Information Security Risk Analyst
Sutton Bank
- Columbus, OH
- Permanent
- Full-time
- Analyze, assess and document business requirements in an unambiguous and clear manner to support the business.
- Identify controls, or opportunities, based on technical frameworks (i.e., ISO, NIST, etc.)
- Catalogue, test and monitor controls.
- Create and perform gap analysis as well as provide strategy to implement and mitigate identified risks.
- Define business architecture and functional design.
- Manage projects, develop project plans, and monitor performance.
- Monitor deliverables and ensure timely completion of projects.
- Conduct meetings and presentations to share ideas and findings.
- Conduct functional walk-throughs with various stakeholders.
- Analyze system impacts to other systems and procedures.
- Participate in training personnel on enhancements, and new systems or procedures.
- Creating executive reporting and strategy documents.
- Excellent verbal and written communications at both business and deep technical levels.
- Advanced knowledge of multiple end-to-end systems development life cycles.
- Strong understanding of and experience with process improvement and process mapping.
- Strong understanding and experience with creating complex process flows with control points via Visio Pro.
- Identifying and testing controls.
- Strong understanding of ISO, NIST, FFIEC and other control frameworks.
- Strong understanding and experience of enterprise risk management.
- Strong leadership skills, dependable, curious, matrix-oriented, a visionary, solution oriented, delivers exemplary customer service and quality focused.
- Excellent interpersonal skills.
- Strong knowledge of the business area that is being supported.
- Self-directed and motivated.
- The ability to manage multiple tasks.
- Excellent problem-solving skills.
- Technical writing.
- Ability to read and comprehend instructions, correspondence, technical manuals and memos.
- Ability to respond to common inquiries or complaints from employees, vendors and management staff.
- Ability to effectively present information to individuals one-on-one or a small group setting.
- Ability to articulate technical concepts to end-users.
- Good skills and knowledge of facilitation, situational awareness, conflict resolution, continual improvement, and empowerment.
- Project Management skills.
- Understanding of FinTech industry.