Tell a Friend

Success Stories

From my very first contact with Recruit Arrow, through the application process, interviews, and my acceptance of the position, this service was an invaluable asset. My recruiter gave me insight into the company by sharing her own experiences and views.

READ MORE

Related Category Jobs:

JOB CENTER

Your Window to a World of Opportunities

Senior IT Risk Assessment and Advisory Associate
Location : New York, New York City
Refer job # EFND337210

Job Responsibilities and Requirements: This role reports directly to the Head of Technology Assessments for NYLIM within the 2nd line of defense, and will be key in driving IT Risk Assessments and IT risk advisory efforts. This includes acting as an internal consultant to provide IT risk and control guidance, as well as performing holistic control assessments (e.g., IT Control testing). This individual will partner with the first line of defense risk function to validate that action plans are appropriate to address the observations. This role will interact heavily with business and technology stakeholders, in addition to other corporate risk and audit functions. Responsibilities: Assist NYLIM and its investment boutique subsidiaries with their assessment and remediation efforts and enhancing areas that require control improvements Assist in aligning NYLIM Subsidiaries to the IT Risk and Control capabilities of the parent organization, NYL Corporate Continuously identify, assess, measure and monitor information technology risk by performing independent hands-on risk assessments Validate asset and control risk remediation actions for completeness and sustainability Liaise with business, technology and other corporate areas as needed Maintain deep understanding of organizational objectives, interactions, issues and risks Serve as a contact to management on risk advisory initiatives Establish/manage a communication/reporting process for risk assessments and advisory work Work with other 1st and 2nd Line of Defense Risk Assessment staff, as needed Qualifications: 3-5 years IT auditing or IT Risk experience in financial environments Solid IT audit experience with network, infrastructure, database, cybersecurity, systems and application security Proven technical knowledge of Information Security principles and processes Technical knowledge of applicable standards and regulatory requirements including, MAR/SOX, NIST, COBIT and ISO27000 Experience with Third Party Risk Management/ third-party IT audits Knowledge of risks aligned with financial industries; preferably Asset Management, and/or Insurance Proven experience operating with a Governance, Risk & Compliance (GRC) framework Strong project management skills Ability to function independently with limited direction Ability to communicate complex Information Security risk assessment information to non-technical business leaders to ensure they comprehend the risk being assigned to them Ability to effectively evaluate and communicate risk remediation plans to action plan owners to ensure that mitigation activities are appropriately addressed Ability to discern business relevant risk associated with technology control deficiencies, and to identify the corresponding remediation which is required to mitigate the business impact This individual requires strong written, verbal communication and organizational skills as they will be working on multiple projects with technology stakeholders across the organization.



[Apply Now] [Email to a Colleague] This particular job is currently not active. However, since our clients regularly share with us similar and other job openings, we strongly recommend that you submit your resume. We shall review your resume and get in touch with you as soon as a suitable vacancy comes up to further discuss your interest in exploring the opportunity.Assisting you is our highest priority. Please be assured that none of your materials will be forwarded to any employer without your consent. Of course, all inquiries are kept strictly confidential.

Newsletter and Job Updates