Information Risk Resume Samples

4.8 (70 votes) for Information Risk Resume Samples

The Guide To Resume Tailoring

Guide the recruiter to the conclusion that you are the best candidate for the information risk job. It’s actually very simple. Tailor your resume by picking relevant responsibilities from the examples below and then add your accomplishments. This way, you can position yourself in the best way to get hired.

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

Resume Builder
CHOOSE THE BEST TEMPLATE - Choose from 15 Leading Templates. No need to think about design details.
USE PRE-WRITTEN BULLET POINTS - Select from thousands of pre-written bullet points.
SAVE YOUR DOCUMENTS IN PDF FILES - Instantly download in PDF format or share a custom link.

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

Create a Resume in Minutes
AC
A Carroll
Aliza
Carroll
61444 Christiansen Union
Detroit
MI
+1 (555) 488 4874
61444 Christiansen Union
Detroit
MI
Phone
p +1 (555) 488 4874
Experience Experience
Los Angeles, CA
Information Risk Assessment
Los Angeles, CA
Goyette-Goldner
Los Angeles, CA
Information Risk Assessment
  • Provides senior level leadership to subordinates including assigning and managing work, monitoring performance, and conducting performance appraisals
  • Stakeholder management and working across various parts of the organization
  • Performing independent review and challenge of front line adherence to technology management policies and standards
  • Understands workload in order to easily flex with the changing internal and external environments in which we work
  • Performing independent review and challenge of front line adherence to the risk governance framework
  • Identifies, recruits, and manages a team of application development, infrastructure / ITIL, cyber, and testing process subject matter experts
  • We value workplace diversity
San Francisco, CA
Management Information & Risk
San Francisco, CA
Cormier and Sons
San Francisco, CA
Management Information & Risk
  • Work with the global team to identify areas for efficiency improvements and cost saving opportunities and provide business cases to have the work prioritised
  • Work in conjunction with the different COO and Cash desk teams to provide greater transparency into the Cost allocation
  • Prioritize work load to meet all targets
  • Prioritise work load to meet all targets
  • The individual will be responsible for cross asset class Management Information (cash securities, cash products and asset servicing
  • An advanced technical knowledge in Microsoft systems; specializing in Excel (macro and formula level)
  • Ensure all reporting is reconciled
present
Detroit, MI
Information Risk Director
Detroit, MI
Dare, Hegmann and Toy
present
Detroit, MI
Information Risk Director
present
  • Assists with creating, updating and maintaining risk related forms, work instructions, checklists, and other related documents
  • Ensure resources are leveraged cost-effectively through budgeting and planning
  • Drive a risk mitigating culture within Banking Technology aligned to proactively identify, assess, and manage inherent risks within our platforms and services
  • Provide guidance on implementing information security objectives
  • Evaluates and recommends new and emerging security products and technologies
  • Support the execution of JPMIS projects whether providing SME knowledge, analysis of solution design assistance
  • Strengthen the Banking Technology control environment through education, collaboration, and oversight
Education Education
Bachelor’s Degree in Computer Science
Bachelor’s Degree in Computer Science
Kaplan University
Bachelor’s Degree in Computer Science
Skills Skills
  • Excellent organizational skills, coupled with ability to be versatile and flexible
  • Ability to assess existing processes and create new ones that proactively manage and reduce risk for the Firm
  • Knowledge of current regulatory impact and expectations on technology per Sarbanes Oxley, Gramm-Leach Bliley Act, Dodd- Frank , RESPA, and other regulations affecting the Credit Card industry
  • Knowledge of current regulatory impact and expectations on technology per Sarbanes Oxley, Gramm-Leach Bliley Act, Frank-Dodd, RESPA, and other regulations affecting the Credit Card industry
  • Exhibit sound business judgment and the ability to work successfully with all levels of management
  • Demonstrated ability to work independently and within a team
  • Proficient Vendor Management experience
  • Ability to drive action within the line of business ensuring the risk and control agenda is met
  • Ensure resources are leveraged cost-effectively through budgeting and planning
  • Experience in managing large and complex enterprise infrastructure across Plan, Build and Operate areas
Create a Resume in Minutes

15 Information Risk resume templates

1

Cib-information Risk Internship, Based Resume Examples & Samples

  • Students of Business Administration, Economics, Engineering or Computer Science
  • Under graduation expected to December, 2015 (minimum)
  • Be able to prioritize work, meet tight deadlines, and have strong attention to detail
  • Good written and verbal presentation skills
  • Knowledge of IT processes is desirable
  • Work well in a fast-paced team-based environment
  • Strong problem solving, proactive and analytical capabilities
  • Advanced/Fluent English Language
2

