Risk Analyst
(Hyderabad - Divyasree ), , , – Orion B; FL , SEZ, DVS, Hyderabad, India
6d ago

Responsibilities : Provide and support the implementation of IT GRC initiatives globally Develop processes, policies, procedures, standards, and guidelines for the IT GRC Program.

This will include development of an Internal Controls framework and buy in with Risk Management policies Conduct risk assessments to identify risks and key internal controls that mitigate identified risks Follow up, track, analyze and report on IT Risk Assessment results Contribute to governance and facilitate remediation recommendations of related risks, deficiencies, gaps or issues Advise stakeholders with identifying compensating control alternatives where IT risk requirements cannot be met Assist with driving risk management and governance strategies for emerging technology areas Remain current with industry best practices and monitor the legal and regulatory environment for developments that could require changes to FactSet’s established policies, standards and practices Collaborate with stakeholders (e.

g. Senior Leadership, Strategic Business Units, IT, Legal) to ensure a consistent process for identifying, assessing, responding and reporting on IT risks Maintains updated knowledge in the field of risk management and compliance to efficiently work on frameworks including NIST CSF, CIS Controls, GDPR, SOX 404, ITIL, etc.

Promote and raise awareness of cybersecurity programs and posture, driving change and influencing proper cybersecurity hygiene within the organization Required Skills : Strong project management skills to simultaneously work on multiple projects concurrently Experience with managing a GRC tool application support life cycle Strong written and oral communication skills with the ability to explain technical ideas to non-technical individuals at any level Minimum of 2 years of experience in the Governance, Risk and Compliance space Highly Desired : Relevant degree (Risk Management, Computer Science, Management Information System (MIS) or equivalent experience Certification : Certified Information Security Auditor (CISA) or Certified in Risk and Information Systems Control (CRISC) Experience in developing IT Risk Frameworks, methodologies, assessment plans

Report this job

Thank you for reporting this job!

Your feedback will help us improve the quality of our services.

My Email
By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
Application form