IT Risk Lead
$175,000 - Per Year F/T Employee
Downtown, NYC West
A F/T position at a major U.S. financial institution, in IT Risk Management.
Pay Options: F/T Employee.
Contact George Konetsky. call (646)876-9562 / (212)616-4800 ext.180 or email firstname.lastname@example.org with the Job Code GK32828 or Click the Apply Now button ().
Location: Downtown, NYC West.
Skills required for the position: IT Audit, SOX, SDLC.
Optional (not required):TECHNOLOGY RISK
Provide analytical support in executing internal control discipline and operational excellence within a LOB/ECF.
Gather and organize data in order to monitor and test the effectiveness of key controls and status of mitigation and action plans.
Prepare documentation for the tracking, monitoring, and escalation of risk related issues to management.
Acts as an ambassador of the risk culture. Incumbents typically have over 5+ years of risk management and/or LOB/ECF experience. May manage staff.
Partner with key Technology Managers to monitor and manage various risk programs across the firm
Proactively manage risk metrics - focus on "at risk" or "exceeding threshold risks" - work with technology management to address root causes and remediate as required
Support technology teams in supporting firm-wide risk programs (e.g. delivering requested artifacts, verify completeness / accuracy)
Partner with technology teams in the execution of Risk Control Self Assessments (RCSA)
Identify root causes of reported risks and partner to design remediation plans
Coordination with Technology Management in monitoring the execution, collection and completion of SOX control activities Partner with Technology Management and internal audit to identify and report self-identified audit issues
Provide support to Technology Management on all phases of audit activities and ensure active engagement with technology management to meet audit objectives.
7-10 years Technology Audit or Technology Risk experience
Experience in the execution of Technology Risk Assessments, Audits and SOX 404 and 302 testing
Solid understanding of a risk control framework (i.e., inherent risks, control procedures, residual risk, etc.)
Ability to identify relevant key risk indicators to measure risk exposures (metrics reporting)
Ability to work collaboratively by building consensus and influencing decision making to foster forward progress with projects and initiatives.
Strong ability to analyze data to identify thematic issues / areas requiring improvement
Persistency, poise and perseverance to get things accomplished under pressure and within the set timelines
Interest and track record of ensuring accuracy, clarity and quality of work with attention to detail
Deputize for senior managers in various governance forums and committees in both technology and business at a FICC level
Understanding and knowledge of NFRR and transaction reporting compliance including industry regulations
Understanding of Global records management principles and their implications to the business
Detailed knowledge of SDLC and application governance
Ability to identify and validate operational losses and the parties impacted and responsible
Detailed understanding of Information security and relevant programs and disciplines.
Understanding of business continuity and recovery practices and ability to partner with IT teams.
The position offers competitive compensation package.
Job Id: 32828