Senior Cybersecurity Analyst – IR, Compliance, IAM & Security Architecture

Senior Cybersecurity Analyst, Assurant, GCC-India

The Senior Cybersecurity Analyst plays a critical role in safeguarding Assurant’s digital assets and infrastructure. This position leads complex cybersecurity initiatives, provides strategic guidance on risk mitigation, and ensures compliance with global regulatory frameworks. The role requires deep technical expertise, cross-functional collaboration, and the ability to influence and mentor others. The Senior Analyst proactively identifies threats, drives incident response, and contributes to the continuous improvement of the enterprise security posture. 

This position will be in Hyderabad at our India location.

Work Timing: 8:30 AM IST to 5:30 PM IST

What will be my duties and responsibilities in this job?

• Project Support & Risk Assessment - Lead security-related projects and initiatives. Conduct advanced risk assessments for new technologies and vendors. Provide input on security, architecture and design.
• Reporting & Metrics - Develop and maintain dashboards and reports on security posture, compliance status, project/task status and audit findings. Present findings to leadership and stakeholders. Ability to translate technical risk into business impact.
• Security Assessment and Mitigation: Assess the potential impact of cybersecurity risks on critical business processes and functions, perform security reviews to identify gaps, and develop strategies for risk mitigation. Follow all risk remediation protocols to ensure issues are mitigated, risks are accounted for, and exceptions, if any, are tracked in accordance with organizational frameworks, policies, and standards.
• Stakeholder Collaboration and Communication: Collaborate with business leaders to balance security requirements with business agility, innovation, and growth. Act as a subject matter expert (SME) between cybersecurity and business lines to develop security solutions in line with policies, standards, and frameworks. Communicate business risk and risk mediation to stakeholders, ensuring alignment with agreed protection levels.
• Cross-Disciplinary Collaboration: Work closely with other security disciplines such as Compliance, Vendor Risk, Engineering, Incident Management, Assurance, etc., on business security-related matters. Constructively engage business partners regarding cybersecurity issues and establish risk ownership and accountability within the business line for risk mitigation.
• Technology & Security Systems Management – Manage and optimize cybersecurity tools and platforms (e.g., GRC, SIEM, endpoint protection, vulnerability scanners). Respond to security incidents and alerts.
• Governance, Compliance & Audit Support - Lead the implementation and continuous improvement of cybersecurity policies, standards, and frameworks.

What are the requirements needed for this position?

• Bachelor’s degree in computer science, Information Security, or related field; advanced certifications preferred
• Minimum 8+ years in cybersecurity, with demonstrated experience in incident response, compliance, IAM, and security architecture
• Deep understanding of cybersecurity frameworks and regulatory requirements
• Experience in M&A and integration efforts from an information security perspective.
• Experience in Application Security.
• Experience with IAM tools and processes
• Familiarity with audit procedures and evidence collection
• Proficiency in security technologies (e.g., firewalls, SIEM, endpoint protection)
• Excellent communication and documentation abilities - using appropriate level of communication up and down the organization
• Works to gain a deep understanding of requests or tasks and offers suggestions to streamline
• Build and maintain strong working relationships with sponsors, stakeholders, and team members
• Strong problem-solving, critical thinking and troubleshooting skills
• Ability to effectively influence others to modify their opinions, plans or behaviors 
• Effectively work independently and collaboratively in a virtual team environment
• Persistent in completing the tasks - on time and within the deadline
• Spends time on what adds the most value
• Engage the right people at the right time
• Bring grit and determination to get things done

What are the other requirements needed for this position?

• Certificated Information Systems Security Professional (CISSP) 
• Active security certification or equivalent
• CompTIA Security+ 
• GIAC Security Essentials 
• Certified Security Analyst (ECSA) 
• Certified Ethical Hacker (CEH) 
• Offensive Security Certified Professional (OSCP) 
• Experience in financial services or insurance industries
• Knowledge of cloud security and modern IAM solutions
• Experience with GRC platforms and risk management methodologies
• Experience with cloud security (AWS, Azure, GCP)
• Familiarity with DevSecOps and secure SDLC practices
• Knowledge of data privacy regulations (e.g., GDPR, CCPA)