Intermediate Analyst, Technology Controls

The Intermediate Analyst, Technology Control manages Technology Management Key Controls, ensures version control, and supports projects with control updates.

Title: Intermediate Analyst, Technology Controls

Work type: 6 – 12-month contract

Industry: Banking & Financial Services

Work location: Hybrid (remote and in-office) - Applications open to resident Caribbean nationals.

Role Overview:

The Intermediate Analyst, Technology Control is responsible for identifying, documenting, and maintaining Technology Management Key Controls in a centralised repository, ensuring proper version control. They also support OMEGA projects by delivering control updates.

Key Duties & Responsibilities:

• Reviews and stays updated on international cybersecurity frameworks (e.g., National Institute of Standards and Technology (NIST)), evaluate existing controls for compliance, recommend adjustments, and identify gaps to propose new controls for company repository.
• Conducts interviews with Technology stakeholders to identify the company’s standards, procedures and guidelines associated with the newly recommended or updated controls.
• Independently reviews recommended controls or control updates to ensure alignment with applicable cyber and technology regulatory requirements.
• Reviews and follows standard procedures and guidelines to document recommended key controls, address identified gaps and prepare updates using the company’s control update template.
• Reviews design effectiveness testing to confirm new or updated Technology controls can mitigate associated risks when properly implemented.

Qualifications and Experience:

• Undergraduate qualification in Computer Science, Information Security, Information Technology, or related field.
• Minimum 2 years’ experience working in relevant field (including Application Management, Cloud Computing, Networking, etc.).
• Good working knowledge of industry frameworks or standards for IT internal controls (e.g., NIST, PCI-DSS, International Organization for Standardization (ISO), Control Objectives for Information and Related Technologies (COBIT)).
• Knowledgeable in Cybersecurity and IT control issues and regulatory requirements.
• Experience in technology and cybersecurity auditing or risk assessments at junior management level is an asset.

Key Skills

• Strong logical and analytical ability, with great attention to detail.
• Strong communication skills with ability to communicate with all levels within the organisation.
• Strong leadership ability.
• Highly organised, innovative and flexible.

Certifications

Preferred:

• Certified Internal Auditor (CIA)
• Certified Information Systems Auditor (CISA)
• Certified Information Systems Security Professional (CISSP)
• Certified Cloud Security Professional (CCSP)
• Certified in Risk and Information Systems Control (CRISC)

Desired Behaviours

• Goal/Results Oriented
• Self-motivated
• Honest and direct in giving feedback
• Able to work independently and as part of a team

Due to the high volume of applications, only shortlisted candidates will be contacted