Greenlight Planet logo
Greenlight Planet

Powering access to brighter lives in Africa, Asia, and beyond

Cyber Risk Analyst

Security AnalystSecurity AnalystFull TimeRemoteSeniorTeam 1,001-5,000Since 2009H1B No SponsorCompany SiteLinkedIn

Location

India

Posted

45 days ago

Salary

0

Seniority

Senior

Bachelor Degree3 yrs expEnglishCyber Security

Job Description

Cyber Risk Analyst

Greenlight Planet

• Plan and execute internal cyber security audits and control reviews across applications, infrastructure, and business processes. • Document findings, assess risk and impact, and track remediation through closure with respective teams. • Conduct security due diligence for vendors and third parties: review security questionnaires, certifications, and technical controls to ensure they meet organizational requirements. • Identify and track vendor risks, recommend mitigation measures, and support contractual security requirements where needed. • Work with stakeholders to maintain and test business continuity and disaster recovery (BCP/DR) plans. • Plan, coordinate, and document tabletop exercises and technical BCP/DR drills, track and follow up on corrective actions. • Maintain up‑to‑date security policies, standards, procedures, and guidelines, ensuring alignment with NIST CSF, ISO 27001, and relevant regulations. • Prepare regular reports and dashboards on audit findings, risk status, BCP drill outcomes, vendor risk posture, and ISMS/NIST CSF progress for management. • Maintain and update the cyber risk register, working with control owners and business stakeholders to identify, assess, and prioritize risks. • Perform risk assessments (likelihood/impact), propose risk treatment options (mitigate, accept, transfer, avoid), and track treatment plans to closure. • Develop and deliver cyber security awareness sessions and targeted training for employees, including phishing awareness, secure handling of data, and role‑based security topics. • Create clear, engaging communication materials (presentations, FAQs, quick guides) to improve security culture.

Job Requirements

  • Bachelor's degree in any engineering discipline.
  • At least 3 years of experience in cyber governance, risk and compliance domain.
  • Experience in implementing security controls and processes across business functions adhering to NIST CSF, ISO 27001 standards.
  • Practical experience into at least 70% of the above-mentioned responsibilities.
  • Exposure to industry standards and regulations (e.g., SOC 2, ISO 27001, GDPR/DPDP etc.).
  • Security certifications such as CISA, ISO 27001 Lead Implementer / Lead Auditor is preferred.
  • AI‑governance or AI‑risk credentials such as ISO/IEC 42001 training, NIST AI RMF Architect/Lead Implementer, or recognized AI Security & Governance certifications is a strong plus.
  • Good communication and interpersonal skills, with the ability to engage effectively with diverse stakeholders.

Benefits

  • Professional growth in a dynamic, rapidly expanding, high-social-impact industry
  • An open-minded, collaborative culture made up of enthusiastic colleagues who are driven by the challenge of innovation towards profound impact on people and the planet.
  • A truly multicultural experience: You will have the chance to work with and learn from people from different geographies, nationalities, and backgrounds.
  • Structured, tailored learning and development programs that help you become a better leader, manager, and professional through the Sun King Center for Leadership.

Related Job Pages

More Security Analyst Jobs

Lead Forensics logo

Senior Security Compliance Analyst

Lead Forensics

Lead Forensics is software for turbo-charged lead generation

Security Analyst46 days ago
Full TimeRemoteTeam 201-500Since 2009H1B No Sponsor

• Support sales assurance processes through questionnaire completion and contract reviews. • Take a leading role in maintaining Lead Forensics’ ISO 27001 compliance. • Drive continual improvement, leveraging AI agents, automation tools and optimising manual processes. • Manage IT supplier due diligence. • Lead a small team and mentor team members. • Lead the maintenance of documentation and processes.

United Kingdom
Job Closed
Oddball logo

Security Analyst

Oddball

Oddball is a software development company that focuses on designing and building tools for enterprises and institutions. The company delivers services, includin

Security Analyst47 days ago

• Partner with engineers and security SMEs to design, improve, and implement Identity and Access Management (IAM) solutions for VA.gov products • Analyze security metrics and access management trends to inform how the program approaches security architecture • Develop and document requirements for IAM solutions including identity lifecycle, role management, separation of duties, and access workflows • Build and maintain logging and monitoring solutions using Splunk, Loki, and/or AWS CloudWatch • Develop use cases and test cases, and participate in SIT/UAT testing • Operate as a domain expert — teams will lean on you for both functional and technical guidance on security and IAM • Support the Security Collab Cycle, ensuring teams building products and features on VA.gov are doing so in alignment with Platform security standards and best practices

United States
$90K - $125K / year
Job Closed
Mercor logo

Security Analyst

Mercor

Cincinnatus is an enterprise staffing company that partners with leading technology companies to source and employ highly skilled professionals for full-time and long-term contingent roles. Cincinnatus serves as the employer of record for these engagements, providing W-2 employment, payroll, benefits, and compliance, while placing employees directly within client teams to work on high-impact initiatives. Roles hired through Cincinnatus are not project-based or freelance engagements. They are structured, role-based positions that typically involve full-time or fixed-term commitments, close collaboration with a client's internal teams, and integration into standard enterprise workflows. Cincinnatus is a legal entity separate from Mercor. While opportunities may be discovered through Mercor's platform, employment, onboarding, payroll, and benefits for these roles are administered by Cincinnatus. Equal Employment Opportunity Cincinnatus is proud to be an Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or any other legally protected characteristic. Cincinnatus is committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans throughout the job application process.

