IT Risk Analyst

Top/Must have skills:

• Archer experience
• Microsoft Office suite
• Familiarity with PowerBI, Active directory experience a plus (only have read-only access on this team)
• Strong technical background is required but most importantly someone who s a team player. G
• Experience with Ivanti (ticketing tool) or ServiceNow (they are unlikely to have Ivanti but transferrable skillset with SN (ITSM)

Requirements

• Bachelor's degree, preferably in Computer Science, Information Technology, or similar field
• 4-6 years of technology audit or risk assessment experience, including design assessment and control testing
• Experience coaching and mentoring team members in a professional setting
• Proven ability to articulate and defend the process used, and conclusions reached, in executing risk assessments and control testing
• Thoughtfully and effectively develop recommendations for process and control enhancement/ remediation based on results of assessments performed in a manner that promotes collaboration and acceptance
• Work independently as well as collaborate effectively within a broader team and organization
• Excellent verbal and written communication skills, including the ability to effectively lead and participate in team discussions and meetings with, key stakeholders, team members, and other stakeholders
• Understanding of relevant risk frameworks such as CIS, NIST, COBIT, or ISO
• CRISC, CISSP, CISA or CISM or other industry-recognized risk and information assurance certifications preferred

Nice to Have Skills:

• Certs helpful but not required
• Sailpoint familiarity

Projects they will be working on/ Day-to-day responsibilities:

• Conduct annual audit and control testing, covering over 130 controls each year.
• Validate control language to ensure accuracy and effectiveness.
• Perform testing and escalate any identified issues to control owners.
• Collaborate with control owners to document issues and develop appropriate risk responses.