Information Risk Oversight Resume Examples & Samples

  • Minimum of 5 years’ worth of work experience in the financial services industry
  • Risk Management (Operational Risk) experience a plus
  • Ability to multi-task with attention to detail
  • Strong proficiency with Microsoft Office
  • Knowledge of SharePoint and Archer is required as is a good working knowledge of relational databases
  • Strong interpersonal skills in order to work in a team oriented environment
  • Flexible and self-motivator
  • Ability to develop strong working relationships and be able to communicate clearly, both in writing and verbally
  • Attention to detail, project management and prioritization skills will be key in balancing day-to-day activities
  • Awareness of Information Security and IT Security Practices
  • CISM or CISSP certification a plus
3

Technology & Information Risk-threat Intelligence Analyst Resume Examples & Samples

  • Maintain an understanding and awareness of the overall threat landscape (cyber,geo-political)
  • Engage with stakeholders across the firm to identify intelligence and information requirements
  • Provide recommendations on intelligence products to support requirements across the organization
  • Identify new open source intelligence products and sources (OSINT)
  • Review threats and provide analysis on how they relate to Morgan Stanley’s Business Units
  • Report findings and draft products for internal customers, clients, and senior management as needed
  • Work with industry partners on information sharing initiatives
  • Maintain relationships with public and private intelligence community members
  • 2-4 years of professional experience, preferably within financial services, law enforcement, and/or the intelligence community
  • Strong analytical, and data analysis skills
  • Ability to translate technical and complex information into business terms for management
  • Knowledge of the current threat environment from a cyber and geo-political perspective
  • Understanding of key intelligence analysis concepts, including the intelligence cycle
  • Excellent writing and presentation skills are required to communicate findings and recommendations
  • Experience with Open Source Intelligence Products (OSINT) and sources
  • Ability to obtain a Secret Level Clearance
  • Bachelor Degree in International Studies, Information Technology, or Criminal Justice / Intelligence fields
  • International experience or experience working for a global organization
  • Willingness to learn about the technology and cyber threat environment
  • General understanding of the Tactics, Techniques, and Procedures of cyber threat actors
  • Active memberships with associations across the security and intelligence community
  • Experience using intelligence analysis tools and platforms
  • Graduate level degree preferred
4

Information Risk Director Resume Examples & Samples

  • Evaluates, designs, implements and supports information risk aspects of JPMIS products and solutions
  • Ensures that all layers of the platform and application environment integrate in a secure fashion
  • Conducts security risk assessments on JPMIS applications and infrastructure, both new and current, utilizing the appropriate security diagnostic tools. Identifies and assists the remediation of security deficiencies, issues and risks
  • Assist with the development and interpretation of JPMIS specific policies and procedures
  • Support the execution of JPMIS projects whether providing SME knowledge, analysis of solution design assistance
  • Participates in security audit and compliance efforts, risk analysis, vulnerability testing, and security reviews
  • Evaluates and recommends new and emerging security products and technologies
  • Assists with creating, updating and maintaining risk related forms, work instructions, checklists, and other related documents
  • Assist coordination and implementation of appropriate Information Security governance, metrics collection, and reporting capabilities
  • Provide consultancy for analysis and identification of broader systemic issues based on results of security metrics
  • Provide guidance on implementing information security objectives
  • Work with diverse IT and business teams to assist in the remediation identified issues in a risk prioritized, effective and efficient fashion
  • 10+ years of experience with information security technologies, technology policy, risk metrics and analytics
  • Direct leadership experience in one or more of the specific technical areas of program delivery, metrics and analysis, risk policy and risk communications
  • Must have a strong Information risk background, including information privacy, data protection, regulatory frameworks, as well as risk and security architecture
  • Accomplishments in program leadership, policy/standards development, project management
  • Demonstrated track record of maintaining currency with technological trends and available security solutions in the marketplace
  • Strong interpersonal and communication skills, plus the ability to achieve goals through influence, collaboration, and cooperation
  • Demonstrated ability to work effectively with all levels of and organization from executives to technology specialists
  • Expertise in risk management approaches to assess and address security and other types of Information Technology-related risks
  • Integrity and high standards of personal and professional conduct
  • A bachelor’s degree or equivalent experience is required
5

Information Risk CSA Process Specialist Resume Examples & Samples

  • Accountable for defining processes, tools and supporting methodology within the scope of the CSA
  • Oversees and delivers all of the activities for operationalizing the processes including, but not limited to, change management, communications, awareness, sustainment, revisions and documentation
  • Ensures that all processes meet the ORMF’s requirements
  • Provides knowledgeable counsel to IS Officers, Assessors, CSA staff, OROs and others who leverage the CSA processes/tools and resolves issues arising from technical or process flow issues
  • Develops and maintains procedures and control systems that are used to ensure/demonstrate compliance
  • Accountable for driving the efficiency and effectiveness of the process
  • Produces and conveys to Senior Management analytical information and performance metrics
  • Understands and follows security processes and understands how they apply to the processes
  • Contributes to BMO’s overall business results by making recommendations that significantly improve operational efficiency and effectiveness
  • Manages and provides coaching to all staff who rely on the processes
  • Current processes include, but are not limited to
  • Possesses a university degree/college diploma and/or industry specific designations/accreditations and/or 5 - 7 years of experience in the IS or IT environment
  • 2-3 years demonstrated experience in process improvement, risk assessment
  • Broad/diverse business knowledge of BMO and/or T&O organization
  • Advanced understanding of business applications, hardware/software/networks platforms
  • Proficient with Microsoft InfoPath, Excel, Powerpoint
  • Advanced knowledge of change management methodologies
  • Advanced knowledge of risk rating methods
6

