Risk and Control Technical PM - job id 32529

Your Way To Work™

Risk and Control Technical PM

Market $$$ F/T Employee

Midtown or Downtown

How to Apply


George Konetsky


(646) 876-9562


(212) 616-4800 ext-180

A F/T position at a major U.S. financial institution.

Pay Options: Looking to hire F/T and Contractors $200+ k

Contact George Konetsky. call (646)876-9562 / (212)616-4800 ext.180 or email george@sans.com with the Job Code GK32529 or Click the Apply Now button ().

Location: Financial District.

Skills required for the position: PROJECT MANAGEMENT, RISK MANAGEMENT, Information Security, Risk and Control Self-Assessment.

Optional (not required):IT Audit, INFRASTRUCTURE

Detailed Info:

We are seeking a Full Time / Contractor -RTH ideal, Project Manager, within IT/ Information Systems, to perform assessments of processes and controls, enable delivery of our risk and control portfolio and with the ability to track and drive implementation of some of those recommendations.

Responsibilities include:

  • Defining and evaluating problems and planning effective solutions; defining the scope and impact of projects and effectively communicating the impact on the organization; establishing project tasks, timelines and budgets and effectively managing them.

  • Analyze existing technology controls. Identify and remediate gaps by partnering with development teams.

  • Work with component owners to align strategic roadmaps with overall risk and control framework. Work with control owners to streamline and enhance existing governance processes and frameworks. Enforce and enable compliance with firm-wide risk initiatives.

  • Develop Subject Matter Expertise in a risk domain.

  • Assist with the quality assurance reviews of various control assessment programs.

  • Identify and drive opportunities for process improvements to deliver increasing efficiencies.

  • Own and maintain relationships with a wide range of stakeholders (project managers, developers, internal and external control partners)

Development/Computing Environment:

  • Prior experience in IT risk management, audit or similar working closely with development


  • Ability to bridge enterprise control requirements with individual environment for applicability.

  • Strong verbal and written communication skills to effectively lead technical discussions.

  • Ability to work independently in a fast-paced environment.

  • The desire and drive to own the responsibility and to accomplish positive technical results.

Good working knowledge or experience with some of the following risk domains:

o Database and application security

o Access administration

o Infrastructure security

o Security event logging and monitoring

o Database/Application security protocols

o Secure software/code development

o Change management; vulnerability management

o Disaster recovery

Job Id: 32529