6875 - SharePoint Administrator

Position: GRC Analyst
Location: Plano, TX (Hybrid)

Job Description

Client Security Risk Management department is looking for a passionate and highly motivated Vendor Security Risk Consultant. In this role, you will be responsible for assessing and mitigating risk, ensuring compliance with industry regulations, and implementing effective risk management strategies.

Who will I be reporting to?

This role will be reporting to the Manager of Technology Risk & Compliance. The person in this role will support the Information Security, Risk Management department's objective to ensure our program meets/exceeds internal standards and regulatory obligations.

What will I be doing?

As a Risk & Compliance Analyst, you will be responsible for conducting risk assessments, developing risk management plans, and monitoring compliance with internal policies and external regulations. You will also be responsible for analyzing data, identifying potential risks, and making recommendations for risk mitigation. Additionally, you will play a key role in evaluating and implementing new processes and systems to enhance risk management and compliance efforts.

Responsibilities

• Drive the development of and execute risk-based internal controls that clearly define the objective and scope of each risk and control matrix, employing critical thinking and appropriate self-assessment/operating effectiveness testing methodologies.
• Perform the evaluation and design of internal controls and make recommendations for improvement.
• Partner and liaise with internal and external auditors to plan and implement an assessment of the control environment, coordination of timing and execution of process walkthroughs, and a process for timely sharing of potential issues for resolution with respect to internal controls.
• Provide recommendations to implement and improve controls, processes, and procedures to ensure Information Security compliance and achievement of operating effectiveness.
• Responsible for the documentation and maintenance of all business process maps, data lineage, process narratives, control descriptions, and risk and control matrices to ensure accuracy, timeliness, and completeness of information.
• Work closely with business unit teams to ensure proper and timely remediation of Information Security controls.
• Prepare updates to management, including management control remediation plans.
• Develop processes and policies for reporting findings.
• Assess the adequacy of action taken by management to correct reporting deficiencies, accepting adequate corrective action and continuing reviews with appropriate management on action considered inadequate until satisfactory resolution.
• Assist in the execution of the operating effectiveness monitoring program of the internal control framework to ensure controls are tested periodically and reporting is created to showcase status.

Requirements

Bachelor's degree in Finance, Business, or a related field

Proven experience in risk management and compliance in a corporate environment

Strong analytical and problem-solving skills

Excellent written and verbal communication skills

Ability to work independently and collaboratively in a fast-paced environment.

Strong attention to detail

Familiarity with industry regulations and best practices in risk management and compliance