Business Transformation Risk Specialist Information Risk Resume Examples & Samples

  • Due Diligence, risk assessment and subsequent independent oversight and monitoring monitoring of business transformational activities, including mergers, acquisitions, divestitures and joint venture formation
  • Risk assessing proposals to out-source activities to or from BNY Mellon; and
  • On-going Vendor Risk Management (VRM) in EMEA only
  • Archer Technologies SmartSuite Framework
  • Procurement, out-sourcing, supply-chain or vendor managementexperience
  • Other professional qualifications/memberships, relevant to Information Security (Institute of Information Security Professionals, CISA orQICA)
  • Excellent stakeholder management skills
  • A strong sense of proportionality, reasonableness and cost with respect to risk response
  • Able to co-operate and work well with others adopting an approachable style important as we work closely with a large and diverse set of suppliers and customers
  • Must be able to see the customer perspective, i.e. from a business point of view, the most secure solution is not always workable or realistic considering costs and benefits
  • A keen eye for an opportunity to improve existing process and take the initiative to promote such an enhancement
  • Must take accountability for their actions and be open and honest when things have gone wrong, and celebrate successes when things have gone well
  • Must be rigorous and thorough especially when logging and tracking issues through to conclusion
  • Candidate must be able to manage their own workload and run several tasks concurrently so as to meet the realistic targets and priorities set in conjunction with management. This is especially important because we work in an environment where priorities can change quickly and with little prior warning
  • Demonstrate a high-level of commitment and self-motivation, combined with enthusiasm and a genuine interest in the role of Risk Assessment in business
  • Demonstrates a calm professional approach, with a good understanding of time constraints and the need to escalate/inform departmental management as appropriate
  • Adapts personal approach to suit situations, individuals, groups and cultures. Is flexible in relation to getting the job done
  • BNY Mellon often goes through periods of change and it is therefore critical that this person adapts to changes in the organisation and job responsibilities and displays a positive attitude
  • Able to express clearly and fluently, both orally and in writing. Considers the audience, avoiding technical jargon wherever necessary and appropriate
  • Documentation must be professional, well structured and presented and require the minimum management review and revision. This is especially important
  • Good at listening and analysing a situation or the information provided
  • Works well with others or individually. Supports the development of the team as a whole, places team before personal interests
7

Asia Technology & Information Risk-regional COO Resume Examples & Samples

  • Serve as the proxy for the Head of Asia TIR in providing greater transparency of T&D Risk processes to business units, LCD, IAD, ORD and other divisions when required, and function as a point of contact for technology risk related topics in the region
  • Collaborate with SMEs and content owners to facilitate IT risk related management reporting activities across the region. Management reporting coverage scope includes regional, country-level, business unit and entity level reporting
  • Defining the agenda and ensure alignment with global TDRC as well as across the different forums in Asia
  • Preparation and review of the content / materials
  • Ensure consistency and coherence of the content
  • People agenda and Communications programs including efforts to improve staff engagement as well as contributing to the global people agenda program across TIR
  • Financials, Headcount and Space management and other business management related activities as needed
  • Provide leadership to senior managers across TIR Asia
  • Manage and control all aspects of financial expenditure
  • Work cross functionally within TIR and instill a culture of teamwork and open communication
  • Effectively communicate strategy and standards with the team, business clients and TIR key stakeholders
  • Drive regional consistency in risk reporting
  • Strong understanding of financial industry businesses and how they leverage technology
  • Strong familiarity with Technology Risk Management concepts and regulatory environment in financial firms
  • Outstanding communication and interpersonal skills. Ability to work effectively with all levels of the organization
  • Ability to draft high quality written products that are comprehensive, accurate, and tailored to the audience
  • Detail-oriented with strong organizational skills and an ability to manage multiple demands and changing priorities
  • Previous IT risk control or audit experience preferred
  • Working experience of risk assessment methodologies, internal controls and industry technology risk management frameworks such as ITIL, CobiT, and ISO 27001
  • Industry Certification, such as CISA, CISSP, CISM, and CRISC
  • Relevant Technology Risk, IT Security and Information Security experience
8

