Cybersecurity Controls Design & Oversight Analyst

Cybersecurity Controls Design & Oversight Analyst

📍 Kraków or Warszawa  - 6 times per month from the office🕒 Full-time | B2B

About the role

We are looking for a Cybersecurity Controls Design & Oversight Analyst to join a global cybersecurity function within a large international financial services environment.

In this role, you will help design, maintain, and oversee cybersecurity controls that protect critical systems, infrastructure, and data across a complex global technology landscape.

You will work closely with control owners, cybersecurity engineers, governance teams, and risk stakeholders to ensure security controls are properly designed, measured, and aligned with regulatory and industry standards.

This role sits at the intersection of cybersecurity, governance, and risk management, ensuring that the organization maintains a strong and effective cybersecurity control environment.

Key Responsibilities

• Support the design, implementation, and maintenance of cybersecurity controls across technology and engineering functions

• Collaborate with Control Owners and governance teams to ensure controls align with internal requirements and industry standards (e.g., NIST 800-53)

• Define and maintain control measurements and indicators in line with risk and control frameworks (e.g., KCIs, KRIs, KPIs)

• Ensure cybersecurity controls comply with legal and regulatory requirements

• Contribute to the development and maintenance of cybersecurity policies, standards, and procedures

• Support reporting and analysis of cybersecurity control performance and effectiveness

• Work with cross-functional teams including engineering, security operations, and risk management

• Participate in governance processes to continuously improve the cybersecurity control framework

What we're looking for

Essential experience

• Strong background in Risk and Control Management, including control design, implementation, and assessment

• Knowledge of cybersecurity principles and technologies (generalist knowledge with specialist expertise welcome)

• Understanding of cybersecurity frameworks and standards such as NIST, CIS, or similar

• Familiarity with risk metrics and control measurements (KCIs, KRIs, KPIs)

• Ability to translate technical cybersecurity concepts into business-friendly language

• Experience writing technical documentation, policies, standards, and procedures

• Strong stakeholder management and communication skills in international environments

• Ability to work effectively both independently and within cross-functional teams

Nice to have

• Knowledge of network security domains

• Relevant cybersecurity certifications

• Experience in large enterprise or regulated environments

• Familiarity with governance processes across multiple lines of defence (2LoD / 3LoD)

What you’ll gain

• Opportunity to work within a large-scale global cybersecurity environment

• Exposure to enterprise cybersecurity governance and risk frameworks

• Collaboration with international technology, engineering, and risk teams

• Hybrid working model with flexibility

• Access to internal learning and development opportunities

Why apply for an Antal job offer?

When your application is successful, you will be supported by a dedicated Consultant who will stay in regular contact with you (via email or phone), help you prepare for interviews with your future employer, and ensure a smooth and professional recruitment process.

About Antal

Antal is a leading recruitment and HR advisory company, present in Poland since 1996 and later expanded to the Czech Republic and Hungary. Across the CEE region, we employ around 150 professionals who deliver a full range of services – from specialist and executive recruitment, employee outsourcing and HR consulting, to employer branding and market research.

Our division-based structure combines deep industry expertise with functional specialisation, enabling us to provide tailored solutions for companies in every sector. We act as a trusted partner for both employers and candidates, sharing our knowledge and guiding them through every stage of the talent journey. We connect exceptional people with the right opportunities and help organisations build successful teams.