What are the responsibilities and job description for the Senior Security Analyst (contract) position at BNY?
At BNY, our culture allows us to run our company better and enables you to grow and succeed. As a leading global financial services company at the heart of the global financial system, we influence nearly 20% of the world’s investible assets. Every day, our teams harness cutting-edge AI and breakthrough technologies to collaborate with clients, driving transformative solutions that redefine industries and uplift communities worldwide.
Recognized as a top destination for innovators and champions of inclusion, BNY is where bold ideas meet advanced technology and exceptional talent. Together, we power the future of finance – and this is what is all about. Join us and be part of something extraordinary.
Job Summary:
We are seeking a Security Analyst to support enterprise cyber control effectiveness and application security posture at BNY. This role will focus on identifying control gaps, driving vulnerability remediation, and partnering with application teams to improve adherence to cybersecurity policies and standards across the organization. The position combines analytical investigation, stakeholder engagement, and project coordination to ensure applications remain compliant with evolving security requirements. This is a Pittsburgh-based role with a hybrid schedule (4 days onsite, 8:00 AM – 5:00 PM ET).
Key Responsibilities:
This role offers the opportunity to work at the intersection of cybersecurity, analytics, and enterprise technology governance within a highly collaborative environment. You’ll partner with hundreds of technologists across cybersecurity and application teams, gaining exposure to diverse technologies while directly influencing the organization’s security posture. The position is ideal for naturally inquisitive technologists who enjoy investigating complex problems, engaging stakeholders, and driving measurable risk reduction across large-scale platforms. With strong mentorship and a structured onboarding approach focused on learning the environment and control landscape, this role provides meaningful growth for candidates looking to deepen their cybersecurity and enterprise risk expertise.
At BNY, our culture speaks for itself, check out the latest BNY news at:
BNY Newsroom
BNY LinkedIn
Here’s a few of our recent awards:
America’s Most Innovative Companies, Fortune, 2025
World’s Most Admired Companies, Fortune 2025
“Most Just Companies”, Just Capital and CNBC, 2025
Pay Rate Range
54.4 - 68 USD hourly
Additional Notes
Applications will be accepted on an ongoing basis.
This posting is for a contract assignment with Tundra Technical Solutions to provide services to Bank of New York (BNY). Please note that this is not a full-time employment opportunity. Candidates selected for this role will be engaged as contractors for the specified duration of the project. For any inquiries regarding the terms of the contract or engagement, please contact Tundra Technical Solutions directly.
Benefits Information
Optional benefits offering include medical, dental, vision and retirement benefits via Tundra Technical Solutions.
Recognized as a top destination for innovators and champions of inclusion, BNY is where bold ideas meet advanced technology and exceptional talent. Together, we power the future of finance – and this is what is all about. Join us and be part of something extraordinary.
Job Summary:
We are seeking a Security Analyst to support enterprise cyber control effectiveness and application security posture at BNY. This role will focus on identifying control gaps, driving vulnerability remediation, and partnering with application teams to improve adherence to cybersecurity policies and standards across the organization. The position combines analytical investigation, stakeholder engagement, and project coordination to ensure applications remain compliant with evolving security requirements. This is a Pittsburgh-based role with a hybrid schedule (4 days onsite, 8:00 AM – 5:00 PM ET).
Key Responsibilities:
- Cyber Hygiene & Control Oversight: Support 27 cyber control domains by assessing application compliance, identifying gaps, and escalating risk where controls are not effectively implemented.
- Vulnerability & Risk Remediation: Drive remediation efforts across application teams, track aging vulnerabilities, manage exceptions, and promote continuous improvement in cyber hygiene practices.
- Data Analysis & Reporting: Analyze complex datasets, produce dashboards and ad hoc reporting, and synthesize findings into clear remediation plans and leadership updates.
- Stakeholder Engagement & Governance: Partner with Information Security, IAM, and cross-functional technology teams to enforce standards, remove roadblocks, and ensure alignment with risk and compliance requirements.
- Project Coordination & Issue Resolution: Identify operational blockers, coordinate countermeasures, and maintain momentum on remediation initiatives while monitoring shifting remediation statuses and deadlines.
- Application Advisory & Coaching: Educate and guide application owners on security expectations, hygiene weaknesses, and sustainable control practices through targeted outreach and awareness efforts.
- Bachelor’s degree in Computer Science or related discipline (advanced degree preferred) or equivalent experience
- Experience with asset/configuration management, vulnerability management, and identity & access management
- Strong analytical mindset with the ability to synthesize automated and self-identified risk findings
- Familiarity with GRC and information security practices; financial services experience is a plus
- Proficiency with data analysis and reporting tools such as SQL, Power BI, Tableau, Qlik, Business Objects, DB2, and advanced Excel/PowerPoint
- Understanding of SDLC and its impact on security controls and governance
- Strong communication, stakeholder management, and independent decision-making skills
- Logical and physical database design experience and comfort working with complex data environments
- Exposure to enterprise cyber control frameworks and application security governance
- Background in engineering, development, architecture, or systems analysis demonstrating strong technical curiosity and problem-solving ability
- Project management experience supporting remediation initiatives and cross-team coordination
This role offers the opportunity to work at the intersection of cybersecurity, analytics, and enterprise technology governance within a highly collaborative environment. You’ll partner with hundreds of technologists across cybersecurity and application teams, gaining exposure to diverse technologies while directly influencing the organization’s security posture. The position is ideal for naturally inquisitive technologists who enjoy investigating complex problems, engaging stakeholders, and driving measurable risk reduction across large-scale platforms. With strong mentorship and a structured onboarding approach focused on learning the environment and control landscape, this role provides meaningful growth for candidates looking to deepen their cybersecurity and enterprise risk expertise.
At BNY, our culture speaks for itself, check out the latest BNY news at:
BNY Newsroom
BNY LinkedIn
Here’s a few of our recent awards:
America’s Most Innovative Companies, Fortune, 2025
World’s Most Admired Companies, Fortune 2025
“Most Just Companies”, Just Capital and CNBC, 2025
Pay Rate Range
54.4 - 68 USD hourly
Additional Notes
Applications will be accepted on an ongoing basis.
This posting is for a contract assignment with Tundra Technical Solutions to provide services to Bank of New York (BNY). Please note that this is not a full-time employment opportunity. Candidates selected for this role will be engaged as contractors for the specified duration of the project. For any inquiries regarding the terms of the contract or engagement, please contact Tundra Technical Solutions directly.
Benefits Information
Optional benefits offering include medical, dental, vision and retirement benefits via Tundra Technical Solutions.