Information Risk Director Resume Examples & Samples

  • Drive all aspects of CTR Risk reduction across CTR LOBs
  • Serve as a Subject Matter Expert for all IT Controls Policies, acts as Liaison with CTR Sub LOB teams to providing Controls and Audit expertise
  • Drive Risk Assessment quality across CTR, provide independent controls based view of CTR LOB Risk self assessments - advise LOB teams on appropriate test and rating strategies
  • Drive CTR Risk Mitigation, drive LOB teams to address any Risk issues, implement risk mitigation tracking and ensure mitigation actions address the underlying issues identified
  • Audit & regulatory reviews - Partner with CTR LOB teams and Audit teams during all Audit and regulator activities, provide SME assessment of any Audit requests for Information, observations and response
  • Drive Firmwide Risk strategies, work across Firmwide teams to define and implement risk strategies
  • Build/Maintain key relationships with Peer Information Risk Lead teams across Enterprise Technology, Audit Teams, Application Development and Application Support teams, Identity and Access management teams, Infrastructure support teams
  • 10+ years of experience in Information Technology
  • 7+ years of Matrix Management capabilities - work across multi disciplined teams driving to a common deliverable
  • 5+ years in Risk Management and/or Technology Audit functions
  • Experience with Application Development and / or Operations teams
  • Strong negotiation skills, work well under pressure, provide balanced responses to groups with divergent views
  • Strong Analytical and problem solving skills
  • Project management capabilities to drive completion of workload to schedule
  • Executive presence - comfortable presenting to all levels of the organization
  • Reporting - excellent reporting and presentation skills, provide succinct management summary of complex issues, provide fact based data including status, trend and completion projections
9

Information Risk Resume Examples & Samples

  • 7+ years IT Risk experience, including 3+ years experience with Technology Audit functions
  • 3+ years experience with project management processes; including project planning, issue management, risk management, resource tracking and management score-carding
  • 3+ years experience with Operating System Security and Distributed Security
  • Broad technical knowledge across Identity &Access Management (IAM) is required; Data Protection & Privacy disciplines are a plus
  • Must have a high degree of technical expertise to interface with technology stakeholders and recommend IAM based process improvements
  • Strong analytical and problem solving skills are required
  • Knowledge of key Identity and Access Administration functions and toolsets, including on-boarding, certification, termination, and entitlements management
  • Strong knowledge of technology risk management and industry best practices
  • Proficient experience with MS Excel and Access is required
  • CISSP, CISA, CRISC certifications a plus
  • Experience with ACF2 is a plus
10

Information Risk Resume Examples & Samples

  • Represent the GIAM program governance function within North America partnering with Global Lead
  • Maintain risk register for the regional regulatory compliance issues across different geographies
  • Conduct the periodic assessment of programs & documentations to ensure completeness and alignment with control objectives
  • Partner with different workstream leads/PMO staff and technologists to review/monitor/escalate/resolve program governance risks/issues
  • Escalate the risk issues that could impact the program deliverables or could cause control deficiencies as independent functions in Steering forum
  • Review the evergreen transition of program to BAU functions and control reporting is established
  • Provide consulting support to regional risk colleagues for Access management related standards & policy consultation
  • Build deep understanding of the GIAM ecosystem work toward development of management reporting framework for escalation of key risk and governance issues
  • 7+ years of Information/Technology Risk experience
  • 5+ years Leadership experience in a Global Operational and/or Technology Risk Management environment in the financial industry
  • Must be open to a flexible work schedule, as this role will be frequently partnering with a Global Lead
  • Familiarity with IT Risk management framework and control self assessment process
  • Solid understanding of project management framework and best practices
  • Proven leadership skills with excellent track record in delivering high performance
  • Excellent project management skill to manage the risk initiatives in global/regional environment
  • Strategic thinker; Ability to make sound business decisions and gain cooperation of others
  • Results oriented; Change agent ready to challenge the status quo for continuous improvement
  • Strong interpersonal skills; team building skills
  • Certifications in IT Risk area such as CISA,CISSP or CRISC are a plus
11

Director Information Risk Resume Examples & Samples

  • Working knowledge of an Information Risk Management (IRM) controls, regulatory and risk issues. This includes the practices to ensure information is protected in accordance with its value and sensitivity, as well as legal, regulatory and contractual commitments
  • An Understanding of IRM governance, information classification and handling, records management, logical access management and data governance (e.g. controls of manage data leakage, records retention, and joiners, movers, leavers)
  • Track record of success/high performance in a large, matrix organisation.Relevant professional qualifications (e.g. CISA, CISSP, CRISC, CISM or other relevant technical qualification; and graduate degree)
12

