Posted 12 June, 2026
Cyber Security Senior Analyst - NIST
NR Consulting
Bangalore,Karnataka
Full Time
Reference: 365_463738_26-06315
Title: Cyber Security Senior Analyst - NIST
Location: Bangalore
Exp: 11-12 LPA
Job Description:
• Support the day-to-day operational InfoSec activities for a customer unit, aligned to SG global standards and security policies.
• Perform risk analysis of new business processes and solutions, providing practical security recommendations.
• Conduct and support Application Sensitivity Assessments (ASA) and Secure by Design (SBD) evaluations.
• Collaborate with Application owners to complete Secure by Design (SBD) process prior to production deployment.
• Support the Entity ISOs and Application Owners & Managers for compliance to meet Group KRIs by providing expertise support, collaborative follow-ups.
• Ensure adherence to industry standards such as NIST, ISO/IEC 27034, OWASP Top10, etc and regulatory requirements such as GDPR, AAS.
• Efficient enough to manage NIST Barometer Assessments for NORDICS and to meet Group Target for 2026 .
• Collaborate with development Teams to embed security best practices into software development life cycle (SDLC)
• Manage and respond to Information Security Incidents, in collaboration with internal and global teams.
• Perform RAF (Risk Acceptance Framework) and exception management workflows.
• Deliver and support security awareness programs, including sessions and campaign planning.
• Liaise with application, infrastructure, and business teams to drive Infrastructure/Hardening and application security control implementations.
Minimum Qualification:
• Cybersecurity Analyst/Senior Analyst with 5-6 years of experience in Information Security, with a strong focus on GRC and operational security.
• Sound understanding of Cybersecurity concepts, application security, foundational security controls, risk management, and audit processes.
• Strong understanding & Working knowledge of ASA/SBD assessments, TPSRM processes, and Risk awareness delivery.
• Strong understanding & ability to manage security standards/frameworks (e.g., ISO 27001, NIST, CIS).
• Should own management of NIST Barometer Assessments for NORDICS and drive to reach 2026 Target .
• Ability to manage security exceptions & RAF Management for NORDICS.
• Ability to govern Vulnerability Management, Security Incident Management , CERT Alerts etc for NORDICS .
• Strong analytical and communication skills with the ability to evaluate risk and recommend controls quickly.
• Identify & evaluate security risks & report appropriately.
• Coordinate with LOD2 to review/create policies, standards & Procedures.
• Relevant certifications related to Cybersecurity like CISM, IS027001, CISSP etc is an added advantage.
Location: Bangalore
Exp: 11-12 LPA
Job Description:
• Support the day-to-day operational InfoSec activities for a customer unit, aligned to SG global standards and security policies.
• Perform risk analysis of new business processes and solutions, providing practical security recommendations.
• Conduct and support Application Sensitivity Assessments (ASA) and Secure by Design (SBD) evaluations.
• Collaborate with Application owners to complete Secure by Design (SBD) process prior to production deployment.
• Support the Entity ISOs and Application Owners & Managers for compliance to meet Group KRIs by providing expertise support, collaborative follow-ups.
• Ensure adherence to industry standards such as NIST, ISO/IEC 27034, OWASP Top10, etc and regulatory requirements such as GDPR, AAS.
• Efficient enough to manage NIST Barometer Assessments for NORDICS and to meet Group Target for 2026 .
• Collaborate with development Teams to embed security best practices into software development life cycle (SDLC)
• Manage and respond to Information Security Incidents, in collaboration with internal and global teams.
• Perform RAF (Risk Acceptance Framework) and exception management workflows.
• Deliver and support security awareness programs, including sessions and campaign planning.
• Liaise with application, infrastructure, and business teams to drive Infrastructure/Hardening and application security control implementations.
Minimum Qualification:
• Cybersecurity Analyst/Senior Analyst with 5-6 years of experience in Information Security, with a strong focus on GRC and operational security.
• Sound understanding of Cybersecurity concepts, application security, foundational security controls, risk management, and audit processes.
• Strong understanding & Working knowledge of ASA/SBD assessments, TPSRM processes, and Risk awareness delivery.
• Strong understanding & ability to manage security standards/frameworks (e.g., ISO 27001, NIST, CIS).
• Should own management of NIST Barometer Assessments for NORDICS and drive to reach 2026 Target .
• Ability to manage security exceptions & RAF Management for NORDICS.
• Ability to govern Vulnerability Management, Security Incident Management , CERT Alerts etc for NORDICS .
• Strong analytical and communication skills with the ability to evaluate risk and recommend controls quickly.
• Identify & evaluate security risks & report appropriately.
• Coordinate with LOD2 to review/create policies, standards & Procedures.
• Relevant certifications related to Cybersecurity like CISM, IS027001, CISSP etc is an added advantage.
