Job location: Remote in India
About the role:
We are looking for a Cyber Risk Analyst to strengthen our governance, risk, and compliance posture across the organization. In this role, the Cyber Risk Analyst will drive cyber security audits, vendor security reviews, business continuity (BCP/DR) drills, and security awareness initiatives, while supporting the implementation of frameworks such as NIST Cybersecurity Framework (CSF) and ISO 27001 ISMS. This role is ideal for someone who enjoys working cross‑functionally, can communicate clearly with both technical and non‑technical stakeholders, and is comfortable working remotely with high ownership and accountability.
Cyber Security Audits & Assessments (30%)
- Plan and execute internal cyber security audits and control reviews across applications, infrastructure, and business processes.
- Document findings, assess risk and impact, and track remediation through closure with respective teams.
Vendor and Third‑party Security Reviews (30%)
- Conduct security due diligence for vendors and third parties: review security questionnaires, certifications, and technical controls to ensure they meet organizational requirements.
- Identify and track vendor risks, recommend mitigation measures, and support contractual security requirements where needed.
Business Continuity and BCP/DR drills (25%)
- Work with stakeholders to maintain and test business continuity and disaster recovery (BCP/DR) plans.
- Plan, coordinate, and document tabletop exercises and technical BCP/DR drills, track and follow up on corrective actions.
Cyber Governance and Risk Management (10%)
- Maintain up‑to‑date security policies, standards, procedures, and guidelines, ensuring alignment with NIST CSF, ISO 27001, and relevant regulations.
- Prepare regular reports and dashboards on audit findings, risk status, BCP drill outcomes, vendor risk posture, and ISMS/NIST CSF progress for management.
- Maintain and update the cyber risk register, working with control owners and business stakeholders to identify, assess, and prioritize risks.
- Perform risk assessments (likelihood/impact), propose risk treatment options (mitigate, accept, transfer, avoid), and track treatment plans to closure.
Cyber Security Awareness & Training (5%)
- Develop and deliver cyber security awareness sessions and targeted training for employees, including phishing awareness, secure handling of data, and role‑based security topics.
- Create clear, engaging communication materials (presentations, FAQs, quick guides) to improve security culture.
-
Bachelor's degree in any engineering discipline.
- At least 3 years of experience in cyber governance, risk and compliance domain.
- Experience in implementing security controls and processes across business functions adhering to NIST CSF, ISO 27001 standards.
- Practical experience into at least 70% of the above-mentioned responsibilities.
- Exposure to industry standards and regulations (e.g., SOC 2, ISO 27001, GDPR/DPDP etc.).
- Security certifications such as CISA, ISO 27001 Lead Implementer / Lead Auditor is preferred.
- AI‑governance or AI‑risk credentials such as ISO/IEC 42001 training, NIST AI RMF Architect/Lead Implementer, or recognized AI Security & Governance certifications is a strong plus.
- Good communication and interpersonal skills, with the ability to engage effectively with diverse stakeholders.
-
Professional growth in a dynamic, rapidly expanding, high-social-impact industry
- An open-minded, collaborative culture made up of enthusiastic colleagues who are driven by the challenge of innovation towards profound impact on people and the planet.
- A truly multicultural experience: You will have the chance to work with and learn from people from different geographies, nationalities, and backgrounds.
- Structured, tailored learning and development programs that help you become a better leader, manager, and professional through the Sun King Center for Leadership.
Sun King is the world’s leading off-grid solar energy company, combining cutting-edge product design, fintech, and field operations to deliver energy access for the 1.8 billion people who live without an affordable and reliable electric-grid connection.
Sun King has built a new kind of energy utility: distributed, green, customer-centric, and affordable. We bring clean, reliable, decentralized energy directly into people’s lives — from solar kits that provide first-time energy access to multi-kilowatt systems that serve both off-grid users and grid-connected customers powering larger homes, schools, hospitals, farms, offices, and light manufacturing.
Already, 25 million homes and businesses rely on Sun King for electricity supply and the appliances and services it enables: lighting, televisions, fans, refrigeration, and smartphones.
Sun King combines energy generation, energy-efficient appliances, installation, and financing into one seamless offering. Think of it as a distributed utility, designed for wherever energy is needed and designed to scale with its users as incomes and energy needs grow.
Sun King makes solar products affordable to low-income households and businesses via ‘pay-as-you-go’ (PAYG) purchase financing. Sun King installs solar after customers pay a small deposit. Customers then make small, manageable payments of as little as US $0.14 a day via mobile money or cash.
Instead of paying for expensive, polluting, and health-damaging kerosene for lighting or diesel for power, customers unlock savings through accessing solar power and after one to two years of payments, customers own their solar equipment outright.
Sun King collects payments digitally through mobile money systems and its 35,000 field agents — over 1 million payments each day. To date, Sun King has extended more than $1.4 billion in PAYG loans to customers.
Sun King began by powering homes and businesses with solar systems delivered through PAYG financing. Now, we’re using the same model to make smartphones and clean cooking equipment affordable: helping households connect to the digital economy and transition from wood-based fuels to modern, sustainable alternatives.
Sun King employs 3,500 full-time staff in 14 countries, with specialties spanning product design, data science, logistics, customer service, sales, software, operations, and more — all with a passion to serve off-grid families. Sun King is committed to gender diversity in the workplace. Women represent 42% of Sun King’s workforce.
