Application Control Specialist

About The Position

Requirements

• 3+ years of experience in application support, technology risk, compliance, governance, or control-focused roles
• Project manager skills with strong Development/engineering background to manage Application governance and RISK/Audit related deliverables
• Experience supporting risk, security, and compliance deliverables for enterprise applications
• Working knowledge of: Databases (Oracle, SQL Server)
• Working knowledge of: ETL and data technologies (e.g., Informatica, Hadoop)
• Working knowledge of: Infrastructure platforms (Linux and Windows)
• Familiarity with technology risk management concepts
• Proven ability to complete administrative and non-technical compliance tasks accurately and on time
• Experience working with multiple stakeholders including development teams, infrastructure teams, risk/compliance partners, and vendors
• Strong process-oriented mindset with the ability to track, document, and maintain control evidence
• Excellent organizational skills with the ability to manage multiple applications, deliverables, and deadlines simultaneously
• Strong written and verbal communication skills for responding to audits, inquiries, and compliance requests

Nice To Haves

• Prior experience supporting or managing vendor-hosted or third‑party applications
• Familiarity with enterprise systems of record such as AppHQ or similar application inventory/tools
• Understanding of applicable policies, standards, and local laws, rules, and regulations (LRRs)

Responsibilities

• Completes administrative and non-technical tasks related to risk, security, and other compliance deliverables (e.g., access reviews, assessments, questionnaires, and procedural requirements) on time and per requirements for the application supported
• Tracks and supports the technical security and risk activities performed by the development teams (e.g., remediation of non permitted technology or security vulnerabilities, technical recovery planning, and disaster recovery exercises)
• Ensure that risk, security, and other compliance deliverables are completed on-time and per requirements for the applications they support
• Works with technology infrastructure teams to incorporate infrastructure requirements, including requests for additional storage
• Assists with audit exams and risk assessments for applications
• Works closely with vendors for vendor applications to ensure they meet bank requirements
• Maintains data about the application in AppHQ and other systems of record
• Assists with ad hoc inquiries and questions about applications
• Responsible for application ownership with regard to audit, governance, and maintenance
• Manages to timelines and has matrix management responsibility
• Builds positive give and take relationships with stakeholders
• Requires the ability to prioritize, lead work efforts, interact with application leaders, and engage/influence Third Party stakeholders across the company
• Responsible for responding to audit/regulatory requests, as well as escalating and presenting issues to governance forums as it pertains to Third Party Business Continuity
• Involved preparing the governance documents needed for the new initiatives and enhancements in collaboration with development/test leads, project managers and external vendor partners
• Develops and maintains strong relationships across Enterprise Resiliency, Global Procurement, Global Information Security, as well as FLU Third Party oversight programs