Apply on Employer Site

Apogem Capital · 3 hours ago

Senior Associate - Cyber Security Risk and Control

New York, United States

Full-time

Hybrid

Mid, Senior Level

$98K/yr - $140K/yr

3+ years exp

Apogem Capital is part of New York Life, a company with a long legacy dedicated to purpose and integrity. They are seeking a Cybersecurity Risk and Controls Senior Associate to enhance their cybersecurity posture by aligning security processes with enterprise risk appetite and regulatory requirements, while also driving continuous improvement in cybersecurity controls.

Financial Services

H1B Sponsor Likely

Responsibilities

Work closely with Technology Risk to support the design and execution of cybersecurity governance processes, including policy reviews, risk reporting, and control testing

Partner with Technology teams to ensure cybersecurity risks are identified, documented, and mitigated appropriately

Coordinate and support internal audits, regulatory exams, and external assessments related to cybersecurity

Prepare documentation and evidence for auditors, regulators, and senior management

Contribute to process enhancements, automation, and control rationalization efforts to improve cybersecurity controls

Identify opportunities to leverage AI and automation in risk monitoring and control testing

Stay abreast of evolving cybersecurity regulations, technologies, and industry standards

Support risk and control self-assessments across cybersecurity domains (e.g., identity management, data protection, incident response, and network security)

Evaluate control effectiveness against NIST CSF, ISO 27001, and other regulatory frameworks

Identify control gaps, track remediation progress, and validate closure activities

Track issues and ensure timely remediation of findings

Qualification

Cybersecurity risk managementInformation security governanceCybersecurity frameworksProfessional certificationsRegulatory compliance experienceRisk assessment methodologiesCollaboration with partnersProcess improvementCommunication skills

Required

Bachelor's degree in cybersecurity, information systems, risk management, or related field; or equivalent practical experience

Minimum of 3 years of experience in cybersecurity risk management, governance, or controls oversight within a financial services or regulated industry

Strong understanding of cybersecurity frameworks (NIST, CIS, ISO), IT general controls, and risk assessment methodologies

Excellent verbal and written communication skills, including experience presenting risk insights to management

Proven ability to work effectively with audit, technology, and business partners

Preferred

Professional certifications such as CISSP, CISA, CRISC, or CISM

Experience supporting regulatory exams (e.g., NYDFS, OCC, NAIC)

Familiarity with one or more of the following: AI/ML risk, cloud security, identity and access management, data protection, infrastructure security, endpoint protection, vulnerability management, application security, cybersecurity operations

Prior experience developing cyber risk metrics or dashboards for leadership

Benefits

Leave programs

Adoption assistance

Student loan repayment programs

Company

Apogem Capital

Apogem Capital is an alternatives investor, with decades of experience investing in the middle market.

Founded in 2022

New York, New York, USA

201-500 employees

https://apogemcapital.com/

H1B Sponsorship

Apogem Capital has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2024 (1)

2022 (1)