Cyber & Technology Risk Analyst | Cyber and Information Security BU | Risk SBU | June 2026

MCB has exciting opportunities in the Risk Strategic Business Unit (Risk SBU), for dynamic individuals who wish to establish a solid foundation for a career in Information Security, and Cyber and Technology risk management.

As second level controllers on matters pertaining to information security, technology risk, cyber risk and data privacy, our Cyber and Information Security BU contributes heavily towards assessing and mitigating MCB’s risk posture in the face of an increasingly complex technological environment and cyber threat landscape.

We are looking for a Cyber & Technology Risk Analyst to join our team of professionals within the Cyber and Information Security BU within Risk SBU. Your responsibility will be to evaluate risks and security threats to the Bank's assets, define security and technology risk behaviours and practices, and monitor adherences to the set policies and frameworks to meet business, legal and regulatory requirements. Job Vacancy: Cyber & Technology Risk Analyst What you will do: • Partner with stakeholders across the Bank to understand business initiatives, assess associated cyber and technology risks, and support risk-informed decision-making. • Identify, assess and monitor information security, cyber and technology risks, and help strengthen the Bank’s overall control environment and resilience. • Contribute to the development, enhancement and maintenance of information security, cyber and technology risk policies, standards, procedures and guidelines. • Monitor key risk indicators, track emerging issues and recommend practical actions to address control gaps or deviations from risk tolerances. • Support the secure delivery of business and technology initiatives by embedding cyber and technology risk considerations into projects and change activities. • Help maintain the Bank’s readiness to respond to cyber and technology incidents by supporting incident response processes, coordination activities and continuous improvement efforts. • Keep abreast of developments in the cyber threat landscape, industry practices, and regulatory expectations, and translate relevant insights into the Bank’s security and risk frameworks. • Work closely with internal teams, including technical and offensive security stakeholders, to track findings, monitor remediation actions and improve the Bank’s security posture. • Contribute to cyber security awareness and risk culture initiatives to promote appropriate security behaviours across the organisation.

To succeed, you will be required to demonstrate the following competencies: • Strong analytical and problem-solving skills, with the ability to interpret complex information, assess cyber and technology risks, and form sound judgements. • Clear written and verbal communication skills, with the ability to explain technical or risk-related matters to different audiences in a concise and effective way. • Good planning and organisational skills, with the ability to manage priorities, work independently and deliver high-quality output within deadlines. • A proactive and improvement-oriented mindset, with the ability to identify issues, challenge constructively and drive practical solutions. • Curiosity and adaptability, with a genuine interest in emerging cyber threats, evolving technologies and changing regulatory expectations. We are looking for candidates who have at least:

Either • A Bachelor’s degree in Information Technology or Cyber/Information Security or an equivalent field of study; • 5 years' working experience in information technology/cyber risk management.

Or • 8 years' working experience in information technology/cyber risk management.

And Holding Information Security, Cyber Security and/or Technology Risk related certifications constitutes an advantage.

In addition, demonstrated proficiency in the following is required: • Data analysis and reporting, including the ability to develop dashboards, metrics and insights using Power BI or similar analytics tools. • Microsoft Office applications, particularly Excel, Word and PowerPoint. • Core IT and technology domains, including operating systems, virtualisation, networking, databases and application environments. • Common operating systems and platforms such as Windows, Linux and enterprise infrastructure environments. • Databases and related technologies, including Microsoft SQL Server, Oracle or similar enterprise database platforms. • Network fundamentals, communication protocols and security-relevant infrastructure concepts.

A combination of both qualifications & experience will be considered. Should this opportunity match your career aspirations, skills and competencies, click on ‘Apply’ to complete your online application. Please ensure all required information is accurately entered in relevant sections. Any incomplete application will not be considered. Kindly attach a complete CV when applying. As part of the recruitment process, candidates will be required to provide a valid Certificate of Character of less than 3 months and two professional references. The deadline for submission of application is 15 June 2026. Management reserves the right not to appoint anyone following this advert.

#LI-Onsite