Security Analyst47 days ago
Part TimeRemoteH1B No Sponsor

Role Description Mercor connects elite creative and technical talent with leading AI research labs. Headquartered in San Francisco, our investors include Benchmark, General Catalyst, Peter Thiel, Adam D'Angelo, Larry Summers, and Jack Dorsey. Position: Cybersecurity Expert Type: Contract Compensation: $1,750–$2,150 per completed task Location: Remote Role Responsibilities - Review and evaluate AI-generated outputs related to threat analysis, vulnerability assessment, and security architecture recommendations. - Create realistic scenarios based on cybersecurity workflows such as incident response runbooks, threat hunting queries, and penetration testing reports. - Annotate, label, and validate data across cybersecurity use cases like CVE classification accuracy and SIEM alert triage. - Provide structured feedback on AI accuracy in areas such as cybersecurity frameworks (NIST CSF, MITRE ATT&CK) and threat intelligence standards (STIX/TAXII). - Collaborate asynchronously with research teams to refine evaluation frameworks for cybersecurity AI. Qualifications - Must-Have: 3+ years of professional experience in cybersecurity at an enterprise organization, MSSP, consultancy, or government/defense environment. - Background in areas such as SOC analysis, incident response (DFIR), penetration testing, threat intelligence, or security architecture. - Strong analytical thinking and ability to translate security operations into structured evaluation tasks. - Clear written communication and attention to detail. - Preferred: Professional certifications like CISSP, CISM, CEH, OSCP, GIAC certifications, Security+. Requirements - Task Completion Pay: Competitive and based on task quality. - Performance Bonus: Weekly bonus incentive for top performers. - Hourly Opportunity: Transition to hourly compensation for sustained quality. Application Process - Upload resume - AI interview based on your resume - Submit form Resources & Support - For details about the interview process and platform information, please check: Interview Process - For any help or support, reach out to: support@mercor.com - PS: Our team reviews applications daily. Please complete your AI interview and application steps to be considered for this opportunity.

Worldwide
$1.8K - $2.2K / year
BAE Systems, Inc. logo

Cybersecurity Red Team Analyst Sr

BAE Systems, Inc.

Improving the future and protecting lives is an ambitious mission, but it’s what we do. As a leading aerospace, defense, and security company, we work together to deliver a full range of products and services for air, land, space, and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. How we work is rooted in purpose – a purpose to protect those who protect us, to unite our community of colleagues and customers, and to drive forward the growth and development of our exceptional team members. It's where purpose connects.

Security Analyst47 days ago
Full TimeRemoteTeam 10,001+Since 1999H1B No Sponsor

Job Description BAE Systems Cybersecurity - Attack Surface Management has an opening for a Red Team Analyst Sr to improve overall security posture through authorized offensive security projects that identify gaps in IT security controls and processes. Position will manage cross functional engagements that include IT service centers, business sectors, and the security operations center. Scope can include the BAE Systems, Inc core network, business/program enclaves, and commercial and custom applications. Position manages engagements from end-to-end to include scope definition, detailed planning, stakeholder coordination, testing, reporting, and remediation coordination. This is an exciting opportunity to build and manage a program and work with a highly motivated team of cyber security professionals. Required Education, Experience, & Skills Technical requirements: - Expertise in attack tools and techniques - Ability to use and analyze information produced from various commercial and open source tools - Familiarity with large network infrastructure components (Load balancers, Proxies, hybrid cloud implementations, VPNs) - Familiarity with network and host-based security system components (Firewalls, Endpoint Protection Solutions) - Familiarity with modern virtualization platforms and technology. Required Skills - Experience managing red team projects from end-to-end (initial planning through remediation coordination) - Ability to coordinate activities with a wide range of stakeholders - Experience developing plans, creating reports, presentation, processes, etc. - Must be able to work across IT organizations to drive successful outcomes of the program - Ability to produce documentation in support of the program Preferred Education, Experience, & Skills Preferred Skills and Education - Computer Security related degree - 6+ years in a cybersecurity role, 3+ years in red team - Certifications related to red team and penetration testing such as OSCP, OSCE, OSWP, OSWE, GPEN, GWAPT, GXPN, GAWN - Experience with COTS Adversary Emulation tools Primary Duties and Responsibilities - Develop standard Red Team practice within ESS Cybersecurity. Define core processes, tools, and deliverables. - Simulate attacks on the organization's IT systems, networks, applications, and physical security to evaluate its security posture. Identify weaknesses that could be exploited by malicious actors and provide actionable recommendations to improve defenses. - Work under consultative direction from management within Cybersecurity. Develop and implement plans and work with stakeholders independently to plan and execute activities. - Develop detailed project plans that define technical approaches as well as impacts and requirements for stakeholders throughout the organization. - Technical approaches may require a high degree of creativity and flexibility. Problems may be highly complex. Testing may often uncover unknown/unforeseen circumstances that require change in direction or new approaches. Position requires ability to independently make sound decisions to maximize effectiveness of tests. - Must be able to maintain strong working relationships with stakeholders throughout the organization, including IT Operations, Applications, Network, GSOC, business sectors, etc. Stakeholders may be sensitive that simulated attacks may impact business operations. Position requires careful and responsible decisions regarding test approaches, and frequent and effective communications with stakeholders. - Consult with stakeholders on findings and required actions to improve defenses. Develop and maintain detailed tracking that identifies scope, tests completed, and findings. Work with stakeholder to ensure findings are remediated. - Serve as the Team Lead for the Red Team function within ESS Cybersecurity. Provide leadership and support to other Red Team Analysts on the team. Coordinate activities, ensure high quality delivery. - Promote a culture of ownership, transparency, and results driven- performance. Pay Information Full-Time Salary Range: $132962 - $226035 Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience. Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics. About BAE Systems, Inc. BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference. This position will be posted for at least 5 calendar days. The posting will remain active until the position is filled, or a qualified pool of candidates is identified.

Virginia
$133.0K - $226.0K / year