Senior Security Reporting & GRC Analyst
Are you experienced in cybersecurity reporting and analytics? Apply Now!
Working with one of our top financial clients, this role calls for a Senior Security Reporting & GRC Analyst. This position involves managing and maintaining cybersecurity metrics, including key risk indicators (KRIs) and performance measures, to support security reporting across domains. The role offers high-visibility engagement with leadership, providing an excellent opportunity for professional growth within the banking and financial sector.
Responsibilities
- Execute and validate recurring security metric refresh cycles (weekly, monthly, quarterly) ensuring timely completion.
- Maintain dashboards (Power BI, Tableau), including refresh validation, formatting, and annotations.
- Produce and deliver executive and operational reports such as security scorecards and risk reports.
- Perform quality checks to ensure data completeness, integrity, and accuracy; identify and resolve data issues.
- Document data quality issues and coordinate with data owners to resolve discrepancies.
- Support change requests related to metric definitions, thresholds, and dashboard enhancements.
- Serve as a point of contact for stakeholders regarding reporting support and metric clarifications.
- Assist with audit requests by gathering metric artifacts and controls evidence.
- Maintain documentation of metric definitions, calculations, and source systems to ensure transparency and repeatability.
Desired Skill-Set
- Over 5 years of experience in cybersecurity reporting, analytics, or related IT functions.
- Proficiency in Excel (intermediate to advanced), PowerPoint, and dashboarding tools such as Power BI or Tableau.
- Strong organizational skills with the ability to manage multiple deadlines.
- Excellent communication skills, capable of liaising with both technical and non-technical stakeholders.
- Detail-oriented with a focus on data quality and error detection.
- Process-driven with a structured mindset and continuous improvement focus.
Nice to Have
- Knowledge of cybersecurity domains such as SOC, incident response, vulnerability management, IAM, or phishing metrics.
- Experience working with security tools and data sources like ServiceNow, Archer, Splunk, Sentinel, Tenable, or Qualys.
- Familiarity with security frameworks including NIST CSF and ISO 27001.
- Prior experience in banking or financial compliance environments.
- Understanding of security metrics related to IAM, threat detection, and incident management.
BeachHead is an equal opportunity agency and employer. We advocate for our candidates and welcome applicants regardless of race, color, religion, national origin, sex, age, or physical or mental disability. BeachHead or our clients may use technology-enabled tools, including automation and artificial intelligence (AI), to support parts of the recruitment process such as resume screening, application management, and candidate matching. These tools assist our recruiters and our clients, and do not replace human decision-making. This job posting represents a current or anticipated vacancy. The position may be filled at any time, and the posting may be removed without notice once the role has been filled.