Principal Technology Risk Analyst
Merrimack, Texas, United States of America
Full Time
1 hour ago
No Visa Sponsorship
Key skills
AWSCloudCyber SecurityJavaPythonRPAPowerShellArtificial IntelligenceMachine LearningLLMLeadershipCommunicationCloud Security
About this role
Role Overview
- Evaluate risks (technology, financial, reputational, and regulatory).
- Enhance and manage the core program activities, this includes defining and executing the technology risk strategy and program.
- Work with Technology, Operations and Risk teams to holistically manage risk.
- Perform proactive risk and control assessments.
- Monitor technology controls, documenting, and overseeing remediation plans.
- Provide appropriate risk and controls consulting on key CST initiatives and Emerging Technologies activities.
- Engage with Corporate Services Technology teams and Senior leadership, Internal Audit and External Audit teams.
- Report to the Corporate Services Technology Risk Director.
- Oversee the management of controls and the mitigation of risk related to the technology environment, systems, and processes within Corporate Services.
- Collaborate with Corporate Audit, Enterprise Compliance, and Security to protect the interests of customers, employees, and Fidelity’s brand.
Requirements
- 7+ years’ experience in information technology risk, cyber security, controls, or audit roles.
- BA/BS/MS in computer science, technology, cybersecurity, or a related field of study preferred.
- Expert knowledge of cloud security, containerization, API, DevOps, secure software development, application security, databases, and operating systems.
- Demonstrated technical abilities in multiple areas (e.g., technology infrastructure and application controls, cyber security, access management, network and cloud, resiliency, etc.).
- Experience performing Technology risk assessments, control assessments, IT Audits or implementing Cybersecurity controls for large scale financial service organizations.
- Understanding of artificial intelligence, machine learning, LLM, data science, and Robotic Process Automation (RPA) tools.
- Preferred hands-on skills with various Programming/Scripting Languages (Python, PowerShell, Java, etc.), audit testing tools, and automation.
- Ability to work simultaneously on multiple tasks and lead team priorities and workload.
- Professional technology risk certifications (CISSP, CISA, CRISC, CISM) and/or Cloud Certification(s) (CCSP, CCSK, AWS) preferred.
- Knowledge of Industry standards, frameworks, and best practices, such as NIST, SOC Program, SOX, ISO27001.
- Your excellent verbal and written communication skills enabling you to prepare and present recommendations to senior management.
- Knowledge of Governance, Risk, and Compliance (GRC) tools, such as Archer is preferred.
Tech Stack
- AWS
- Cloud
- Cyber Security
- Java
- Python
- RPA
Benefits
- Health insurance
- 401(k) matching
- Flexible working hours
- Paid time off
- Professional development opportunities