CareerStation
KI

Application Security Analyst

Kiya.ai
Mumbai5-11 LPA Posted 25 Jun 2025
FULL TIME
Cybersecurity
Microsoft Office
Auditor
Cloud Security

Job Description

Application Security Analyst

Company: Kiya.ai

Industry: Financial Services / BFSI

Job Type: Full-Time

Work Mode: Hybrid


Kiya.ai is seeking a seasoned and driven Security Analyst to lead our Third-Party Technology Risk Management efforts. This opportunity is for professionals with strong experience in managing vendor risks, IT security frameworks, and global compliance standards within a financial services environment.

Key Responsibilities:

  • Conduct and lead Third-Party Risk Assessments for both new and existing vendors.
  • Evaluate IT security controls using industry frameworks such as NIST, ISO 27001, SOC 2, and GDPR.
  • Develop and manage vendor risk dashboards and reports for senior stakeholders.
  • Collaborate with cross-functional teams across various regions to ensure compliance and effective risk mitigation.
  • Ensure vendors meet our cybersecurity, network, and cloud security expectations.
  • Coordinate vendor audits, risk reviews, and maintain detailed documentation.
  • Work effectively with multicultural and cross-time-zone teams.
  • Communicate risk findings and remediation plans clearly to senior management.
  • Maintain high standards of confidentiality, integrity, and professionalism.

Required Skills & Qualifications:

  • Bachelor's degree in IT, Information Security, or a related field.
  • Certifications such as CISSP, CISA, CISM, CRISC, or ISO 27001 Lead Auditor.
  • In-depth knowledge of NIST, ISO 27001, PCI DSS, SOC 2, COBIT, and GDPR.
  • Strong grasp of cybersecurity, network, and cloud security principles.
  • Experience working with compliance, procurement, and legal teams.
  • Excellent verbal and written communication skills for senior stakeholder engagement.
  • Proficient in Microsoft Word, PowerPoint, and Project.
  • Proven ability to manage conflict, build strong vendor/client relationships, and influence decision-making.

Preferred Skills (Nice to Have):

  • Familiarity with GRC tools (e.g., Archer, ServiceNow, OneTrust).
  • Experience working with cloud service providers (AWS, Azure, GCP).
  • Knowledge of outsourced IT risk, data privacy, and regulatory trends.

Required Skills

CybersecurityMicrosoft OfficeAuditorCloud Security
Join WhatsApp Channel