- Home
- United States
- San Diego
- IT Risk Analyst
-
chosen country US
IT Risk Analyst
Ledgent Technology
2021-12-03 08:51:18
San Diego,
California,
United States
Job type: fulltime
Job industry: Banking & Financial Services
Job description
Under the guidance of the Chief IT Compliance and Risk Officer, schedule and participate in risk management meetings for branch risk assessments, vendor risk assessments, and application user access reviews as a representative of IT Compliance and Risk.
• Perform branch risk assessments on a scheduled basis. Assessment activities shall include evaluating physical and logical security posture, conducting training for branch employees, and completion of a branch security risk report.
• Perform vendor risk assessments as assigned. Work with vendors and business owners to gather documentation and develop vendor remediation plans.
• Perform application user access reviews for critical applications. Work with business owners to develop remediation plans.
• Participate in the peer review process for risk assessments. Work with IT Compliance and Risk team members to help ensure the accuracy of risk reports.
• Acquire proficiency within the GRC portal as it pertains to IT GRC risk assessments and risk register functionality.
• Following prescribed SLAs, ensure timely completion of all tasks. Escalate non-compliance of SLAs to the Chief IT Compliance and Risk Officer.
• Create metrics and reports to regularly report on the health of assigned activities
• Assist in the design and presentation of security education and awareness training as required.
• Ensure all assigned programs have documented procedures which are current and relevant for the program.
Other Duties and Responsibilities
• Participate in security and/or risk related committees as required.
• Perform other duties as assigned.
Minimum Qualifications (Education, Experience, Skills)
• Bachelor's Degree in Computer Science; or coursework in IT, Security, or Risk Management.
• 2 years' experience in, IT Security, Vendor Management, or Risk Management.
• Information security and/or risk certification(s) desirable.
• Track record of producing quality deliverables under limited supervision.
• Sufficient organizational skills to be able to prioritize concurrent projects effectively and meet deadlines and commitments.
• Effective written skills, verbal communications, and positive interpersonal skills.
• Basic level Microsoft Word, Excel, and PowerPoint skills.