First Citizens Bank · 1 day ago
Cyber Risk Analyst III
United States
Full-time
Remote
Mid, Senior Level
$102K/yr - $157K/yr
6+ years expFirst Citizens Bank is focused on providing cybersecurity risk management and expert support. The Cyber Risk Analyst III is responsible for identifying and mitigating cyber risks, conducting risk assessments, and collaborating with stakeholders to enhance the organization’s cybersecurity posture.
BankingInsuranceLendingPaymentsWealth Management
Responsibilities
Cyber Risk Assessments - Leads and executes cybersecurity risk assessments across cyber domains, business units, and technology environments. Evaluates control effectiveness against established frameworks and regulatory expectations, identifies risk exposures, and documents findings in clear, actionable terms
Risk Identification and Mitigation - Identifies potential risks across operational, technology, and regulatory domains. Works with stakeholders to define and track remediation plans, ensuring timely and effective resolution of identified issues. Facilitates risk mitigation strategies aligned to business objectives and regulatory standards
Framework Application - Applies industry-standard frameworks (e.g., NIST Cybersecurity Framework (CSF), NIST SP 800-53, ISO 27001, FFIEC guidelines) to assess and benchmark the organization’s risk posture. Conducts gap analyses, interprets requirements, and provides recommendations for closing compliance or control gaps
Cyber Technical Expertise - Leverages strong technical knowledge of core cybersecurity domains (e.g., identity and access management, network security, cloud security, endpoint protection, vulnerability management, and security architecture) to effectively assess risks and validate control implementation. Provides informed insights on technical risk mitigation strategies
Stakeholder Partnership - Collaborates with business, technology, and control owners to communicate assessment results, educate stakeholders on risk management expectations, and promote awareness of cybersecurity risks. Supports a culture of accountability and continuous improvement in risk management practices
Monitoring and Reporting - Develops and maintains risk assessment reports and dashboards. Communicates trends, patterns, and emerging risks to leadership, providing transparency into the organization’s cyber risk profile. Tracks remediation progress, escalates overdue actions, and highlights areas requiring additional oversight
Continuous Improvement - Maintains awareness of changes in industry standards, threat landscape, and regulatory requirements. Incorporates emerging practices into the organization’s risk assessment methodology, ensuring assessments remain relevant and effective
Qualification
Required
Bachelor's Degree and 6+ years of experience in cyber risk management or cyber risk oversight OR High School Diploma or GED and 10+ years of experience in cyber risk management or cyber risk oversight
Direct experience performing cybersecurity risk assessments, including scoping, evaluation, gap analysis, and reporting
Strong knowledge of cybersecurity frameworks such as NIST CSF, NIST SP 800-53, ISO 27001, and FFIEC guidance, with demonstrated ability to apply them in complex organizations
Demonstrated technical expertise across cybersecurity domains including IAM, security architecture, network and cloud security, endpoint protection, and vulnerability management
Experience identifying risks, defining remediation strategies, and partnering with stakeholders to reduce risk exposure
In-depth practical knowledge of internal controls, cybersecurity processes, and risk management methodologies
Excellent written and oral communication skills, with ability to influence stakeholders and communicate effectively at multiple levels
Professional certifications such as CISSP, CISA, CISM, CRISC, or similar
Preferred
7-10 years of experience in cybersecurity risk management, or cyber risk oversight including direct execution of cyber risk assessments
3+ years of experience in a Large Financial Institution or similarly regulated environment
Familiarity with regulatory requirements and expectations related to cybersecurity risk management (e.g., FFIEC, OCC, FRB, NYDFS, HIPAA, state law, and other guidance)
Strong analytical, problem-solving, and project management skills
Experience with continuous improvement of risk assessment methodologies and reporting practices
Benefits
Comprehensive benefits program
Customized offerings
Benefits offerings
Company
First Citizens Bank
First Citizens Bank provides banking services, essential business and professional services, wealth management capabilities, and more.
10001+ employees
H1B Sponsorship
First Citizens Bank has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (126)
2024 (115)
2023 (249)
2022 (53)
2021 (12)
2020 (9)
Funding
Current Stage
Public CompanyTotal Funding
$33M2021-05-07Post Ipo Debt· $10M
2018-08-29Post Ipo Debt· $23M
1986-10-31IPO
Leadership Team
C
Craig Nix
Chief Financial Officer
Samantha Bureau - Johnson
SVP & Director, Customer Contact Center
Recent News
2026-01-23
Talk Business & Politics
2026-01-16
Company data provided by crunchbase