Senior Risk Analyst
SignifydSalary not specified
Full Time
Senior (5 to 8 years)
Not SpecifiedCompensation
Senior (5 to 8 years)Experience Level
Full TimeJob Type
UnknownVisa
Financial ServicesIndustries
Requirements
- 24 months as Technical Coordinator/Associate Consultant
- 5–8 years of IT Audit experience, including but not limited to Cyber Resilience, Cybersecurity, Risk Management, IT Risk and Control, and/or IT Audit
- CISSP, CISM, CISA, CRISC, or equivalent certifications highly preferred
- Strong working knowledge of inherent cyber risks in the financial services industry
- Cloud, MFA, password vaulting (e.g., CyberArk), and Secure SDLC experience
- Analytical and communication skills required to summarize and analyze complex information
- Organizational skills required to coordinate risk-related activities with peers and senior executives
- Advanced Microsoft Office 365 skills and familiarity with risk management/GRC platforms (e.g., ServiceNow, Fusion) to track, manage, and report control issues
Responsibilities
- Test, validate, and assert to Business and Application Owners the control testing methodology and test procedures, ensuring that all documentation is accurate and complete
- Perform 2LOD validation work, including plan preparation, maintenance of workpapers, identification of findings, and reporting results to risk committees
- Manage day-to-day risk issues related to the design and implementation of new controls, working with various teams to ensure proper execution
- Examine cyber and non-cyber risk controls, evaluate their design and operational effectiveness, determine exposure to risk, and partner with the business to develop remediation strategies
- Assess risk as a Second-Line governance role through the Risk and Control testing, Risk Identification, and Change Initiative Risk Assessment processes, as applicable
- Provide Second-Line risk and control testing findings to Risk Management leadership and risk committees, ensuring timely communication of identified issues
- Demonstrate understanding of the ‘Three Lines of Defense’ governance model and apply it consistently throughout testing activities
- Effectively communicate operational and technical findings and control issues to executive and business leadership, using language relevant to and understandable by the business
- Apply strong risk assessment framework knowledge and experience to identify key risks and controls, performing thorough risk assessments
- Exhibit strong project management skills, adapting to change quickly, managing multiple tasks, and demonstrating flexibility in prioritization
- Maintain a strong working knowledge of banking/financial regulatory requirements to ensure appropriate levels of testing
Skills
Controls Testing
Risk Assessment
Cybersecurity
Information Security
Control Validation
Risk Management
Workpapers
Findings Reporting
Remediation Strategies
Second Line of Defense
Governance
Change Management
Northern Trust
About Northern Trust
N/AHeadquarters
N/AYear Founded
N/ACompany Stage
Related Jobs
RemoteRemoteSr. Information Security Analyst
ValonSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSenior Compliance Analyst
EarnestSalary not specified
- Full Time
- Junior (1 to 2 years)
RemoteIT Risk & Compliance Analyst
AngiSalary not specified
- Full Time
- Mid-level (3 to 4 years)
RemoteSecurity Governance Risk & Compliance (GRC) Analyst
Virtru$130,000 - $180,000/year
- Full Time
- Senior (5 to 8 years), Expert & Leadership (9+ years)
RemoteMortgage Underwriting Quality Control Analyst - Credit Quality
M&T BankSalary not specified
- Full Time
- Mid-level (3 to 4 years)
RemoteSenior Risk Analyst - Enterprise Risk Management
DeelSalary not specified
- Full Time
- Senior (5 to 8 years)
RemoteSr. IT & Cyber Operations Analyst (Remote)
CrowdstrikeSalary not specified