Senior IT Risk Analyst

Profile

At First Republic, we care about our people. Founded in 1985, we offer extraordinary client service in private banking, private business banking and private wealth management. We believe that personal connections are everything and our success is driven by the relationships we form with our colleagues and clients. You’ll always feel empowered and valued here. 
Incredible teams doing exceptional work, every day
The Audit, Risk, Compliance and Legal groups support First Republic’s business objectives by systematically improving the effectiveness of its risk management, control and governance processes. We own and administer these processes while educating our colleagues to best support them. Our mission is to promote a culture of compliance and to be the best partner we can to our business stakeholders.
**MEMBERS ONLY**SIGN UP NOW***. is looking for an experienced IT risk professional to join its growing Enterprise Risk Management (ERM) team. 
As part of the ERM team, you will have the opportunity to identify, analyze, and report on the most critical IT and vendor management risks at the bank, such as cybersecurity, cloud computing, and business continuity.  You will work closely with our business partners from Information Technology, Digital Channels, and Vendor Management to ensure appropriate controls are designed and implemented, as well as help them integrate risk management principles into their day-to-day business processes.  You will have the opportunity to contribute building a comprehensive inventory of risks and controls at the enterprise level and assist with aggregating key metrics across different lines of business for periodic risk profile updates and reporting.  Annually, you will conduct a variety of risk assessments, identify and monitor key risks for critical technology projects, and solve other complex risk challenges. 
One key component to be successful in this role is to build collaborative and trusting relationships with business partners and colleagues as you will develop partnerships between risk owners (1
st
 Line) and independent reviewers (3
rd
 Line) to provide an aggregate view of risk across the bank.  This role will have an emphasis on contributing to the Bank’s use of data analytics to derive risk management insights.
This ideal candidate is an experienced risk professional who is an excellent communicator and naturally data curious/savvy.  If this sounds like you, we want to hear from you!
What you’ll do as a Senior IT Risk Analyst:
Support the execution of the Enterprise Risk Management (ERM) program by partnering with Information Technology, Digital Channels, and Vendor Management to identify critical IT and vendor risks and document data flow diagrams, control mapping, and relevant action plans.  Provide independent review and challenge for IT and vendor risk assessment frameworks and methodologies, which includes risk-based testing and validation to ensure programs are executed appropriately and exceptions are identified.  Aggregate key IT-related metrics for periodic risk profile updates and reporting.
Participate in annual reviews of IT-related risk assessments, such as the FFIEC Cybersecurity Assessment, NIST Cybersecurity Framework, GBLA, eBanking, etc. 
Assist in identifying, analyzing, and monitoring key risks associated with implementation of critical technology projects (i.e., system conversions and data infrastructure modernization) and assessing its control environment and mitigation plans in place.
Support the roll-out and operationalization of automated tools to enhance execution of the ERM program.  Utilize tools to input data to identify, analyze, and interpret patterns and trends in large datasets, as well as extract data from source systems.
Collaborate with the Enterprise Risk Manager in the execution of all other duties and responsibilities that fall under the key pillars of the ERM program: Governance, Risk Assessment, Issue Management, and Third-Party Risk Management.
You could be a great fit if you have:
· Minimum of 3 years of relevant experience in risk management, information security, or IT operations and knowledgeable in:
o Policies, laws, regulations, and products/services impacting information security within the financial services industry (i.e., GLBA, PII, PCI)
o IT security risk frameworks (FFIEC Cybersecurity Assessment, NIST Cybersecurity Framework, PCI DSS)
· Strong knowledge of information security, cloud computing, and risk management principles
· Strong knowledge of IT operations, technology architecture and infrastructure
· Excellent verbal, written, organizational, presentation, and interpersonal communications skills
· Proven ability to work cross-functionally, building and maintaining trust with internal stakeholders
· Highly motivated and ability to balance multiple competing priorities and meet deadlines
· Strong project management, organizational, and problem-solving skills
· Comfortable working in a dynamic and fast-paced environment with minimal supervision and ability to navigate through ambiguity and drive impact
· Present and explain complex information in a way that establishes rapport, positively influences others, and gains understanding
· Strong intuition for understanding the underlying needs of business partners and stakeholders
· Comfortable working with large datasets and perform analysis on risk metrics
Minimum Qualifications
Bachelor’s Degree in information technology, business administration, risk management, or other related field
Preferred Qualifications
Internationally recognized professional certifications preferred, such as CISA, CISM, ITIL, CISSP, CSA
Communications and/or training experience
Excellent verbal and written skills
Team player
Provides extraordinary service
Furthers the **MEMBERS ONLY**SIGN UP NOW***. culture and values
Job Demands:
Vision must be sufficient to read data reports, manuals, and computer screens
Hearing must be sufficient to understand a conversation at a normal volume, including telephone calls and in-person
Speech must be coherent to clearly convey or exchange information, including the giving and receiving of assignments and/or directions
Position involves sitting most of the time but may involve walking or standing for brief periods of time
Must be able to travel in a limited capacity

Company info

Sign Up Now - FinancialServicesCrossing.com