*** IT Security / Risk Assessment Analyst, NOT 3rd Party Risk Analyst ***
Direct client ( financial company ) is looking for IT Security / Risk Assessment Analyst / Consultant responsible for execution of various Risk Assessments, reporting the results and tracking of open issues in accordance with the defined procedures .
Ensure assessments, project and task deliverable dates are met
Conduct Information Security, Information Technology, Cyber Security, application risk, Disaster Recovery Planning, Risk Control Self-Assessment, Onsite (i.e. data center) assessment and other IT risk assessments
Perform assessments of an IT Risk Acceptance request to identify risks and mitigating controls as well as follow-up on necessary approvals
Document observations for existing IT control processes and identified issues in assessment questionnaire during disaster recovery planning exercises
Prepare monthly KRI reports using Excel
Discuss findings with stakeholders and follow up on agreed upon action plans and target completion dates
Have the ability to determine if proposed technology solutions have cross-functional impact or risks to other units and to identify areas of efficiency
Provide appropriate information share and updates with senior management and other key stakeholders Performing various IT Risk assessments and risk associated projects (i.e. identify framework workflow process; perform gap analysis, etc.) defined by the manager
Provide root cause analysis, along with conclusion on production issues
Strong hands-on IT Security / Risk Assessment Analysis experience, NOT 3rd Party Risk analysis.
High proficiency in MS Excel (i.e. pivot tables, vlookups, etc.).
Bachelor's Degree, Experience in managing the completion of assessments is essential.
PMP not required but preferred
Self-starter is a MUST, able to work with limited instructions.
Be able to work with agility due to change in directions without impacting to the delivery date
Minimum of 5 years hands on experience in performing IT assessments, required
Strong business, analytical, quantitative, problem-solving and decision making skills
Solid understanding of project life cycle AND risk management concepts and processes.
Strong IT Risk management skills
Minimum of 5 years track record of delivery of major risk and finance initiatives at large and complex financial institutions, preferred
Minimum of 5 years in financial services industry experience preferred but not required
Exceptional stakeholder management skills including experience liaising with internal clients who are performing services
Superior communication skills: both written and oral with technical and non-technical staff
Tolerance and understanding of multiple cultures
Working knowledge of Archer and SeviceNow is a plus but not required.
Working knowledge of Outlook
Able to think 'out of the box'
Completes administrative tasks on a timely basis