Senior Technology Risk Analyst

About The Position

Requirements

• Bachelor’s Degree preferred or equivalent education and related training
• Minimum of 5 years of experience with responsibilities in privacy, digital banking, compliance, risk management, and/or audit.
• Knowledge of privacy and cybersecurity compliance laws, rules, regulations, and risks such as GLBA, PCI-DSS, etc.
• Knowledge of information security and privacy frameworks, standards, and best practices, such as NIST, ISO, COBIT, GDPR, CCPA, etc.
• Demonstrated knowledge in area of focus
• Experience with conducting legal or regulatory research
• Experience drafting policies, procedures, job aids
• Experience providing risk management guidance
• Experience with interacting with audit, external accountant, and regulators
• Advanced analytical skills
• Ability to be a self-starter, flexible, and adaptive
• Strong interpersonal skills with the ability to work collaboratively and with people at all levels for the Bank.
• Possess a strong competence to remain objective while providing healthy, constructive, and productive challenge, be highly supportive of alternative viewpoints, remain strategic while defining risk management expectations, and demonstrate the ability to build consensus through influence, steadfastness, and partnership.
• Strong communication and presentation capabilities at the executive/board level

Responsibilities

• Conduct regulatory IT compliance and risk assessments to identify and address technology, data, compliance, and cybersecurity risks arising from both internal bank operations and third-party engagements.
• In tandem with these efforts, establish and sustain robust key risk indicators, monitoring mechanisms, assurance procedures, reporting frameworks, and additional controls, implementing select measures within the first line of defense and reinforcing them through targeted training and awareness initiatives.
• Deliver complex information and metrics clearly and confidently across verbal, written, and visual formats, adapting communication for varied audiences, including senior leadership and potentially the Board of Directors.
• Support and advise on the Bank’s technology products and services, focusing on new product risk management and coordinating closely with 2nd and 3rd line functions.
• Coordinate with internal and external stakeholders, such as IT, legal, compliance, audit, and business units, on information security and privacy matters and assist with audits and exam preparation and execution.
• Collaborate with the first line to assess and address privacy and cybersecurity risk and compliance concerns involving the Bank’s technology and digital operations, including third-party involvement. This entails analyzing and applying applicable laws, regulations, policies, and guidance to create or improve processes and programs, as well as to detect any deficiencies.

Benefits

• Team members accrue paid time-off (PTO), receive Holiday (PTO) and are eligible to participate in the bank’s Health and Wellness benefits including Medical, Dental and Vision Plans, Flexible and Health Savings Accounts, and a 401(k) Retirement Plan.
• In addition, the company provides Disability Insurance, an Employee Assistance Program, and Basic Life Insurance.
• Company sponsored Tuition Disbursement and Loan Repayment programs are also available.
• Voluntary benefits include Supplemental Life Insurance, Accident, Critical Illness, Hospital Indemnity and Legal plans.