Risk Information Technology Analyst

Regions Financial Corporation   •  

Hoover, AL

Industry: Accounting, Finance & Insurance

  •  

5 - 7 years

Posted 101 days ago

This job is no longer available.

Regions is dedicated to taking appropriate steps to safeguard and protect private and personally identifiable information you submit. The information that you submit will be collected and reviewed by associates, consultants, and vendors of Regions in order to evaluate your qualifications and experience for job opportunities and will not be used for marketing purposes, sold, or shared outside of Regions unless required by law. Such information will be stored for a set period of time. You may review, modify, or update your information by visiting and logging into the careers section of the system.

Job Description:

At Regions, the Risk Information Technology (IT) Analyst is a key member of the Innovation and IT Risk Management (IITRM) organization and perform activities consistent with the second line of defense. The Risk IT Analyst will influence enterprise innovation and manage IT risk identification, measurement, mitigation, monitoring, and reporting (IMMMR) activities in accordance with the enterprise strategy and enterprise risk appetite.

Primary Responsibilities

  • Manages key tasks and/or projects to perform IT Risk Assessments, IT Advisory Reviews, IT Project Assessments, 3rd Party IT Testing, and other project reviews as identified across all aspects of Information Technology, including application development, cyber security, enterprise architecture, business continuity and disaster recovery, and change management
  • Stays abreast of innovative business and technology trends in IT security, risk, and controls and advise leadership on technology initiatives that support these trends
  • Manages relationships with key stakeholders within strategic business groups and technology to ensure effective execution of the risk management framework
  • Performs deep dives on IT security-related processes and systems
  • Leads multiple stakeholders in agreement on appropriate solutions/controls and verify that IT risks are mitigated appropriately. Provide effective challenge to ensure that required controls are updated based on changes to business processes, new regulations and technologies, and to meet the changing threat environment
  • Identifies applicable regulatory risks from changes or releases to regulatory guidance and requirements and provide subject matter expertise for resolution and risk mitigation
  • Manages targeted reviews of internal risk and control assessments on current and/or emerging IT risks
  • Develops, tracks, and reports on Key Risk Indicators (KRIs) for Information Technology
  • Uses subject matter expertise to provide independent challenge of Business Units’ processes for identification and assessment of IT risks and controls by performing activities such as process-level walkthroughs, control testing, etc.
  • Monitors, tracks, and reports mitigation and resolution of IT risk issues
  • Develops and manages reporting to effectively communicate key risks, findings, and recommendations for improvement and discuss results with key stakeholders

    This position is exempt from timekeeping requirements under the Fair Labor Standards act and is not eligible for overtime pay.

Requirements

  • Bachelor’s degree

  • Seven (7) years of experience in Information Technology, System Development, and Information Security including key existing and emerging risks

Skills and Competencies

  • Solid understanding of risk management functions, including IT Audit, Cyber Security, and/or IT compliance
  • Experience or knowledge of 3rd party/vendor management lifecycle
  • Experience in a Financial Institution and/ or Public Accounting is preferred but not required
  • Excellent oral and written communication skills and the ability to work effectively with employees at all levels of the organization
  • Receptive to guidance from manager and able to effectively communicate results to manager
  • Excellent leadership skills, organizational skills, and the ability to work independently is essential
  • Proficiency with Microsoft Excel, Word, and PowerPoint

Preferences

  • CISA
  • CRISC
  • CISSP

R21200