At Finastra, we’re a global leader in financial services software, dedicated to expanding access to financial services and shaping what’s next for the industry. Our technology powers mission‑critical solutions across Lending, Payments and Universal Banking, supporting over 7,000 customers, including 80% of the world’s top 50 banks, in more than 110 countries.
This role serves as the operational foundation for cybersecurity assurance activities across the organisation. As a Cyber Security Assurance Analyst, you will maintain the documentation, evidence repositories, control mappings, and governance records that demonstrate how cybersecurity controls satisfy business, customer, regulatory, and industry requirements. You will work closely with control owners to ensure documentation and evidence remain accurate, current, and readily available when needed. Success in this role comes from creating structure, maintaining high-quality records, understanding how controls satisfy requirements, and enabling rapid, defensible responses to assurance and compliance requests.
- Understand how cybersecurity controls satisfy requirements and maintain evidence demonstrating control effectiveness
- Ensure traceability between requirements, policies, standards, controls, procedures, and evidence artifacts
- Identify documentation gaps, stale evidence, and control assurance improvement opportunities
- Support continuous compliance initiatives and control governance activities
- Maintain centralized repositories for cybersecurity evidence, assessment responses, and assurance documentation
- Develop reusable artifacts that enable rapid responses to audit, customer, and compliance requests
- Partner with control owners to ensure documentation and evidence remain current and accurate
- Maintain audit-defensible records that demonstrate control effectiveness and compliance
- Track and report on assurance activities, compliance initiatives, and control health metrics
- Support framework mapping activities across regulatory, customer, and industry requirements
- Identify recurring issues, inefficiencies, and opportunities to simplify assurance processes
- Contribute to governance dashboards, reporting, and continuous improvement initiatives
- Evidence, control records, and assurance documentation remain current, organized, and readily accessible
- Most information requests can be satisfied using existing documentation, evidence repositories, and reusable assurance artifacts with minimal rework from control owners
- Control compliance evidence can be located, validated, and provided quickly without extensive investigation or stakeholder coordination
- Assurance activities become increasingly standardized, repeatable, and scalable, reducing administrative effort for control owners and assurance teams
Experience supporting cybersecurity compliance, assurance, governance, control management, or related activities, with an understanding of how controls, evidence, and documentation satisfy cybersecurity and compliance requirements
Experience maintaining documentation, evidence repositories, control records, requirements traceability, or other compliance and assurance artifacts
Strong organizational, analytical, and communication skills, with exceptional attention to detail and the ability to manage multiple priorities and deadlines simultaneously
Ability to work independently, drive activities to completion through stakeholder engagement, and maintain accountability for deliverables in a fast-paced environment
Bachelor's degree or equivalent practical experience
3+ Years, Experience with cybersecurity frameworks such as NIST CSF, NIST SP 800-53, ISO 27001, CIS Controls, or PCI DSS
3+Years ,Experience supporting customer assurance requests, audits, assessments, or regulatory reviews
Relevant certifications such as CISM, CRISC, CGRC, or similar are considered an asset
This role is a strong fit for individuals who:
- Enjoy organizing information, documentation, and complex requirements
- Naturally create structure, consistency, and repeatable processes
- Take pride in producing accurate, defensible work products
- Are comfortable becoming a subject matter expert in controls, evidence, and compliance requirements
- Can balance detailed operational work with continuous improvement initiatives
This role may not be a good fit for:
- Individuals seeking hands-on engineering, security operations, threat hunting, or penetration testing work
- Individuals who become frustrated maintaining documentation, evidence repositories, or requirements traceability
- Individuals who prefer building technology rather than governing and assuring it
- Individuals seeking a purely technical cybersecurity role
We are proud to offer a range of incentives to our employees worldwide. These benefits are available to everyone, regardless of grade, and reflect the values we stand for:
Flexibility: Enjoy unlimited vacation, subject to local regulations and business priorities. Benefit from hybrid working arrangements and inclusive policies such as paid time off for voting, bereavement, and sick leave.
Well‑being: Access confidential one‑to‑one support through our Employee Assistance Program, connect with our network of Wellbeing Champions and Gather Groups, and take part in monthly events and initiatives designed to help you thrive—inside and outside of work.
Health & Financial Security: Medical, life and disability insurance, retirement plans, lifestyle, and other benefits.*
Sustainability: Paid time off for volunteering and donation‑matching opportunities to support causes that matter to you.
Inclusion: Get involved in our inclusion communities, such as Count Me In, Culture@Finastra, Proud@Finastra, Disabilities@Finastra, and Women@Finastra—open to everyone who wants to participate and contribute.
Career Development: Access online learning and accredited courses through our Skills & Career Navigator tool.
Recognition: Take part in our global recognition program, Finastra Celebrates, and share your voice through regular employee surveys that help shape our culture and ways of working.
- Specific benefits may vary by location.
At Finastra, each individual is unique—bringing their own ideas, perspectives, cultural backgrounds, and experiences. We learn from one another, value what makes us different, and create an environment where everyone feels included, supported, and able to be their authentic selves.
Be unique. Be exceptional. Help us make a difference at Finastra.