View all jobs
Cybersecurity Analyst
Malvern, PA · Information TechnologyWe are assisting our client in the hiring of a Cybersecurity Analyst who wants to build a career in security, risk, and compliance from a strong foundation.
This is a hands-on role for someone early in their career who is hungry to learn, willing to take ownership, and interested in how modern cybersecurity and GRC programs operate.
Our client provides cloud-based collection software solutions for banks, credit unions, and fintechs to collect and manage their portfolios.
Specifically, they provide the technology and data necessary to increase collections efficiency, provide a digital consumer experience, reduce staff costs, anticipate delinquencies, and provide insight into future credit decisions.
Position requires that you’re local to Malvern, PA.
You’ll work directly with the SVP, Enterprise Risk Management, who will guide your development. You will help keep our client audit-ready, support vendor security reviews, maintain risk and control documentation, track remediation activity, and help improve the workflows that make risk and compliance work more effective.
This is not a passive support role. It is a development role for someone who asks good questions, learns quickly, follows through, and wants to become a well-rounded security and risk professional.
Responsibilities:
This is a hands-on role for someone early in their career who is hungry to learn, willing to take ownership, and interested in how modern cybersecurity and GRC programs operate.
Our client provides cloud-based collection software solutions for banks, credit unions, and fintechs to collect and manage their portfolios.
Specifically, they provide the technology and data necessary to increase collections efficiency, provide a digital consumer experience, reduce staff costs, anticipate delinquencies, and provide insight into future credit decisions.
Position requires that you’re local to Malvern, PA.
You’ll work directly with the SVP, Enterprise Risk Management, who will guide your development. You will help keep our client audit-ready, support vendor security reviews, maintain risk and control documentation, track remediation activity, and help improve the workflows that make risk and compliance work more effective.
This is not a passive support role. It is a development role for someone who asks good questions, learns quickly, follows through, and wants to become a well-rounded security and risk professional.
Responsibilities:
- Support the day-to-day operation of the governance, risk, and compliance program, including control monitoring, evidence management, risk tracking, and audit readiness.
- Help manage the GRC platform, including maintaining evidence, monitoring control health, and keeping compliance documentation current.
- Support compliance activities across frameworks such as SOC 2 Type II, PCI DSS, CIS 8.1, and related customer or regulatory expectations.
- Maintain risk registers, control libraries, issue logs, remediation trackers, and support documentation as reliable sources of truth.
- Track open issues, remediation items, and control gaps, including ownership, status, target dates, and whether items are closing on time.
- Gather, organize, and sanity-check data used in risk assessments, compliance reporting, metrics, dashboards, and leadership updates.
- Help design and improve AI-assisted or automated workflows that reduce manual evidence collection, control reviews, reporting, and recurring compliance tasks.
- 1 to 5 years of professional experience in cybersecurity, GRC, IT, audit, risk, compliance, data, operations, financial services, or a closely related field.
- Interest in building a career in cybersecurity, risk, and compliance.
- Strong curiosity, good instincts, and a willingness to learn through coaching, feedback, and hands-on work.
- A bachelor’s degree in information systems, cybersecurity, business, finance, data, accounting, or a related field