Sr. IT Risk & Compliance Analyst (ITGC)

The position involves collaborating with IT personnel to understand operational processes, identifying process improvement opportunities, control gaps, and providing control recommendations. The individual will be responsible for developing and maintaining process and control documentation, including narratives and flowcharts for key IT processes. Additionally, the role includes assisting with the implementation and execution of processes within the IT Risk & Compliance group to support the proactive evaluation, identification, and monitoring of IT risks and controls. The candidate will help build an IT control testing program to periodically evaluate IT controls for effectiveness and ensure alignment with control frameworks. Continuous monitoring of IT controls and working with data for efficient control testing will also be part of the responsibilities. The individual will maintain the IT policy and procedure library, perform reviews to validate compliance with IT policies and regulatory requirements, lead periodic risk and control self-assessments, and collaborate with 2nd and 3rd lines to maintain alignment with risk position and control testing. The role also involves assisting IT personnel with the development, maintenance, and monitoring of KRIs and KPIs, providing feedback and recommendations when tolerances are exceeded or metrics require revision, and assisting with other duties as assigned.