As a Technology Risk & Controls Analytics Lead in Cybersecurity & Technology Controls, you will be responsible for identifying, and mitigating compliance and operational risks in line with the firm's standards. You will also provide subject matter expertise and technical guidance to technology-aligned process owners, ensuring that implemented controls are operating effectively and in compliance with regulatory, legal, and industry standards. By partnering with various stakeholders, including Product Owners, Business Control Managers, and Regulators, you will contribute to the reporting of a comprehensive view of technology risk posture and its impact on the business. Your advanced knowledge of risk management principles, practices, and theories will enable you to drive innovative solutions and effectively manage a diverse team in a dynamic and evolving risk landscape.
Job responsibilities
- Utilize expertise in data analysis to ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations
- Perform hypothesis testing, regression analysis, and other statistical techniques to interpret complex data sets and provide actionable risk and control insights
- Enhance reporting with quantitative and qualitative thematic analysis of controls, policies, issue management, and measurements, offering senior management insights into control effectiveness and inform governance work
- Develop and enhance workflows, collecting data from disparate data sources and summarizing the data as defined in requirements gathering with the stakeholders. Follow best practices to ensure that data is sourced from authoritative data sources
- Develop and maintain robust relationships, becoming a trusted partner with LOB technologists to facilitate cross-functional collaboration and progress toward shared goals
Required qualifications, capabilities, and skills
- 5+ years of experience developing for data analytics projects related to technology services
- Bachelor’s degree in MIS or Computer Science, Mathematics, Engineering, Statistics or other quantitative or financial subject areas
- Expertise with business intelligence tools like Power BI or Tableau and data collection tools such as Alteryx or Python
- Demonstrated ability to identify and translate technology insights in a clear and concise manner for diverse stakeholders
Preferred qualifications, capabilities, and skills
- CISM, CRISC, CISSP, or similar industry-recognized risk and risk certifications are preferred
- Experience or equivalent expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation
- Familiarity with risk management frameworks, industry standards, and financial industry regulatory requirements
- Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies