Career Central

Connecting people since 1887
Leverage our network to build your career.
Tell us about your professional DNA to get discovered by any company in our network with opportunities relevant to your career goals.

Tech Risk and Controls Associate- Assessment Operations Support



Customer Service, Operations
Bengaluru, Karnataka, India
Posted on Thursday, July 11, 2024

Job Description

Join our team to innovate in risk mitigation, leveraging your skills in a fast-paced, impactful environment.

As a Tech Risk & Controls Associate in Cybersecurity & Tech Controls team, you will be a part of a team that supports the implementation of risk mitigation strategies, controls and action plans for the firm. Working closely with the technology risk teams and cross-functional partners, you contribute your skills and insights to the continuous improvement of risk management methods. As a valued member of the team, you will have the opportunity to learn and grow in a dynamic and fast-paced environment, making a tangible impact on technology risk and controls at the firm.

Job responsibilities

  • Assist in monitoring technology risks, ensuring compliance with firm standards, regulatory requirements, and industry best practices
  • Collaborate with stakeholders to develop and implement risk mitigation strategies, controls, and action plans for technology-aligned processes
  • Monitor and evaluate the effectiveness of implemented controls, contribute to the recommendations for improvements and addressing gaps in risk management
  • Communicate risk-related findings and updates to relevant stakeholders, ensuring alignment with organizational objectives and risk appetite
  • Driving, developing, maintaining high quality process documentation, status reporting and presentations
  • Develop educational / guidance resources for use by key stakeholders, along with facilitating trainings for targeted audience.
  • Monitor and manage the Request for Information (RFI) process to ensure documentation is provided to the external auditors in a timely manner
  • Improve team tools, processes and best practices, identifying potential problems and points of friction and working to find solutions in order to maximize efficiency
  • Drive consistency in execution and enhancements to assessment operations role & responsibilities

Required qualifications, capabilities, and skills

  • Formal training or certification on security engineering solutions concepts and 2+ years applied experience
  • Proficient in risk identification, assessment, and control evaluation, with a strong understanding of industry standards
  • Demonstrated ability to analyze complex issues, develop risk mitigation strategies, and communicate effectively with stakeholders
  • Exposure to risk management frameworks, regulations, and industry best practices
  • Advanced knowledge of multiple IT control and project management practices, plus experience working across large environments
  • Ability to collaborate with high-performing teams and individuals throughout the firm to accomplish common goals
  • Expertise in application and infrastructure high-availability and resiliency architectures
  • Proficiency in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, and data protection
  • Strong organizational-leadership skills, with proven ability to deliver quality results in a deadline-driven environment
  • Detail oriented, quality-focused; with strong documentation and reporting skills

Preferred qualifications, capabilities, and skills

  • CISM, CRISC, CISSP, or other industry-recognized risk and risk certifications preferred
  • Excellent interpersonal skills - verbal communications, written communications, and track record of collaboration
  • Intellectual rigor, emotional intelligence, high energy and a passion for the delivery of high quality project outcomes
  • MS Office applications (PowerPoint, Excel, Word) along with Sharepoint, Confluence, Alteryx and Tableau