Metrics & KRI/KPI Analyst

Responsible for developing, implementing, and maintaining a system of metrics, key performance indicators (KPIs), and key risk indicators (KRIs) to evaluate the performance of information security units, including SOC, risk management, and compliance. Ensures transparency and objectivity in process effectiveness assessments and helps identify areas for improvement.​

​

Key Responsibilities:​

• Developing, agreeing on, and maintaining a set of metrics, KPIs, and KRIs reflecting the effectiveness and risks in information security and SOC operations.​

• Collecting, aggregating, and analyzing data from various sources (SIEM, GRC systems, incident management systems, team reports).​

• Visualizing and presenting analysis results to management and stakeholders, preparing regular and ad-hoc reports.​

• Monitoring deviations in key indicators, identifying trends, and alerting about potential risks.​

• Supporting report automation and implementing BI tools to improve monitoring processes.​

• Collaborating with process owners (e.g., SOC Manager, Risk Manager) to agree on and improve metrics and KRI thresholds.​

• Ensuring alignment of metrics with business goals and regulatory requirements.​

• Participating in retrospectives and process improvements based on metric data.​

Requirements:​

• Higher education in IT, economics, statistics, business analytics, or information security.​

• At least 3 years of experience in data analytics, business analytics, or security performance monitoring.​

• Knowledge and understanding of KPIs and KRIs specific to information security and SOC.​

• Skills in BI tools (Power BI, Tableau, QlikView) and SQL.​

• Understanding of core information security processes and standards (ISO 27001, NIST, ITIL) is a plus.​

• Analytical Thinking: Ability to work with large data sets, identify patterns, trends, anomalies, and produce objective insights.​

• Metrics Methodology: Understanding KPI and KRI principles, ability to formalize metrics that genuinely reflect performance and risk.​

• Technical Skills: Experience with BI platforms, SQL for data querying, understanding ETL principles.​

• Communication Skills: Ability to clearly and effectively present complex data to both technical and non-technical stakeholders.​

• Organizational Skills: Managing multiple data sources, deadlines, and priorities in a dynamic environment.​

• Business Context Understanding: Awareness of the impact of security metrics on business goals and ability to interpret indicators accordingly.​

• Proactivity and Initiative: Ability to propose new metrics and improvements based on data analysis and feedback.

What We Offer:​

• Competitive salary and bonus package.​

• Opportunities for professional and career growth in one of the largest banks in the country.​

• Comprehensive medical insurance (DMS).​

• Employment in accordance with the legislation of the Republic of Uzbekistan.​

• Work schedule: Monday–Friday, 09:00–18:00.