Management Information & Risk Resume Examples & Samples

  • Work as part of a global team to create better understanding of the drivers behind the current Agent banks and CSD spend
  • Deep dive front to back analysis of Cash securities trade flow for all Global markets
  • Work with the global team to identify areas for efficiency improvements and cost saving opportunities and provide business cases to have the work prioritised
  • Work in conjunction with the different COO and Cash desk teams to provide greater transparency into the Cost allocation
  • Build new query tool and MI capability for the Settlement and Custody optimisation team and the Securities settlements as whole
  • Be able to work in fast moving / challenging environment – be able to multi task and work to deadlines
  • Analyzing large datasets to spot efficiency drives
13

Management Information & Risk Resume Examples & Samples

  • Complete awareness & understanding of front to back processing/flow including system infrastructure
  • Running and magnificence of daily/weekly/monthly reporting
  • Ensure all reporting is reconciled
  • Further automation of current processes
  • Prioritise work load to meet all targets
  • Challenge existing processes for increase of efficiency
  • Understand capacity and resource capabilities
  • The individual will be responsible for cross asset class Management Information (cash securities, cash products and asset servicing
14

Technology Information Risk Resume Examples & Samples

  • Support the Global Technology IAS Program in implementation of new IAS program requirements in accordance to IAS Policy and Standards
  • Maintain and enhance the ‘evergreen’ process to ensure the compliance with all IAS guidelines
  • Act as Enterprise Technology IAS Subject Matter Expert (SME), Liaise with corporate function teams, regional leads, risk and control officers, LoB leads to ensure IAS project requirements have been met & ensure efficiency of engagement model
  • Provide metrics-driven performance monitoring, analysis & trending requirements
  • Create IAS updates for diverse stakeholders and Risk & Control Forums
  • Demonstrate organizational and time management skills, with the ability to adapt and adjust to changing priorities and to manage multiple assignments with conflicting deadline
  • Minimum 5 years of experience in IAS, Migration management, Information Risk or Controls management
15

Information Risk Senior Analyst Resume Examples & Samples

  • Working with business and IT teams to identify, assess and treat information risks; tracking the risks and the associated controls
  • Provide assistance to business teams in the risk and security considerations of business operations and new projects
  • Provide assistance to IT teams in defining and executing action plans to implement controls
  • Monitor compliance with the agreed controls on a regular basis
  • Manages and maintains reporting of control / compliance progress
  • Supports implementation of an overall control framework (comprehensive control set) in IT e.g. COBIT
  • Maintain the risk register and support continuous improvement of IT risk management processes
  • Supports internal and external audits to ensure their success
16

Information Risk Director Resume Examples & Samples

  • Develop and maintain strong business and technology relationships, becoming a trusted partner, as well as building relationships with Lines of Businesses, Corporate functions such as Audit, and Corporate IT Risk
  • Build and mature a culture focused on the pro-active awareness and improvement of the risk environment
  • Demonstrate and embed the behaviors and competencies that create a risk management mindset within the organization
  • Support and monitor ongoing staff education and development in effective risk management
  • Experience in managing large and complex enterprise infrastructure across Plan, Build and Operate areas
  • Knowledge of current regulatory impact and expectations on technology per Sarbanes Oxley, Gramm-Leach Bliley Act, Frank-Dodd, RESPA, and other regulations affecting the Credit Card industry
  • 10 - 15 years experience in technology operations or IT risk management, preferably for financial institution and/or strong background in IT Risk Advisory
17

Senior Manager, Information Risk & Control Resume Examples & Samples

  • Accountable for the maintenance, enhancements, and automation of the process for information risk assessments of business units and shared services
  • Provides security guidance and consulting services to business units and managers of shared services
  • Accountable for the completion of information risk assessments of business units and shared services
  • Drives independence within the 1B function ensuring 1A activities stay with proper activity owners
  • Partners with GITRM management in order to define requirements for security management, analytics, reporting and services
  • Maintains the independence of the controls assessment process, providing healthy challenge back to the business where controls need strengthening
  • Develops proper paths of escalations to ensure remediation of risk is treated with urgency
  • Implements a more formal security awareness component to raise awareness of the risk controls process, schedule, and benefits to internal business partners
  • Partners with senior management team to deliver effective execution of all processes in order to meet productivity, quality service and business goals
  • Accountable to support management’s direction on financial planning and budgeting, expense management and costing & billing process
  • Provide strong leadership, coaching and guidance to a multi-disciplinary, professional team of employees
  • Follow through with HR policies and best practices for consistency across the GITRM organization
  • Supports the implementation of all human resources programs, policies, and initiatives. Is consistent with the general directions and strategies provided at the enterprise and divisional levels, including
  • Possesses a university degree/college diploma in Computer Science or equivalent work experience, and 10+ years of strong experience in security operations, risk management, and industry experience (development, infrastructure, application, operations and security)
  • Demonstrated people management skills are required
  • Well versed in mentoring, people development and follow through of professional development
  • Completion of at least one critical security certification is desirable
  • CISSP, CISA, ITIL, ISO17799, ISSAP, ISSMP
  • Demonstrates advanced knowledge of security systems, access controls, network security, security management, security architecture, risk management, and security governance framework
  • Displays a strong awareness of emerging security technologies and industry trends
  • Illustrates advanced knowledge of organizational, processes and business models
  • Maintains a strong understanding of policies, cross organizational roles, and governance structures/processes within the Bank
  • Understanding of Regulatory requirements i.e. GLBA, SOX, PCI-DSS etc
  • Possesses advanced facilitation and presentation skills
  • Displays advanced communications, relationship management, leadership and team management skills
  • Presents themselves as a people leader, maintaining a consistent professional demeanor
  • Broad understanding of the Financial Regulatory and legal environment for the US
  • Illustrates advanced decision and risk analysis skills
  • Exhibits advanced strategic visioning and planning skills
18

Global Information Risk Assessment Privacy Senior Manager E Resume Examples & Samples

  • Understanding compliance with PwC data privacy and information use, security and protection policies and requirements; data privacy and protection laws and regulations across the globe, including particularly in the EU and sector-specific requirements; data laws and regulations governing cyber and information security, including familiarity with ISO27001 and other information security certification and reporting regimes and requirements
  • Using website and application notices and statements (online terms of use and privacy statements); and,
  • Understanding and knowledge of firm policies and guidelines
  • Advising business and application development teams on how to design their applications to be privacy protecting and enhancing whilst achieving business objectives
  • Defining privacy-related risks as part of the iRAT process and communicate them as practical guidance to downstream Global IT teams across the network and other related stakeholders
  • Providing practical guidance to application development and business teams regarding the applicability of privacy regulations and standards and compliance with applicable regulations
  • Coordinating the application of privacy statements, cookie notices and other required notices for global IT applications
  • Assisting project and IT teams with privacy impact assessments and analyses
  • Leading and/or coordinating the update of privacy related baseline controls
  • Assisting with the development of privacy training materials and other communications to increase global IT and project teams’ understanding and awareness of privacy policies, data handling practices and procedures and legal obligations
  • Leading or assisting with developing and conducting on-going privacy training and awareness activities for global IT and project team
  • Engaging with business teams and project teams to bring awareness of industry-leading on privacy and data security issues
  • Collaborating cyber privacy and security policies and procedures; and,
  • Representing global data privacy and protection interests and considerations in the iRat process, translating relevant the legal and policy requirements
19

Information Risk & Controls Analyst Resume Examples & Samples

  • Assist with the annual RCSA program for RFT, including setting up workshops to identify inherent risk and to request appropriate evidence for Controls. Testing the evidence of the controls and documenting the test results
  • Work actively with the Technology Controls Officers on the guidance and IT-related issues
  • Participate in additional key control projects related to enhancement of the SOX program
  • 5-7 + years of experience of professional Information Technology experience
  • 3 + years of experience in IT Audit, Compliance or Governance ("Big 4" experience preferred)
  • SOX or RCSA IT controls experience is preferred
  • Experience testing direct IT Controls is a plus
  • Strong background in Auditing, understanding of internal controls, particularly General Computer Controls (GCC)
  • Ability to maintain high standards with a drive to achieve the right answer in difficult and/or ever changing situations
  • Ability to prioritize and work under stringent timelines
20

Information Risk Entitlements Analyst Resume Examples & Samples

  • Manage the onboarding of new applications to the Entitlements framework from inception to go-live, managing all aspects for the project along the way
  • Manage expectations, timelines and prioritize working with the Application Development Manager’s (ADM) and RFT Entitlements Development team
  • Engage with application ADM’s to ensure proper controls are in place with respect to Access Administration and propose adoption of strategic tools
  • Develop use cases and test cases as needed
  • Impact Analysis – Perform Impact Analysis; develop use cases to explain/demonstrate requirements/specifications to key stakeholders
  • 3-5+ years of experience as a Project Manager and/or Business Analyst, executing projects within the financial services industry
  • Experience in Identity and Access Management is preferred
  • Information Risk or IT Security Experience is a plus
  • Strong familiarity with project management and analysis software, such as Excel, Access, MS Project, Visio, SharePoint, etc
  • Ability to perform in a high pressure and fast paced environment
  • Highly disciplined, self-motivated, and delivery-focused individual who is able to work independently
  • Excellent analytical and communication skills (verbal and written)
  • Bachelors’ degree or equivalent experience is required
21

Management Information & Risk Resume Examples & Samples

  • Knowledge of at least one of the product classes
  • An advanced technical knowledge in Microsoft systems; specializing in Excel (macro and formula level)
  • Database structure knowledge
  • Tableau
  • SharePoint
  • Self-motivated individual that can work on own initiative and deliver on time whilst also being a team player
  • Running and maintenance of daily/weekly/monthly reporting
  • Analytical mindset to solve reporting issues
  • Prioritize work load to meet all targets
  • Ability to challenge existing processes for increase of efficiency
  • An effective problem solving and analytical skillset
  • A developed control mindset with an ability to be able to challenge the status quo
  • Advanced excel formula knowledge
  • VBA programming skills
22

Digital TCO Information Risk Director Resume Examples & Samples

  • Drive a risk mitigating culture within Banking Technology aligned to proactively identify, assess, and manage inherent risks within our platforms and services
  • Develop an integrated technology control framework maintaining the appropriate balance between risk mitigation, product growth, and financial returns
  • Collaborate with Audit, Information Risk Management, business control functions, and the Banking Technology teams to drive transparent, measurable, and sustainable control improvements
  • Partner closely with business and technology stakeholders providing clear direction and guidance to manage risks, optimize returns, and enhance the client experience
  • Collaborate with ADMs on Internal Audits, SSAE16, SOX, and regulatory assessments
  • Minimum 10 years of technology management experience
  • Ability to establish good working relationships with team members, colleagues, and external organizations
  • Strong preference for experience with Mobile & Customer Facing web based financial products (origination, servicing, money movement, etc)
  • Candidate is certified in one or more of the following or commensurate experience – CISSP, CRISC, CEH, CISA
23

Information Risk Assessment Resume Examples & Samples

  • Identifies, recruits, and manages a team of application development, infrastructure / ITIL, cyber, and testing process subject matter experts
  • Provides senior level leadership to subordinates including assigning and managing work, monitoring performance, and conducting performance appraisals
  • Understands workload in order to easily flex with the changing internal and external environments in which we work
  • Builds strong relationships with the first line
  • Communicates information risk matters to senior management
  • Experienced in building and operating information risk management first and / or second line assessment and control testing functions
  • Understanding of control and risk management concepts and knowledge of the operational aspects of the information risk business
  • Able to enforce and communicate related policies, procedures, and guidelines
  • Able to be a leader across the organization, a valued partner, and subject matter expert on review and challenge processes, information risk governance framework / policies / procedures / standards / controls, and mitigation strategies
24

Information Risk Assessment Resume Examples & Samples

  • Performs reviews and reports on mergers, acquisitions, divestitures, and other material changes to the enterprise operating environment
  • Leverages broad knowledge of information risk management to define assessment and testing processes for due diligence scenarios
  • Engages with other assessment teams to define and conduct deep dives as required
  • Prepares reports for executives and senior management to clearly communicate impact to the due diligence process
  • Proven knowledge of how to conduct risk reviews on mergers, acquisitions, and divestitures
  • Prior experience in defining and operating processes to conduct targeted and rapid reviews
  • Able to be a leader across the organization, a valued partner, and subject matter expert on conducting risk reviews on mergers, acquisitions, and divestitures regarding systems integration and related information risk assessments
  • Education: Bachelor's Degree required
  • Certifications: 1 or more of GSEC, CISSP, CISM, CISA, CRISC, CGEIT preferred, but not required
25

Information Risk Senior Manager Resume Examples & Samples

  • 6+ years of experience in information security in the Banking and Financial Services Sector related field including management experience
  • Knowledge of Financial security compliance regulations (PCI, FFIEC, GLBA, etc.)
  • In-depth understanding of network and system security technology and practices across all major-computing areas (mainframe, client/server, PC/LAN, telephony) with a special emphasis on Internet related technology
  • A high level of integrity and trust
  • Focused personality, with a demonstrated ability to take initiative, successfully handle and prioritize multiple competing assignments and effectively manage deadlines
  • Security certifications desired such as CISA, CISSP, CISM, CRISC etc
  • Certified PCI –ISA preferable
  • Ability to think strategically; work with a sense of urgency and pay attention to detail
  • Ability to present complex solutions and methods to a general community
  • Ability to interact with all levels of management and high-profile individuals
  • Independent thinking, willingness to "step outside the box" and take reasonable, calculated risks
  • Must be reliable and adaptable
  • Outstanding work ethic
  • Strong team player that collaborates well with others to solve problems and actively incorporate input from various sources
  • Experience with working on global teams across time zones, cultures and languages
26

Information Risk Administrator Resume Examples & Samples

  • Support the CIB Program Management Office project reporting including milestone review
  • Assist with maintenance of a CIB Service Management inventory and support the associated governance framework including developing committee charters, arranging meetings and tracking actions
  • Support the Risk & Break Management lead with policies/control reviews, internal Audit activities and Management of control breaks
  • Support the Education & Awareness lead with program Management including data gathering and analysis
  • Assisting the reporting lead with communications and reporting
  • Support the Governance team in responding to the changing regulatory landscape and regulatory reporting
  • Liaise with the BISO on targeted communications
  • Contribute to Risk Reporting and action plan tracking process within the team
  • Key Skills/Qualifications
  • Proficient with Microsoft Project, PowerPoint and Excel
  • Practical working knowledge of SharePoint
  • Exposure to financial services environment preferably in Investment Banking or from Consultancy
  • Experience in working with diverse cross geography teams
  • Exposure to JP Morgan internal systems and process ideal
27

