Enable job alerts via email!
Risk and Security Analyst - level III
Capital Group
New York (NY)
On-site
USD 80,000 - 120,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
An established industry player is seeking a Technology Risk and Security Analyst to join their dynamic team. This role involves implementing a robust risk management framework and collaborating with various stakeholders to mitigate technology-related risks. You will face intellectual challenges while driving the organization's strategic objectives through effective risk assessment and control measures. The ideal candidate will possess a strong background in IT and risk management, with the ability to balance security needs with business goals. Join this innovative firm and make a significant impact in the field of technology risk.
Benefits
Qualifications
- 5-7 years of experience in technology risk and security management.
- Proven collaboration with internal teams, auditors, and regulators.
Responsibilities
- Support oversight of risk and control capabilities.
- Assist in designing best practices for technology risk management.
Skills
Education
Tools
Job description
"I can succeed as a Technology Risk and Security Analyst at Capital Group."
The Technology Risk organization is responsible for implementing an effective Technology and Security risk management framework that partners with various lines of defense and stakeholders within the organization. This strategic role within the Chief Information Security Officer (CISO) organization aims to drive the achievement of our risk management strategic plan.
This position offers significant intellectual and technical challenges with tremendous opportunities for business impact. Leveraging new and emerging technologies is crucial for Capital Group to realize its long-term strategic objectives. Identifying the risks these technologies present and finding ways to mitigate them will be both challenging and rewarding. A key aspect of this role involves collaborating with internal risk functions to evaluate the effectiveness of Capital's technology policies and controls, as well as providing necessary documentation for external auditors and regulatory examiners.
As a Technology Risk and Security Analyst, your responsibilities include contributing to efforts that identify, assess, track remediation, and manage technology-related risks across Capital Group. You will be a key member of the Technology Risk Team and serve as an adviser to business areas on security and technology risks.
Responsibilities:
- Governance, Risk and Control Assessments
- Support oversight of risk and control capabilities such as:
- IT and security policies, standards, and procedures management
- Threat identification and risk assessment
- Metrics and reporting
- Testing and external assurance oversight
- Remediation management
- Support the first and second lines of defense risk functions and relevant governance committees to develop the technology risk management agenda.
- Assist in designing and implementing best practices and frameworks for technology risk management across the IT Group.
- Help establish and apply technology risk policies and governance processes to minimize losses from failed internal processes, inadequate controls, and emerging risks.
- Assess risks and drive actions to address root causes of operational and technology risk losses, challenging both historical and proposed practices.
- Review control exception requests, ensuring risk mitigation or acceptance strategies are appropriate with managerial input.
- Provide advisory services to technology and business teams on risk and control matters related to projects and initiatives.
- Enable creation and distribution of actionable risk metrics and reports, facilitating stakeholder collaboration for risk analysis, remediation, reporting, and oversight.
- Support the reporting of key risk and control metrics and contribute to risk governance committees to establish a shared risk view.
- Monitor emerging risks and recommend mitigation strategies.
Ideal Candidate:
- Bachelor's degree in IT, risk and security management, computer science, or related field.
- 5-7 years of experience in technology risk and security management in a complex, fast-paced environment.
- Experience managing enterprise-scale infrastructure risks, including Security, Cybersecurity, Operations, and Governance.
- Support for technology risk programs and expertise in agile practices, cloud environments, and big data analytics.
- Proven collaboration with internal teams, auditors, and regulators.
- Strong analytical skills with success in solving ambiguous risk problems.
- Ability to balance risk mitigation with business objectives and act in clients' best interests.
- Experience designing processes for risk assessment and control testing.
- Ability to work independently with sound judgment and autonomy.
Salary ranges vary by location, with additional bonuses and benefits, including a retirement plan contributing 15% of eligible earnings. Learn more about our compensation and benefits on our website.
We are an equal opportunity employer, committed to nondiscrimination and diversity in the workplace, in accordance with applicable laws.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
