Senior IT Risk Analyst

About the position

Rockland Trust is seeking a skilled and experienced Senior IT Risk Analyst to join its first line of defense IT Risk Management team. This role is essential in identifying and assessing IT risks, formalizing and testing mitigating controls, and supporting & shaping the continued maturation of the IT risk management program. The ideal candidate has 4-6 years of experience in IT audit and/or with control testing, with a demonstrated ability to excel in both independent and collaborative environments.

Responsibilities

• Identify, assess, and document IT risks to validate that potential risks are known and managed effectively and adequately
• Conduct inherent and residual risk assessments utilizing the results of risk assessment and control testing activities
• Lead and document walkthroughs to validate understanding of controls, identify gaps, and identify necessary evidence to support thorough risk assessments
• Effectively challenge stakeholders to ensure accurate, comprehensive, and timely responses to inquiries, requests, or other such asks
• Coach and mentor less experienced team members to facilitate their development in IT risk management practices, particularly control testing.
• Aggregate, analyze, and report risk assessment results and provide actionable insights that drive informed decision-making and improvements
• Collaborate with IT infrastructure and other stakeholders to strengthen relationships and embed IT risk management practices within the broader First Line of Defense
• Contribute to and support the growth of the IT risk management program by promoting risk awareness and best practices across the organization.

Requirements

• Bachelor's degree, preferably in Computer Science, Information Technology, or similar field
• 4-6 years of technology audit or risk assessment experience, including design assessment and control testing
• Experience coaching and mentoring team members in a professional setting
• Proven ability to articulate and defend the process used, and conclusions reached, in executing risk assessments and control testing
• Thoughtfully and effectively develop recommendations for process and control enhancement/remediation based on results of assessments performed in a manner that promotes collaboration and acceptance
• Work independently as well as collaborate effectively within a broader team and organization
• Excellent verbal and written communication skills, including the ability to effectively lead and participate in team discussions and meetings with key stakeholders, team members, and other stakeholders
• Understanding of relevant risk frameworks such as CIS, NIST, COBIT, or ISO
• CRISC, CISSP, CISA or CISM or other industry-recognized risk and information assurance certifications preferred

Benefits

• Competitive compensation with performance incentive awards
• Health Insurance
• Dental Insurance
• 401K and DC Plan for your retirement
• LTD & Life Insurance
• Day Care Reimbursement
• Tuition Assistance for graduate and undergraduate programs
• An award winning Wellness program
• And much more!