Sr. Analyst, Cybersecurity

Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, or disability status.  EEO/Disabled/Vets

Job Description :

Job Title: Senior Cybersecurity Analyst 

Location - NYC

Hybrid - 3 days in office

As a global media and information services company, News Corp understands the importance of cybersecurity and mitigating risk across the organization. We believe in protecting our businesses and customers and are looking to build innovative solutions that will allow us to become a global leader in cybersecurity. If cybersecurity is your passion and you want to be part of a cutting edge team, we want to hear from you! 

Overview: 

The Senior Cybersecurity Analyst will be responsible for providing comprehensive cybersecurity support to the assigned business unit. The individual will offer consultancy, review and assess risks in various projects and initiatives, conduct thorough risk assessments, and manage cyber issues and risks effectively. A business-focused view of cybersecurity and a demonstrated ability to work with engineering teams and different cybersecurity functions to deliver solutions is essential. The ideal candidate will have a robust understanding of cybersecurity and data protection principles and be well-versed in the risk management lifecycle. 

Key Responsibilities: 

● Support and maintain the company’s cybersecurity program by developing, implementing, and maintaining cybersecurity controls, standards, guidelines, and processes to effectively manage risk for the benefit of the business unit. 

● Engage Cybersecurity functions to enable appropriate cybersecurity control catalog coverage for the business unit; support the implementation of key security solutions across the organization, developing measurable 

cybersecurity standards that align with policy control objectives. 

● Conduct risk assessments and report on enterprise and third-party security controls, which includes identifying, tracking, and managing cyber issues and risks for the business unit in the cybersecurity risk register. 

● Collaborate with business and IT stakeholders to ensure proper due diligence is performed to identify and address cybersecurity issues. 

● Assist in the development and maintenance of meaningful metrics to measure and track cybersecurity risks, supporting effective governance and simplified reporting. 

● Provide diligent coordination and follow-up for business/IT requests. 

● Conduct compliance readiness assessments and assurance activities against policies, standards, and requirements.

● Support the management of audits, external assessments, and assurance processes. 

● Liaise with key internal and external stakeholders to enable compliance with PCI-DSS, privacy (e.g., CCPA, GDPR), and other regulatory requirements. 

● Develop and deliver cybersecurity training and awareness content for employees. 

Qualifications

● 5+ years of experience within cybersecurity 

● Qualification in Information Security, Computer Science, Engineering, or similar 

● Demonstrated experience in conducting risk assessments and recommending remediation measures 

● Previous experience in cloud security, security engineering, application security, and third party risk domains in a complex environment is desirable ● Strong knowledge and experience with Industry Frameworks and Standards such as NIST CSF, PCI-DSS, and ISO 27001 

● Exceptional oral and written communication skills, with a demonstrated ability to effectively convey technical subject matter to non-technical business audiences 

● Strong project management and coordination skills 

● Professional security certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or similar are preferred.

Job Category:

Pay Range: $110000 - $135,000 + Bonus

We recognize that attracting the best talent is key to our strategy and success as a company. As a result, we aim for flexibility in structuring competitive compensation offers to ensure we are able to attract the best candidates. The quoted salary range represents our good faith estimate as to what our ideal candidates are likely to expect, and we tailor our offers within the range based on the selected candidate's experience, industry knowledge, location, technical and communication skills, and other factors that may prove relevant during the interview process.

Pay-for-performance is a key element in our strategy to attract, engage, and motivate talented people to do their best work. Similarly to salary, for bonus eligible roles, targets are set based on a variety of factors including competitive market practice.

For benefits eligible roles, in addition to cash compensation, the company provides a comprehensive and highly competitive benefits package, with a variety of physical health, retirement and savings, caregiving, emotional wellbeing, transportation, and other benefits, including "elective" benefits employees may select to best fit the needs and personal situations of our diverse workforce.