Technology Risk Analyst Resume Samples

4.8 (126 votes) for Technology Risk Analyst Resume Samples

The Guide To Resume Tailoring

Guide the recruiter to the conclusion that you are the best candidate for the technology risk analyst job. It’s actually very simple. Tailor your resume by picking relevant responsibilities from the examples below and then add your accomplishments. This way, you can position yourself in the best way to get hired.

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

Resume Builder
CHOOSE THE BEST TEMPLATE - Choose from 15 Leading Templates. No need to think about design details.
USE PRE-WRITTEN BULLET POINTS - Select from thousands of pre-written bullet points.
SAVE YOUR DOCUMENTS IN PDF FILES - Instantly download in PDF format or share a custom link.

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

Create a Resume in Minutes
AD
A DuBuque
April
DuBuque
1316 Satterfield Causeway
Los Angeles
CA
+1 (555) 510 3090
1316 Satterfield Causeway
Los Angeles
CA
Phone
p +1 (555) 510 3090
Experience Experience
New York, NY
Technology Risk Analyst
New York, NY
Muller Inc
New York, NY
Technology Risk Analyst
  • Working familiarity with Consumer Financial Web Services, Credit Card Processing, and mobile software platforms
  • Ensuring Service Level Agreements are satisfied
  • Monitoring and ensuring client satisfaction
  • Ensuring communication is customer focused and professional; responsible for local communications
  • Developing and maintaining good relationships with business partners
  • Promoting security awareness across the firm on an on-going basis
  • Ensuring successful implementation of action plans to address risk and control issues
Los Angeles, CA
Associate Technology Risk Analyst
Los Angeles, CA
Mann Inc
Los Angeles, CA
Associate Technology Risk Analyst
  • Perform access provisioning tasks and understand the system inventory intricacies
  • Execute access review process for the business unit
  • Participate in Access Operations initiatives/projects
  • Contribute to security initiatives/projects
  • Contribute to the implementation of business function Job Roles
  • Review non-standard access requests
  • Escalate highly sensitive requests to the relevant Information Security Officer (ISO)
present
Houston, TX
Senior Technology Risk Analyst
Houston, TX
Berge, Spinka and Windler
present
Houston, TX
Senior Technology Risk Analyst
present
  • Provide regular reports on the progress of risk management activities to the Technology Risk & Control Manager and business partners
  • Working with development and operational technology teams to understand and improve the risk posture our critical application infrastructure
  • Provide regular reports on the risk management status / activities to the Technology Risk & Control Manager and business partners
  • Provide consultation and interpretation of Global I/T risk management policies
  • To assist in the identification, monitoring, measuring and management of technology risks
  • Assists business and technology stakeholders in the identification, monitoring, measuring and management of technology risks
  • Responds to security inquiries, provided in a timely and consistent manner
Education Education
Bachelor’s Degree in Value
Bachelor’s Degree in Value
Northwestern University
Bachelor’s Degree in Value
Skills Skills
  • Basic Computer Programming knowledge and interest is an advantage (Visual Basic or C#)
  • Excellent communication skills with the ability to communicate at all levels
  • Comfortable with public speaking across various forums and be able to effectively and logically communicate when ideas are being challenged in an open forum
  • Excellent problem solving skills with a commitment to the highest levels of quality and demonstrated accuracy and thoroughness
  • Ability to work closely with teammates to solve problems, transfer knowledge, and develop overall product architecture
  • IT knowledge, specifically in areas of information security
  • Proficiency with all MS Office products
  • Analytical approach with an eye for detail and emphasis on accuracy
  • Strong work ethic
  • Knowledge of Global Markets businesses, products, and business processes, including trade lifecycle
Create a Resume in Minutes

15 Technology Risk Analyst resume templates

1

Technology Risk Analyst Resume Examples & Samples

  • Ensure that risks and issues associated with Barclaycard services are captured, documented, prioritised and managed through to remediation or an appropriate level of mitigation
  • Lead the process of risk management for the Barclaycard IT estate
  • Proactively identify, collate, log, and track technology risks and issues from all available sources
  • Manage the risk register/profile for the Barclaycard estate, ensuring that risks are fully understood, documented and prioritised
  • Implement Barclays risk policies
  • Drive impact assessment activity, taking into account the wider context and priorities risk/issues accordingly
  • Take the lead in engaging senior stakeholders and managing the production of complex strategic business cases
  • Initiate and manage complex remedial actions; track external remedial actions to resolution
  • React to a complex, dynamic environment and revise priorities and improvement plans where necessary
  • Manage stakeholder communications on risk status and remediation and demonstrate the value of the Technology Risk function
  • Ensure that technology risks and issues are reflected in platform strategies, on-going programmes / projects, service improvement initiatives
  • Provide risk/ issues input as required into Service Management Reviews
  • Take the lead in meeting Barclaycard’s commitments under the global risk management process e.g. support the Technology Risk process, utilise and develop technology risk management tools
  • Use industry recognized best practice methodologies (ITIL, COBIT) to accelerate and maintain skills levels, in particular the development of leadership and coaching capabilities within the IT Service Delivery profession
  • Build external networks to identify and utilize best practice from industry
2

Technology Risk Analyst Resume Examples & Samples

  • Support Risk and Controls team in disseminating policy updates to CTI EMEA entities and assessing the impact of these policies including any changes for entities/countries within the region. This includes performing controls assurance, gap analyses and verifying processes are being adhered to and controls are being executed effectively
  • Support the risk assessment program within Citi and region including training, governance, oversight and reporting of Management Control Assessments (MCA) and Enterprise Technology Risk Assessment Dashboard (ETRAD)
  • Enhance and develop processes and solutions to improve efficiency and quality of delivery whilst strengthening the control foundation that supports our clients. Identify opportunities to streamline and look for continuous improvements to our processes
  • Support CTI EMEA entities governance of legal and regulatory requirements including, but not limited to, Cross-border, Data Privacy and SOX programs
  • Support region with identification and remediation of issues ensuring the corrective action plans relating to both self-identified and audit issues contain the appropriate level of quality and adhere to IBAM criteria (issue being addressed by management)
  • Assist in all interactions with audit (internal and external) including deliverables management, audit fieldwork, business monitoring and audit meetings
  • Support other Risk & Controls staff including regional and global clients in performing ad hoc control assessment activities to evaluate risk management activities within the region
  • Responsible for ensuring accurate and timely data is provided for the risk and controls Weekly Operations reports including regional / global management metrics tracking, and preparing and verifying data for reports
  • Identify key analytics and metrics (e.g. KRI/KPIs) to support effective management of operational risk within the region. Utilise ETRAD to provide drive the culture of controls to identify issues through reported metrics, trends, and controls assurance and ensure corrective actions are raised to address gaps
  • Some minimal travel may be required as part of risk and control activities
  • Should possess 3-5 years experience within Risk or Control or Information Security business functions
  • Understanding of Controls environment, Risk based thinking and Information security principles
  • Process definition and creation, including document control
  • Ability to plan, organise, monitor workload and priorities across multiple groups
  • Proficiency with all MS Office products
  • Good interpersonal, verbal and written skills
  • Contributor
  • Act with urgency , courage and conviction
  • Be accountable – own the outcome
  • Act with integrity – do what is right
  • Basic Computer Programming knowledge and interest is an advantage (Visual Basic or C#)
3

Technology Risk Analyst Lead-coporatetechnology & Risk Resume Examples & Samples

  • Support the TCFP Infrastructure Technology Assessment Manager in the development and implementation of the Infrastructure & Data Center Facilities Risk Assessments process, framework and toolsets
  • Partner with various risk and engineering stakeholders to define and document appropriate technology control requirements and their assessment practices
  • Technology procedures to support secure builds
  • Design, document & implement infrastructure vulnerability compliance assessment processes, practices, tools, and metrics to improve the risk posture and common practices throughout the organization
  • Evaluate emerging technologies and new infrastructure products introduced to the bank. Assessment of all System and Infrastructure technology introduced to ensure they comply with Corporate Policies and Standards and cyber/technology risks are actively managed
  • Implementation of industry best practices, and continuous improvement opportunities. Drive vulnerability compliance reporting and processes to adhere to best risk management practices throughout the organization
  • Identify opportunities to improve overall risk posture, developing creative solutions for mitigating risks in partnership with the businesses
  • 7-10 years of Information Technology experience in a large enterprise level environment
  • 5 years of experience with information risk management, information security management or technology audit
  • 5 years of Windows, UNIX & Networking experience,
4

Senior Technology Risk Analyst Resume Examples & Samples

  • To protect the Asia business and technology functions by assisting them to carry out effective technology risk practices
  • To assist in the identification, monitoring, measuring and management of technology risks
  • To help the business optimise its technology risk / reward balance
  • Implementation and monitoring of IT governance and controls to enable the Bank's expansion strategy across our offices in Singapore, Hong Kong, China and India with respect to sustainable group policy and regulatory requirements
  • Provide assessments of the technology risks inherent in operational capabilities and material changes e.g. key business decisions, projects, information security, process changes, implementation of new infrastructure, product changes or launches
  • Maintain Asia Technology Risk Register and Technology Risk profile. Advise and update group risk management and other operational risk stakeholders through regular technology risk dashboards, and technology risk profile
  • Assists business and technology stakeholders in the identification, monitoring, measuring and management of technology risks
  • Supports business and technology resources on applying the technology risk and compliance framework, including facilitation of key technology risk processes e.g. Risk and Control Assessment
  • Reports key technology risk information e.g. occurrence of incidents, changes to risk profile
  • Identifies, sources and analyses appropriate data to support and influence technology risk management and decisions
  • Supports Asia Technology in managing and mitigating audit, security, regulatory and operational issues and incidents
  • Engage with the Bank's business, technology and risk stakeholders and participate in regional risk management committees for Technology Risk governance and reporting
  • Provides the business with pragmatic, outcome-focussed technology risk advice and insights that optimise risk / reward balance and assists it to achieve its objectives, within risk appetite and legal parameters
  • Reviews key activities / processes, identifies technology risk-related issues and recommends solutions
  • Provides insights into potential technology risk and compliance issues and impacts
  • Monitors effectiveness of technology risk practices, highlights gaps / out of appetite risks and escalates as required
5

Technology Risk Analyst Resume Examples & Samples

  • Design and execute Global Markets wide technology risk assessment activities
  • Collaborate with SMEs and technology stakeholders to ensure adherence to policies that advance the data strategy, deliver compliance with enterprise data standards, and enable business and regulatory use cases
  • Aligns Global Markets risk activities with enterprise level requirements
  • Knowledge of Global Markets businesses, products, and business processes, including trade lifecycle
  • Knowledge of major Global Markets regulatory regimes e.g. MiFID1/2, Volcker, OATS, Dodd-Frank, etc
  • Significant experience in technology risk assessment and remediation effort
  • Thorough knowledge of Enterprise Risk/Compliance programs, strategies and standards
  • Strong written and verbal communication skills; ability to communicate technical and quantitative information to non-specialist audiences in a clear, precise, and actionable manner
  • Experience working iteratively in a high matrixed, fast-paced agile environment
6

Technology Risk Analyst Resume Examples & Samples

  • Experience with technology infrastructure components such as network topology, data storage devices, virtual machine monitors, directory services, database management systems, messaging services, and middleware
  • Knowledge of security architecture patterns such as Demilitarized Zones, Policy Enforcement Tools, Tripwires, Content Filters, Segregation of Duties, Change Control, Federated Identity, and Toxic Combinations
  • Working familiarity with Consumer Financial Web Services, Credit Card Processing, and mobile software platforms
  • Engages technology managers to identify key technology control indicators and maintain effective and efficient continuous control monitoring processes
  • Comfortable interacting directly with senior technology managers including in a high stress environment
7

Technology Risk Analyst Resume Examples & Samples

  • The candidate will be expected to evaluate the design of process flows to help technology managers understand the impact of risks and control weaknesses within technology service delivery capability
  • The candidate will be expected to advise on continuous monitoring and control test methods, and recommend technology metrics in support of decisions concerning technology risk management objectives
  • Working familiarity with Markets and Securities Technology Services, Exchange Connectivity, and trade reconciliation systems
8

Technology Risk Analyst Resume Examples & Samples

  • 40% Consulting and Risk Assessment
  • Develops an understanding of business goals and reframes risk discussions in business terms
  • Constructively engages business partners regarding information security issues
  • Actively and professionally engages business partners in conversations that drive good risk decisions
  • Provides a different view of the world to business partners by translating emerging IT and business trends into meaningful risks and opportunities
  • Compose responses to security inquiries, provided in a timely and consistent manner
  • Perform documentation review and improvement, attending meetings as needed, serve front line response for troubleshooting issues as needed
  • Provide guidance across several compliance related initiatives to ensure appropriate process, procedures and controls are adequately designed, implemented and/or remediated to meet audit and compliance expectations, operating efficiency goals, and business objectives
  • Ensure remediation solutions are sustainable, measureable and defensible, to ensure compliance requirements continue to be maintained over time
  • Responsible for the evaluation of security and mitigation of risks associated with confidentially, integrity and availability of the company’s information assets
  • Assist in development and communicating security guidelines for new technology platform solutions
  • Develop relationships with BU partners, security, IT leaders, and compliance team members to gain consensus approvals on strategies, recommendations, findings and project plans
  • Collaborate, build and maintain strong relationships within a high matrix organization in order to identify issues and drive information security compliance across platforms
  • 30% Monitoring
  • Monitor and document exceptions to policy and/or identified technology risk gaps presented for approval to confirm risk statement and assess action plan to mitigate risk
  • Identify, assess and then coordinate processes for efficient monitoring
  • Monitor vulnerability remediation plans for milestones and completion
  • 20% Remediation Planning
  • Consult, validate & monitor the implementation of remediation activities as result of internal as well as external review/audit activities
  • Collaborate with risk analysts across all areas of Cargill on common risks to achieve optimization and coordination of remediation activities
  • Provide regular reports on the progress of remediation activities to the Platform Risk Manager
  • 10% Education & Awareness
  • Understand the company’s technical security policies, the code of business conduct and ethics in order to translate into requirements for technical and non-technical staff
  • Support the creation of a sustainable control environment
  • Provide Technology Risk & Controls training & awareness. This includes aligning the technology control requirements and objectives with the business and external outsourcing specific requirement
  • 5+ Years of I/T Experience
  • Demonstrated working knowledge of Risk Management, Information Security, Controls, or I/T Audit practices
  • Proven record of high performance in problem solving, collaborating, planning and priority setting, perseverance, and a drive for results
  • Agile learning capabilities to inform on and manage risks via common systems and processes
  • Effective team skills encompassing cross-functional teams, peer relationships, informing, and understanding and appreciating differences
  • Solid Communication Skills - encompassing inter-personal communications, persuasion and influencing skills, security communications, using business terminology
  • Ability to effectively describe technical concepts to non-technical audiences
  • Demonstrated customer focus skills in translating risk management policies into business requirements
  • Strong interpersonal skills in terms of effective listening, patience, composure and conflict management
  • Ability to travel 10% - 20%
  • Networking and infrastructure experience
9

Business Technology Risk Analyst, VP Resume Examples & Samples

  • Knowledge of full system, software, and security development lifecycle, including abuse and misuse cases development and testing
  • Working familiarity with network, operating system, and application security fundamentals
  • Experience with automated monitoring tools and incident tracking tools to effectively communicate and manage incidents, defects, and data quality issues
  • Expected background for the candidate is
  • CRISC, CISM, CISSP, or similar certifications a plus
10

Senior Technology Risk Analyst Resume Examples & Samples

  • Experienced with security and risk standards including ISO 2700, PCI DSS, NIST, ITIL, COBIT
  • Hands on operational experience with vulnerability management tools including the ability to deploy, configure, and run these tools
  • Experience with and knowledge of privacy laws and regulations
  • Technically knowledgeable in cross-platform system security - particularly with regard to operating systems, databases, networking and transactional processing environments
  • Proficiency with a variety of operating systems and open source database management systems (MySQL, MS-SQL, Oracle) is a plus
  • Practical hands-on experience with IT infrastructure components such as servers, firewalls, IDS systems and other network infrastructure components
  • Bachelor's degree, ideally in Computer Science or equivalent, and a minimum of 3 years of related work experience, or a Master’s degree and 2 years of related work experience
  • Certified Information Systems Auditor (CISA) or pursuing certification
  • Active membership with ISACA
  • Strong knowledge of established IT governance frameworks
  • Strong knowledge of the Trust Services Principles
  • Ability to examine issues both strategically and analytically
  • Strong report writing and communication skills
  • Motivated / self-starter able to work collaboratively in a team environment on multiple engagements
  • A valid driver's license in the US; willingness and ability to travel domestically to meet client needs
11

Principal Technology Risk Analyst Resume Examples & Samples

  • Manage demand and effectively prioritize Secure Code Review efforts among the global SCR team
  • Foster innovation and provide technical direction for the Secure Code Review program
  • Promote collaboration with ECS’s Penetration Test to improve the overall security of Fidelity’s applications
  • Identify trends and opportunities for improvement to increase the effectiveness of the SCR program
  • Serve as the primary contact and escalation point for all SCR related questions and issues
  • Assist in providing bi-weekly metrics and ad hoc reports as needed by management
  • Evaluate products and services as needed which support the SCR program
  • Experience in web application development using J2EE, .Net or other relevant technologies
  • Proven analytical and problem solving skills, as well as the desire to assist others in solving issues
  • Experience with a Secure Software Delivery methodology
  • Intermediate to advanced knowledge of application security mechanisms such as authentication and authorization techniques, data validation, and the proper use of encryption
  • Intermediate to advanced technical knowledge of, and the ability to recognize, various types of security vulnerabilities
  • Good interpersonal skills with a strong interest in the application security domain
  • Highly motivated with the willingness to take ownership / responsibility for their work and the ability to work alone or as part of a team
12

Senior Technology Risk Analyst Resume Examples & Samples

  • Design and deliver security baseline configurations for end user environments including Microsoft windows, Apple OSX and Apple iOS
  • Analyze and advise on security solutions critical to the end user computing environment such as network and data access
  • Collaborate with core IT and other security functions across the firm to bring new controls to reality
  • Automate aggressively using interpreted languages or environments such as Python and Powershell
  • Produce detailed written work product such as
  • 5+ years experience in either systems administration or Information Security roles
  • Advanced knowledge and experience with systems administration and systems automation with modern scripting languages and environments such as Python, Perl, Powershell and others
  • Knowledge of Operating System (Windows, OSX) internals, troubleshooting and management
13

Senior Technology Risk Analyst Resume Examples & Samples

  • Your fundamental knowledge of developing web applications in an agile environment
  • You speak the language of software development in a J2EE environment
  • You have working knowledge of other technologies such as .NET, iOS, Android, GO, Node/JS
14

SVP, Technology Risk Analyst Resume Examples & Samples

  • Interact with senior management to produce ad-hoc analysis upon request
  • Overseeing and ensuring the integrity of the risk data across multiple industries globally; maintain and continuously improve data quality
  • Work with Risk Technology and Reengineering teams on defining technology enhancements and process improvements towards greater efficiency
  • Produce proposal documentation for enhancement of existing tools or additional tools, as need arise
  • Prepare presentations for regulators and risk seniors
  • Able to develop and maintain effective relationship with colleagues in Risk Management, other support functions, and with Product Sales and Desk Heads
  • Demonstrate good time management skill, the ability to multi-task and prioritize effectively in a very demanding and dynamic work environment
  • Display a proactive approach to problem solving and the ability to meet tight deadlines. Self-motivated – able to set and adhere to own priorities/timeframes
  • Solid computer skills; ability to effectively utilize the various credit, risk and product systems appropriate to the area of specialization
  • Strong oral and written communication skills; ability to effectively interact with people at all levels within the organization
  • Strong knowledge of banking and capital market products, or working towards a strong knowledge, dependent upon level/experience
  • Ability to lead meetings involving diverse group of professionals is a strong plus
  • Good issue-spotting skills and willingness to take initiative to address them
  • Attention to detail; unaffected by high pressure situations
  • Motivated and confident to drive change
15

Technology Risk Analyst Resume Examples & Samples

  • 30% Consulting and Risk Assessment
  • Develop relationships with Treasury, IT leaders, and compliance team members to gain consensus approvals on strategies, recommendations, findings and project plans
  • 30% Implementation of Security Controls
  • Work with Wall Street Solutions (WSS) to develop enhanced security program
  • Facilitate implementation of WSS infrastructure to
  • Ability to travel up to 10% - 20%
16

Senior Technology Risk Analyst Resume Examples & Samples

  • Design and Deliver innovative Cyber Security Solutions for cloud/virtual environments
  • Advanced knowledge and experience with systems administration and systems automation with modern scripting languages and environments such as Python, Perl, Powershell, Ruby and shell
  • Knowledge and experience with cloud deployment frameworks such as Chef, Docker, etc, etc
  • Knowledge of Operating System (Linux, Windows) internals, troubleshooting and management
  • Shell and administrative scripting
  • Process debugging
  • Networking configuration and debugging including use of network packet capture, DNS, HTTP and other layer 7 protocols
  • Knowledge and understanding of middle-ware tools such as web and application servers, databases (Relational and non), log management and auditing tools
  • Work effectively with a global team, including associates in USA, India, Ireland and China
  • Experience with common Cloud Orchestration technologies such as OpenStack, Chef, Puppet, Docker, Apache Mesos
17

Technology Risk Analyst Resume Examples & Samples

  • 35% Consulting and Risk Assessment
  • Develops an understanding of IT service delivery goals and reframes risk discussions in IT service delivery terms
  • Constructively engages IT service delivery stakeholder & enterprise risk analysts regarding information security issues
  • Actively and professionally engages IT service delivery stakeholders in conversations that drive good risk decisions
  • Assist in development and communicating security guidelines for new technology SAP solutions
  • Develop relationships with IT service delivery stakeholders, enterprise security resources, IT leaders, and compliance team members to gain consensus approvals on strategies, recommendations, findings and project plans
  • Collaborate, build and maintain strong relationships within a high matrix organization in order to identify issues and drive information security compliance across all SAP solutions
  • 35% Monitoring
  • Monitor SAP solutions against internal security standards \ external compliance obligations
  • Responsible for the coordination of remediation activities to achieve and sustain SAP solution conformance
  • Participate in the design, deployment and reporting of SAP security measures to enable effective risk and control govenance across all SAP solutions
  • Support the development of effective integrated monitoring of SAP security events with the Cargill Security Operation Center (SOC)
  • Responsible for the effective monitoring and aligment of SAP Identity and Access management processes to security policy and principles
  • Coordinate the effective execution of a vulnerability management program over all SAP Solutions
  • Ensure that SAP technology projects are executed in accordance with risk management policy and standards
  • Assist in the Monitor and document of SAP operations in accordance to baseline risk management goals including but not limited to; exceptions, findings, network security, software security
  • Provide regular reports on the progress of remediation activities to the SAP Risk Manager
  • Bachelors Degree or relevant experience
  • 5 + Years of I/T Experience
  • Demonstrated working knowledge of SAP, Risk Management, Information Security, Controls, or I/T Audit practices
  • Ability to travel 20%
18

Technology Risk Analyst Resume Examples & Samples

  • You will develop an understanding of IT service delivery goals and reframes risk discussions in IT service delivery terms
  • You will constructively engage IT service delivery stakeholder & enterprise risk analysts regarding information security issues
  • You will actively and professionally engage IT service delivery stakeholders in conversations that drive good risk decisions
  • You will compose responses to security inquiries, provided in a timely and consistent manner
  • You will perform documentation review and improvement, attending meetings as needed, serve front line response for troubleshooting issues as needed
  • You will provide guidance across several compliance related initiatives to ensure appropriate process, procedures and controls are adequately designed, implemented and/or remediated to meet audit and compliance expectations, operating efficiency goals, and business objectives
  • You will ensure remediation solutions are sustainable, measureable and defensible, to ensure compliance requirements continue to be maintained over time
  • You will be responsible for the evaluation of security and mitigation of risks associated with confidentially, integrity and availability of the company’s information assets
  • You will communicate and escalate issues and incidents as required by process or management
  • You will assist in development and communicating security guidelines for new technology SAP solutions
  • You will develop relationships with IT service delivery stakeholders, enterprise security resources, IT leaders, and compliance team members to gain consensus approvals on strategies, recommendations, findings and project plans
  • You will collaborate, build and maintain strong relationships within a high matrix organization in order to identify issues and drive information security compliance across all SAP solutions
  • You will monitor SAP solutions against internal security standards \ external compliance obligations
  • You will be responsible for the coordination of remediation activities to achieve and sustain SAP solution conformance
  • You will participate in the design, deployment and reporting of SAP security measures to enable effective risk and control governance across all SAP solutions
  • You will support the development of effective integrated monitoring of SAP security events with the Cargill Security Operation Center (SOC)
  • You will be responsible for the effective monitoring and alignment of SAP Identity and Access management processes to security policy and principles
  • You will coordinate the effective execution of a vulnerability management program over all SAP Solutions
  • You will ensure that SAP technology projects are executed in accordance with risk management policy and standards
  • You will assist in the Monitor and document of SAP operations in accordance to baseline risk management goals including but not limited to; exceptions, findings, network security, software security
  • You will consult, validate & monitor the implementation of remediation activities as result of internal as well as external review/audit activities
  • You will collaborate with risk analysts across all areas of Cargill on common risks to achieve optimization and coordination of remediation activities
  • You will provide regular reports on the progress of remediation activities to the SAP Risk Manager
  • You will understand the company’s technical security policies, the code of business conduct and ethics in order to translate into requirements for technical and non-technical staff
  • You will support the creation of a sustainable control environment
  • You will provide Technology Risk & Controls training & awareness. This includes aligning the technology control requirements and objectives with the business and external outsourcing specific requirement
19

Technology Risk Analyst Resume Examples & Samples

  • Ensuring Service Level Agreements are satisfied
  • Service delivery and performance of the team as it relates to on-boarding, off-boarding and maintenance of access entitlements
  • Partnering with other functional areas to ensure seamless delivery to customers, including coordination with cross functional or operational resources
  • Implementation of strategic initiatives related to new or enhanced security products and toolsets on supported platforms
  • Ensuring appropriate control environment is developed and maintained
  • Ensuring successful implementation of action plans to address risk and control issues
  • Support site specific audit activities
  • 5-7 + years of professional Information Technology experience
  • Experience with Project Management and/or Process Improvement
  • Experience interacting with Application Development teams
  • Experience working in either IT Risk, Governance, Audit or Controls
  • Familiarity with IT risk management framework and/or Risk and Control Self Assessment (RCSA) process is preferred
  • Industry recognized certifications (CISA, CISM, CRISC) is plus
  • Excellent interpersonal and communication skills, including ability to negotiate, compromise and demonstrate diplomacy in sensitive situations and to interact effectively with senior management
  • High level of professionalism, self-motivation and sense of urgency
  • Self motivated, results orientated & analytical ability
  • Microsoft Excel, PowerPoint, and Microsoft Project expertise
  • Bachelor’s Degree preferred; MBA or a masters degree in Risk Management, Operations or similar discipline preferred
20

Senior Technology Risk Analyst Resume Examples & Samples

  • Work with Operations and Engineering teams across ECS to develop an understanding of the technology and workflows owned and supported by the ECS business unit
  • Analyze existing processes and workflows to identify automation opportunities
  • Assess and document alternative automation possibilities, clearly justifying recommended solutions within the context of the supported production and non-production environments
  • Develop new automation solutions and optimise existing ones
  • Compose project plans and test case scenarios for each developed solution
  • Provide transition and support documentation for Operations team as part of the production readiness review prior to production deployment
  • Collaborate with the PSO Solutions Implementation group to identify automation opportunities prior to production deployment of new technologies
  • Work closely with all engineering and operations groups across the enterprise to contribute to the production stability and 7*24 availability of the security products
  • Comply with enterprise ITIL standards, with particular reference to enterprise change management processes
  • Act as liaison between ECS and technical or business partner groups, providing technical guidance and consulting on automation solutions
  • Research new and existing technologies to identify possibilities to expand the automation solution team toolset
  • Experience using a broad range of scripting tools across a variety of platforms and languages, including, but not limited to
  • Bachelor's degree in computer science or equivalent technology discipline
  • Minimum of 5 years IT experience including at least 3 years in a hands-on, technical role
  • Experience using orchestration tools such as HPOO, Chef, Jenkins, Ansible, Puppet, and Urban Code Deploy
  • Hands-on experience in software development or vendor product integrations and customisation
  • Security Certification such as CISSP an advantage, although this is not necessary
21

Senior Technology Risk Analyst Resume Examples & Samples

  • Manage the security for the z/OS environment including security compliance monitoring, review and security of new OEM software builds and technology implementations
  • The implementation and management of controls and processes for monitoring accounts with elevated rights
  • Coordinate with system administrators and application owners on securing information systems resources
  • Provide security administration for CA-Top Secret and CICS applications
  • Become familiar with Fidelity Identity Management Security policies and procedures
  • Analyzing a diverse range of problems to identify range of solution and implement preferred option
  • Design and documentation of troubleshooting and support procedures
  • 5+ years in the information security field highly preferred
  • Professional certification(s) i.e. CISSP an advantage
  • Previous experience in z/OS security administration including TSO and JCL
  • Knowledge of security controls and oversight of information technology
  • Experience implementing security rules utilizing CA-Top Secret in a multi-sysplex environment
  • Good communication skills and ability to work within a team environment
  • Experience working in an operational or service provisioning team
  • Ability to work independently, and with other teams to identify and work towards problem resolution
  • Knowledge of ITIL or other service management framework an advantage
  • Strong process definition skills. The ability to assist in the definition and implementation of the security administration function
  • Practical experience of providing formal and informal knowledge sharing to a wider team an advantage
  • Highly motivated with willingness to take ownership/responsibility for their work and the ability to work alone or as part of a team
  • Good interpersonal skills and an ability to work with remote team-mates and customers required
  • Experience working as part of an on-call roster an advantage
22

Technology Risk Analyst Resume Examples & Samples

  • Undertake technology risk assessments in line with internal processes and the Groups minimum standards
  • Assist in drawing out operational technology risks during risk workshops, relevant meetings and discussions
  • Work closely with Technology Services teams to ensure necessary risk assessments are completed within the specified timelines
  • Formulate recommendations for response to identified technology risks, issues and events in line with IT Risk processes
  • Support management of technology risks, issues and events in the group Risk Management System
  • Ensure high quality information is submitted and recorded through to the risk team
  • Support and suggest improvements for processes and approaches for mitigating risks
  • Make recommendations on risk response to Technology Risk Manager and Head of IT Risk
  • Ability to influence particularly when working within a contractual environment
  • Excellent communication skills with the ability to communicate at all levels
  • Credible background of Operational Risk relating to IT and Change
23

Senior Technology Risk Analyst Resume Examples & Samples

  • 30% - Consulting and Risk Assessment
  • Develop relationships with stakeholders to gain consensus on strategies, recommendations, findings and project plans
  • Develops an understanding of business goals and frames risk discussions in business terms
  • Responds to security inquiries, provided in a timely and consistent manner
  • 25% - Project Consultation
  • Facilitates identification / completion of information security project tasks (Project Risk Checklist)
  • Provide consultation and interpretation of Global I/T risk management policies
  • Coordinate completion of technology risk assessments (e.g. privacy, 3rd party, application)
  • Provide consultation in design of controls into business and technology processes
  • Collaborate with Global I/T Subject Matter Experts on technology risks/gaps
  • Serve as the liaison between business partners and technology teams
  • 20% Implementation of Security Controls
  • Consult and validate the implementation of technology controls
  • Collaborate with Technology Risk Analysts on common risks to achieve optimization and coordination of risk management activities
  • Provide regular reports on the progress of risk management activities to the Technology Risk & Control Manager and business partners
  • Facilitate security incident response activities
  • Facilitate the completion and remediation activities of the following Risk Management Processes
  • Risk Exception / Findings
  • Network Security Design
  • Resiliency Planning
  • Third party/Cloud-based technology vendor assessment / management
  • 15% - Monitoring
  • Monitor internal / external threat vectors identifying impact to Business Unit partners
  • Monitors compliance of application owner control activities
  • Assist audit preparation and remediation activities
  • Provide regular reports on the risk management status / activities to the Technology Risk & Control Manager and business partners
  • 10%- Education & Awareness
  • Provide Technology Risk & Controls training & awareness
  • Prepare / Communicate risk management scorecard
  • Bachelor's degree in Computer Science, MIS, Computer Engineering or equivalent
  • Excellent verbal and written communications skills and the ability to interact professionally with a diverse group, executives, managers, and subject matter experts
  • Must be able to effectively convey information and translate technical terms in a clear and concise manner to both technical and business audiences
  • Excellent persuasion and influencing skills (directly & indirectly)
  • Effective teaming skills encompassing cross-functional teams, peer relationships, and understanding and appreciating differences
  • Excellent analytical, reasoning, and creative problem solving skills
  • Demonstrated experience in independently managing priorities & workload effectively and making timely decisions
  • Agile learning capabilities
  • Demonstrated efforts to take initiative and drive for results
  • Demonstrated customer focus skills and strong interpersonal skills in terms of effective listening, patience, composure, and conflict management
  • Demonstrated ability to persevere, adapt to adversity, move forward and drive for results (resilient)
24

Technology Risk Analyst Resume Examples & Samples

  • User Account Provisioning / DE provisioning
  • Perform Access Appropriate to Role Reviews for Users
  • Be part of the risk on call rotation
  • Proactively identify and implement solutions for process improvement and increased efficiencies
  • Knowledge of information risk theory and operational controls
  • Software development skills, including scripting (Shell/Perl) is a plus
25

Senior Technology Risk Analyst Resume Examples & Samples

  • Working with development and operational technology teams to understand and improve the risk posture our critical application infrastructure
  • Providing planning support for secure application and technology implementations
  • Consulting with technology teams to ensure existing critical applications have appropriate plans to mitigate any risk exposures
  • Creating requirements for FIMT security technology implementation and process improvements
  • Tracking and facilitating any application security implementations to comply with new technology policies and enterprise initiatives
  • Knowledge of information risk and operational controls with a focus on application security and secure application development
  • Work well in teams ranging from small groups to enterprise teams
  • Several years working in technology with a security and/or technology risk focus
  • Related experience in project management, technology risk, and financial services
  • Previous experience working with varied technology teams to understand a broad variety of platforms and applications
  • Broad IT and security knowledge specifically in areas of secure code reviews, penetration testing, and application exploits
26

Technology Risk Analyst Resume Examples & Samples

  • Partners with key stakeholders in the business to identify, assess, aggregate and document risks and controls, including risks associated with new or modified products, services, distribution channels, regulations and third party operations. May present findings to various levels of leadership. Communicates results of risk assessments to governance committees, business process owners and various levels of leadership
  • Contributes to the implementation of new risk policies, practices, appetites and solutions to ensure holistic understanding and management of risks according to industry best practice. Enhances strategies, tools, and methodologies to measure, monitor, and report risks
  • Applies intermediate knowledge to utilize or produce analytical material for discussions with cross-functional teams to understand business objectives and influence solution strategies
  • Effectively contributes in cross-functional teams to identify, assess, aggregate and mitigate current and emerging risk events
  • Supports the formulation of stress test plans for a line of business or the enterprise including the evaluation of results, and framing of contingency plans in partnership with key business stakeholders
27

Senior Technology Risk Analyst Resume Examples & Samples

  • 8 years of IT or audit experience
  • 3+ years of experience in Risk Management, Information Security, Controls, or I/T Audit practices
  • Information Security certification (e.g. CISSP)
  • Knowledge of and ability navigate and manage risks of cloud-based technology
  • Experience in threat modeling – identification of critical assets, threat vectors and protection measures
  • Experience in Third Party risk assessments and the management of 3rd party relationships
  • Experience in Resiliency Management
28

Technology Risk Analyst Resume Examples & Samples

  • Provide day-to-day operational support of the ECS product suite – some of Fidelity’s most critical systems
  • Work in a distributed team following procedures based on the ITIL Framework
  • Respond to Incidents in a timely manner to contribute to team goal of minimizing MTTR
  • React appropriately to major incidents, including representing PSO on cross-functional conference bridges, identify actions to mitigate impact, and validate success of mitigation actions
  • Investigation and diagnosis of Infrastructure and Application alerts, to contribute to postmortem. investigations – establish details of incidents impact, identify contributing events and external factors
  • Participate in event correlation and filtering to ensure events that require intervention are reacted to
  • Escalation of Tickets to technology partners (internal and external) where required, and participation in follow-up diagnostics with vendor and/or Engineering teams
  • Identify opportunities for efficiency improvement across the team, including monitoring, documentation and automation opportunities
  • Develop moderately complex automation processes and engage with the Efficiency team to integrate automation into the management of the technology
  • Improve and Maintain documentation for the PSO team
  • Contribute to shift coverage during weekends to cover 24x7 service hours as part of a rotating team
  • Familiarity with ITIL or other IT service management framework essential
  • Working knowledge of enterprise servers (Windows and/or Unix) in a support or admin role
  • Knowledge of networking, GTM/LTM and traffic routing
  • Knowledge of VMWare Administration
  • Strong written and verbal communication skills are essential as this role involves working with multiple teams across the enterprise
  • Ability to work closely with teammates to solve problems, transfer knowledge, and develop overall product architecture
  • Excellent problem solving skills with a commitment to the highest levels of quality and demonstrated accuracy and thoroughness
  • Experience working with Monitoring tools
  • Knowledge of the project life cycle
  • Minimum of 2 years IT experience, preferably in an operational or support function
  • Experience working in a globally distributed, multi-cultural environment an advantage
  • This role provides a ideal opportunity for a candidate with operations experience to move into the cyber-security arena, or for a cyber-security generalist to move into a hands-on operations role
  • This role also offers a proven path for associates to progress to more specialist cyber-security roles in the Fidelity ECS organisation
29

Technology Risk Analyst Resume Examples & Samples

  • Familiarity with IT and Risk Management concepts
  • Excellent verbal, written and listening communication skills along with strong analytical, organizational, and team skills
  • Data analytics skills and exceptional attention to detail
  • Innovative and creative thinking with a desire to improve how things are done
  • Ability to be flexible, manage competing priorities with deadlines in a complex, dynamic environment
  • Proficient computer skills in the Microsoft Office Suite. Familiarity with eGRC tools (e.g. Archer)
30

Technology Risk Analyst Resume Examples & Samples

  • Performing control-gap remediation; overseeing action plans and resolution of control issues/breaks with LOB partners
  • Assisting with annual Risk and Control Self Assessments across the Global Supplier Services, Tax, Business Intelligence, Third Party Oversight, Global Security, Audit, Real Estate & General Services applications
  • Assisting with Access Uplift efforts across towers for Privileged account onboarding to the appropriate tool and onboarding of applications to the applicable security access request/management tools with relevant status and scorecard reporting
  • Assist with any risk and control process improvement activities
  • Support, drives and monitors implementation and effectiveness of firm-wide or LOB-wide management policies and control solutions
  • Analyze and monitor key metrics regarding controls maturity and policy compliance across teams and assist AD teams in addressing issues
  • 2+ years of risk management and/or internal controls with a keen focus on the Risk and Controls agenda related to application development and management
  • Degree in Finance, Economics, Information Systems, or related discipline
  • Demonstrate an understanding of business processes, application development, internal control risk management, IT controls, and how they interact together
  • Familiarity with Third Party Oversight for vendor engagements and knowledge of outsourcing methodologies and operating models
  • Must be organized and focused to drive meaningful results
  • Manage competing deadlines and prioritize responsibilities to effectively meet business needs
  • Develop and teach less experienced staff when required
  • Work both independently and as part of a team at all levels and across all business units
  • Experience with geographically distributed and culturally diverse work-groups
  • Good leadership skills to help guide change and partner with staff at all levels
  • Experience with Corporate Insurance applications a plus
31

Associate Technology Risk Analyst Resume Examples & Samples

  • Perform access provisioning tasks and understand the system inventory intricacies
  • Participate in Access Operations initiatives/projects
  • Execute access review process for the business unit
  • Contribute to security initiatives/projects
  • Contribute to the implementation of business function Job Roles
  • Review non-standard access requests
  • Escalate highly sensitive requests to the relevant Information Security Officer (ISO)
  • Resolve discrepancies related to access administration and other related issues
  • Knowledge and skills with PCs, operating systems, applications, databases and networks
  • Experience in the information security field, including the principles of access control
  • Requires basic knowledge of information security concepts
  • Strong analytical skills with attention to detail are essential
  • Ability to work well independently and as a team player in a fast-paced environment
  • Organizational, interpersonal, and strong verbal/written communication skills are critical
  • Must have ability to work on a multitude of tasks simultaneously
  • Must be comfortable interfacing with all levels of management