Vice President, Technology Control Management

Cyber GRC Risk Analyst

At BNY, our culture allows us to run our company better and enables employees growth and success. As a leading global financial services company the heart of the global financial system, we influence nearly 20% of the worlds investible assets. Every day, our teams harness cutting-edge AI and breakthrough technologies to collabore with clients, driving transformive solutions th redefine industries and uplift communities worldwide.

Recognized as a top destinion for innovors, BNY is where bold ideas meet advanced technology and exceptional talent. Together, we power the future of finance and this is wh #LifeAtBNY is all about. Join us and be part of something extraordinary.

Were seeking a future team member for the role of Cyber GRC Risk Analyst to join our Cyber Security team. This role is loced in Pittsburgh, PA.

Position Summary

The Vice President, Cybersecurity GRC Analyst leads the coordinion and execution of cybersecurity regulory engagements, ensuring consistent, high-quality support for regulory compliance activities. This role is responsible for managing stakeholder engagement, evidence collection, documention, and reporting across the regulory lifecycle.

The position also oversees the identificion, assessment, escalion, tracking, and remediion of cybersecurity and technology control risks. This includes ensuring th control deficiencies, risk findings, and remediion actions are effectively governed, accurely reported, and resolved in a timely and risk-informed manner.

As a key liaison across Cybersecurity, Engineering, Risk Management, Risk, Audit, Compliance, and business stakeholders, the Vice President ensures clear communicion, alignment, and execution of regulory priorities. The role requires strong expertise in cybersecurity risk management, governance practices, and financial regulory expections, with the ability to transle complex requirements into actionable plans and measurable outcomes.

In this role, youll make an impact in the following ways:

Coordine end-to-end cybersecurity regulory engagements, including preparion, execution, and post-exam follow-up activities.

Proactively identify and engage key stakeholders and subject mter experts early in the regulory lifecycle to ensure alignment on roles, responsibilities, and expections, including direct interaction with senior management.

Communice complex cybersecurity and risk topics clearly and effectively to both technical and non-technical stakeholders across the organizion.

Maintain current knowledge of financial regulory requirements and cybersecurity frameworks to anticipe audit and examinion needs.

Support governance processes across cyber risk, control management, audit findings, and regulory commitments, ensuring remediion activities are aligned with internal standards and regulory expections.

Contribute to the development and maintenance of job aids, procedures, and process documention to enhance regulory request intake, remediion workflows, and audit readiness.

Partner closely with Cybersecurity, Engineering, Risk Management, Audit, Compliance, and business teams to strengthen control effectiveness, improve remediion outcomes, and support sustained regulory readiness.

To be successful in this role, were seeking the following:

Demonstres a strong work ethic and consistent high performance, with the ability to opere independently and drive optimal outcomes in a fast-paced environment.

Exhibits strong tention to detail, ensuring accuracy and quality in regulory responses, documention, and stakeholder interactions.

Ability to interpret regulory requests within context and transle them into well-structured, risk-based responses th support effective cybersecurity risk management.

Bachelors degree in Computer Science, Cybersecurity, Informion Systems, Risk Management, or a reled discipline, or equivalent work experience.

Typically 510 years of experience in Governance, Risk, and Compliance (GRC), Informion Security, Technology Risk, Cybersecurity, or a reled field, including experience in issue management, control remediion, audit support, risk analysis, or compliance oversight.

Strong analytical, problem-solving, and investigive skills, with experience leveraging da analysis and reporting tools such as Power BI, Business Objects, Excel, and PowerPoint to assess compliance and identify control gaps.

In-depth knowledge of cybersecurity frameworks, regulory requirements, and risk management principles, including experience evaluing control effectiveness, managing remediion activities, and understanding the System Development Life Cycle (SDLC) with a focus on technology risk across development and production environments.

Excellent written and verbal communicion skills, strong time management, sound judgment, and the ability to collabore effectively with both technical and non-technical stakeholders.

Preferred qualificions include:

Degree in Cybersecurity, Informion Systems, Business, or a reled discipline.

Experience in the securities, banking, or financial services industry.

Experience supporting audit, regulory examinions, or formal remediion programs.

Familiarity with industry control and risk frameworks such as NIST Cybersecurity Framework, NIST 800-53, Cyber Risk Institute Cyber Profile, ISO 27001, COBIT, FFIEC guidance, and PCI DSS, where applicable.

Experience with GRC plforms, issue tracking systems, control management tools, and integred reporting workflows th aggrege vulnerability, control, audit, and self-identified findings.

At BNY, our culture speaks for itself, check out the lest BNY news :

BNY Newsroom

BNY LinkedIn

Heres a few of our recent awards:

• Americas Most Innovive Companies, Fortune, 2025
• Worlds Most Admired Companies, Fortune 2025
• Most Just Companies, Just Capital and CNBC, 2025

Our Benefits and Rewards:

BNY offers highly competitive compension, benefits, and wellbeing programs rooted in a strong culture of excellence and our pay-for-performance philosophy. We provide access to flexible global resources and tools for your lifes journey. Focus on your health, foster your personal resilience, and reach your financial goals as a valued member of our team, along with generous paid leaves, including paid volunteer time, th can support you and your family through moments th mter.

BNY is an Equal Employment Opportunity/Affirmive Action Employer - Underrepresented racial and ethnic groups/Females/Individuals with Disabilities/Protected Veterans.