal and professional lives. This role is required to sit ONSITE in our Malvern, PA office Monday through Thursday with Friday remote. Must be eligible to work in the U.S. without requiring sponsorship now or in the future. Who is Customers Bank? Founded in 2009, Customers Bank is a super-community bank with over $22 billion in assets. We believe in dedicated personal service for the businesses, professionals, individuals, and families we work with. We get you further, faster. Focused on you: We provide every customer with a single point of contact. A dedicated team member who’s committed to meeting your needs today and tomorrow. On the leading edge: We’re innovating with the latest tools and technology so we can react to market conditions quicker and help you get ahead. Proven reliability: We always ground our innovation in our deep experience and strong financial foundation, so we’re a partner you can trust.

Requirements

2+ years of experience in internal audit, cyber security, or IT risk management,
Knowledge of information security and IT risk control frameworks (e.g., COSO, COBIT, NIST).
Understanding of financial, operational, and IT control environments.
Strong analytical skills with attention to detail and accuracy.
Excellent written and verbal communication skills
Bachelor’s degree in information systems, cyber risk, or related field.
Understanding of information technology infrastructure (networking, Active Directory, backups, etc.) and security concepts (role-based access control, least privilege, defense in depth, etc.).
Experience in developing and maintaining documentation strategies for information security policies, standards, and operating procedures.
Proficiency with Microsoft Office applications (Excel, Word, PowerPoint).
Develop and maintain working relationships with audit, GRC, and IT teams to promote continuous control awareness and improvements.

Nice To Haves

Professional certifications such as CIA, CISSP, CISA, Microsoft certifications, or CRMA.
Experience in Banking, financial services, or other highly regulated industries.

Responsibilities

Documentation & Communication: Develop and maintain workflows to create, maintain, and update information security documentation in support of internal and external audit requirements.
Control Testing & Evaluation: Under the direction information security management, execute testing procedures to assess the design and effectiveness of key information security controls across business units, technology, and operational processes. Track control effectiveness and KRI/KPI for inclusion in risk assessment reports.
Issue Identification & Reporting: Document test results, identify control deficiencies, and provide clear recommendations for remediation. Identify and track exceptions to the Bank’s security policies and procedures.
Audit readiness and response: Assist information security team with gathering evidence/artifacts for internal and external audits.
Collaboration: Work closely with business process owners, auditors, compliance, and risk teams to ensure timely resolution of identified issues.
Continuous Monitoring: Participate in ongoing monitoring and follow-up activities to confirm remediation effectiveness and sustainability.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume