Senior Information Security Analytics & Risk Specialist (Google Cloud)Overview
We are seeking an experienced Information Security professional with strong expertise in Google Cloud, security analytics, and risk/compliance within the banking sector. This role focuses on enhancing security metrics, reporting capabilities, and integrating threat intelligence frameworks into a unified risk and analytics landscape.
Key Responsibilities- Develop and enhance Information Security metrics and threat-based reporting capabilities
- Improve Identity and Access Management (IAM) risk and compliance reporting aligned with security requirements
- Perform conceptual analysis and contribute to the evolution of a Unified Risk Framework, particularly in relation to reporting and metrics development
- Analyse and design integration approaches across multiple Information Security domains (e.g., Data Leakage, Workload/Application Security) into the existing analytics and reporting ecosystem
- Leverage knowledge of the MITRE ATT&CK framework to strengthen threat analysis and reporting methodologies
- Collaborate with cross-functional teams to ensure alignment between security, risk, and analytics functions
- Build and maintain strong relationships with senior technical and business stakeholders
- Communicate insights, risks, and recommendations effectively to C-level executives
Required Skills & Experience- Google Cloud Platform (GCP) experience (minimum 2+ years)
- Proven experience in Google Cloud security technologies and/or security analysis
- Hands-on experience defining and implementing guardrails using:
- Palo Alto Prisma
- and/or HashiCorp Sentinel
- Strong expertise in:
- Information Security principles and practices
- Identity and Access Management (IAM)
- Risk and Compliance within the banking/financial services sector
- Solid understanding of metrics, reporting, and security analytics
- In-depth knowledge of the MITRE ATT&CK framework (essential)
Key Competencies- Strong analytical and conceptual thinking skills
- Ability to translate complex security data into actionable insights
- Excellent verbal and written communication skills, with experience engaging C-level stakeholders
- Proven stakeholder management and relationship-building capabilities
- Strategic mindset with attention to detail
Desirable Experience- Experience working within large, complex enterprise environments
- Familiarity with unified risk or GRC (Governance, Risk, and Compliance) frameworks
- Exposure to integrating multiple security domains into centralized reporting platforms
