Segment Risk Specialist: IV (Lead)
Description:
The selected candidate will perform the following duties:
Responsible for operational and risk strategy programs within the IT segment, focusing on findings/action plan validation within the Technology Risk organization. May execute periodic risk assessments (Risk Control Self Assessments and targeted risk assessments). Evaluate control effectiveness and finding/action plan content and provide first line challenge to finding/action plan content, approach, and details to ensure achievement of targeted objectives and risk mitigation. Deliver timely escalation of all issues requiring attention to senior management. Work with business segment management to ensure that the overall risk function is effectively supporting strategic goals. Collaborate with stakeholder organizations include the enterprise Issues Risk Management Office, segment delivery teams, management, Technology Risk Center of Excellences, and segment finding owners. Innovate processes to support efficient execution of target objectives.
Detailed Description:
Execute Findings and Action Plan validation to ensure content and identified actions are appropriate to resolve identified gap or issue.
Partner with identified stakeholders to ensure timely and accurate resolution of Findings/Action plans with appropriate escalation to management and Segment Risk Officer
Collaborate with Audit/Corporate IT Risk/Segment CIO Leadership teams to address issues with appropriate action plans and target dates that remediate root causes.
Participate in Technology Risk Committee and other oversight and governance groups as assigned.
Execute process improvement to ensure successful and timely remediation of identified issues
Basic Qualifications:
Bachelor's degree
Min 5 years of experience in a Technical Audit or Risk position, primarily in a technology, cybersecurity or infrastructure environment
Expertise in issues management, findings/Action plan development
Preferred Qualifications:
Problem Solving and Critical thinking
Strong Written and Verbal Communication skills
Ability to Identify root cause and proper solution
Strong research and analytical skills
Ability to multi-task and work in a fast pace environment, manage projects
Familiar with SLDC process and project management
Proficient in MS Office
CISA, CISSP, or CRISC certification