Cybersecurity Controls Design & Oversight Analyst
ref nr: 71/3/2026/PK/94708
In Antal we have been dealing with recruitment for over 20 years. Thanks to the fact that we operate in 10 specialised divisions, we have an excellent orientation in current industry trends. We precisely determine the specific nature of the job, classifying key skills and necessary qualifications. Our mission is not only to find a candidate whose competences fit the requirements of the given job advertisement, but first and foremost a position which meets the candidate’s expectations. Employment agency registration number: 496.
Cybersecurity Controls Design & Oversight Analyst
📍 Kraków or Warszawa - 6 times per month from the office
🕒 Full-time | B2B
About the role
We are looking for a Cybersecurity Controls Design & Oversight Analyst to join a global cybersecurity function within a large international financial services environment.
In this role, you will help design, maintain, and oversee cybersecurity controls that protect critical systems, infrastructure, and data across a complex global technology landscape.
You will work closely with control owners, cybersecurity engineers, governance teams, and risk stakeholders to ensure security controls are properly designed, measured, and aligned with regulatory and industry standards.
This role sits at the intersection of cybersecurity, governance, and risk management, ensuring that the organization maintains a strong and effective cybersecurity control environment.
Key Responsibilities
-
Support the design, implementation, and maintenance of cybersecurity controls across technology and engineering functions
-
Collaborate with Control Owners and governance teams to ensure controls align with internal requirements and industry standards (e.g., NIST 800-53)
-
Define and maintain control measurements and indicators in line with risk and control frameworks (e.g., KCIs, KRIs, KPIs)
-
Ensure cybersecurity controls comply with legal and regulatory requirements
-
Contribute to the development and maintenance of cybersecurity policies, standards, and procedures
-
Support reporting and analysis of cybersecurity control performance and effectiveness
-
Work with cross-functional teams including engineering, security operations, and risk management
-
Participate in governance processes to continuously improve the cybersecurity control framework
What we're looking for
Essential experience
-
Strong background in Risk and Control Management, including control design, implementation, and assessment
-
Knowledge of cybersecurity principles and technologies (generalist knowledge with specialist expertise welcome)
-
Understanding of cybersecurity frameworks and standards such as NIST, CIS, or similar
-
Familiarity with risk metrics and control measurements (KCIs, KRIs, KPIs)
-
Ability to translate technical cybersecurity concepts into business-friendly language
-
Experience writing technical documentation, policies, standards, and procedures
-
Strong stakeholder management and communication skills in international environments
-
Ability to work effectively both independently and within cross-functional teams
Nice to have
-
Knowledge of network security domains
-
Relevant cybersecurity certifications
-
Experience in large enterprise or regulated environments
-
Familiarity with governance processes across multiple lines of defence (2LoD / 3LoD)
What you’ll gain
-
Opportunity to work within a large-scale global cybersecurity environment
-
Exposure to enterprise cybersecurity governance and risk frameworks
-
Collaboration with international technology, engineering, and risk teams
-
Hybrid working model with flexibility
-
Access to internal learning and development opportunities
