Senior Cyber Technology Risk Analyst

Fidelity Investments•Merrimack, NH

35d•Hybrid

About The Position

The Role Do you want to join a team focused on developing Next-Gen capabilities in Technology Risk? The Enterprise Technology Risk & Analytics (ETRA) group is seeking a passionate, driven and experienced professional to join the Enterprise Cybersecurity Risk team. This exciting role will include partnering with the various enterprise cybersecurity (ECS) functions to execute second line of defense risk activities such as performing risk assessments, evaluating applicability to external audit, testing controls, and supporting the design and implementation of new controls to mitigate emerging risks. This role will require strong networking and relationship management skills to collaborate with the various ECS teams including Application & Infrastructure Security, Workforce & Identity Management, External & Vendor Defense, Threat Detection and Response, Data Protection & Analytics, Information Security Office, and Fraud Intelligence Unit. The Team You will report to the Technology Risk leader and work directly with a team of top-notch technology risk associates. The Technology Risk team oversees the management of controls and the mitigation of risk related to the technology environment, systems, and processes across the enterprise. Technology Risk is part of the broader Legal, Risk and Audit group and partners with Corporate Audit, Enterprise Compliance, and Security to protect the interests of our customers, our employees, and Fidelity's brand. You will also work closely with other ETRA Risk teams and Centers of Excellence as well as Fidelity technology and business owners, Operational Risk teams, and Fidelity external auditors and regulators.

Requirements

4-6 years' relevant work experience in information technology risk, cyber security, controls or audit roles
Bachelor's Degree in Computer Science, Technology, or a related field of study preferred
Experience performing Technology risk assessments, Control assessments or IT Audits or implementing Cybersecurity controls for large scale financial service organizations (cloud, distributed, vendor solutions, mainframe, and network environments)
Demonstrated technical abilities in multiple areas (e.g., technology infrastructure and application controls, cyber security, access management, network and cloud, resiliency, etc.)
Working knowledge of Cloud security and controls and cloud technology environments (AWS/Azure, SaaS, PaaS)
You have a strong knowledge of information technology processes and controls and a comprehensive understanding of risk, quality control and assurance functions.
Your love of solving complex problems, and comfort with ambiguous situations, and your ability to help solution innovative ways to mitigate risk using your advanced analytical and critical thinking skills
Your ability to build and maintain collaborative working relationships with Information Technology and Business personnel to design and assist in the execution of appropriate controls design and monitoring
Your process orientation and understanding of operations and technology enabling you to provide support in the analysis, development and monitoring of controls
Knowledge of Industry standards, frameworks and best practices, such as NIST SP 800-53, COBIT, AICPA Trust Principles, ISO27001, HITRUST is preferred
Your excellent verbal and written communication skills enabling you to prepare and present recommendations to senior management

Nice To Haves

Experience in fraud risk frameworks a plus
Professional technology and associated risk certifications (CISSP, CISA, CRISC, CISM), Certified risk/fraud examiners (CRE, CFE), and/or Cloud Certification(s) (CCSP, CCSK, AWS) preferred
Knowledge of Governance, Risk, and Compliance (GRC) tools, such as Archer or Open Pages is preferred

Responsibilities

performing risk assessments
evaluating applicability to external audit
testing controls
supporting the design and implementation of new controls to mitigate emerging risks

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume