Technology Risk & Controls Senior Associate

3+ years of experience or equivalent expertise in technology risk management, information security, or a related field, with a focus on risk identification, assessment, and mitigation
Experience in risk identification, assessment, and control evaluation, with a strong understanding of industry standards
Demonstrated ability to analyze complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders
Proficient knowledge of risk management frameworks, regulations, and industry best practices
Strong Tableau experience
Experience in Technology risk & controls auditing and testing
Excellent communication and collaboration skills working with business partners and stakeholders

Assess and monitor technology risks, ensuring compliance with firm standards, regulatory requirements, and industry best practices
Support implementation of effective controls in collaboration with cross-functional teams and stakeholders
Evaluate the effectiveness of existing controls, identify gaps, and recommend improvements to mitigate risks and enhance the firm’s risk posture
Analyze complex situations, provide advice on risk management strategies, and support the implementation of risk mitigation measures
Develop and maintain periodic analytics to provide management with full insight into emerging trends and key risks utilizing Tableau
Collaborate with internal and external technology audits (3rd line of defense) as well as operational risk management deep dives and testing (2nd line of defense)

CISM, CRISC, CISSP, or other industry-recognized risk certifications
Experience working in regulated industries, in particular leveraging technology standards, frameworks, compliance, and industry recognized best practice/standards (e.g., NIST, CSF, PCI, SOC)