Information Risk Control Lead Resume Examples & Samples

  • Minimum 7 years of work experience as a Information Risk Manager
  • Minimum of 5 years of project management experience
  • Minimum of 5 years of change management experience
  • Minimum of 3 years of Six Sigma and/or CMM methodologies experience
28

Information Risk Controls Manager Resume Examples & Samples

  • Lead stakeholder identification and engagement both internally to Information Security team and wider across the Business
  • Lead the assurance that central Controls meet the design and operational requirements of all Businesses
  • You must have proven senior stakeholder management experience and proven ability in influencing senior stakeholders
  • Build and maintain effective relationships with all stakeholders and develop a network of trusted peers, and become a "go to" advisor for all business areas
  • Manage identification of Control Gaps and identification of candidate Owners for those Controls. The candidate must have experience in identifying control gaps and provide, preferably in an Audit function
  • Lead statistical analysis of the identified Controls landscape to determine how business performance can be improved (continuous improvement opportunities), and provide statistical substantiated evidence of the risk environment
  • Identify where new automation opportunities are present, with appropriate solutions and present to senior stakeholders for adoption
  • Candidates holding a current CISSP qualification are preferable. Professional qualifications also desired are CISM, CISA (or similar)
  • Information risk / operational / cyber risk, especially relating to Policies covering Information Security
  • Business reporting including associated technical and statistical skills
  • Structured problem solving, effectiveness/efficiency skills and qualifications (e.g. Six Sigma)
  • Production of high-quality communication outputs through varied outputs and sophisticated level of communication skills
  • Personal Resilience in a fast-pace, complex and evolving environment
29

Information Risk S & G Senior Analyst Resume Examples & Samples

  • Execute day-to-day control assurance activities and tasks, validating the control design and operational effectiveness
  • To oversee Management Self Assessments (MSAs) of IRM controls to assess risk posture for Barclaycard
  • Develop test result reports and assist the business with submissions of non-compliance requests and recording of issues in the relevant tools and risk registers
  • Bachelor’s degree or 2 years’ experience in Technology, Information Security; or
  • Minimum of 2 years’ experience in IRM Risk Analyst role and Bachelor’s degree
  • Data analytical skills
  • Adept use of Microsoft Word, Excel, Visio, and Power Point
  • Knowledge of Information Security industry guidelines and best practices
  • Experience working within a large, complex organization
30

Information Risk Director Resume Examples & Samples

  • Collaborate with Audit, business control functions, and the Banking Technology teams to drive transparent, measurable, and sustainable control improvements
  • Collaborate with Application Owners on Internal Audits, SSAE16, SOX, and regulatory assessments
  • Support the Risk & Control Self Assessment (RCSA) process ensuring issues and related action plans are timely documented, assigned, and resolved
  • Drive the Technology Controls education agenda
  • Lead Technology Controls forums across multiple application areas
  • Strong organizational skills with ability to effectively multitask
31

Information Risk Data Analyst Resume Examples & Samples

  • Create presentations and reports in line with monthly reporting calendar, and be responsible for delivering to deadlines
  • Identify automation and process improvement initiatives to improve the efficiency of the IT risk reporting processes
  • Perform data entry activities as needed where programmatic interfaces may not exist
  • Make data files available for consumption each day (even though some sources may be refreshed only once a week/month)
  • Liaise with and maintain relationships with various technology control officers to ensure line of business IT risk reporting requirements are met
  • Craft suitable risk messaging fit for executive management by distilling complex issues into actionable decision options
  • Guide and develop risk analysts within the team to become more skilled in risk management
  • Build relationships across the organization with a view to improving service delivery
  • Proactively identify emerging risk issues for management escalation based upon data and reporting created
  • Assist in documenting and implementing processes related to on-boarding requirements for applications/platforms feeding into the firm's risk management tools
  • Contribute thought leadership and assist with security metrics development and implementation
  • Assist with requirements for extracting data for various assessment, cyber and other risk and control programs, and from various sensor based data sources
  • Participate and support the monthly reporting cycle to corporate
  • Support innovation and enhancement efforts
  • Communicate and escalate issues and incidents as required by process or management
  • Perform other tasks as directed including data queries, ad-hoc analysis for various projects
32

Information Risk Data Aggregation Specialist Resume Examples & Samples

  • Manage timely collection of key risk data from a variety of sources and systems and ensure its accuracy and consistency as the first defense for data quality of the Risk Reporting Team
  • Perform risk data aggregation and work with Risk Managers and Content SMEs to design report visuals and then be responsible for producing them for weekly, monthly and quarterly risk reports. This includes the use of formulas and worksheets, creating and modifying pivots and queries in Access/ Excel/ SAS/ Business Objects, and designing and building PowerPoint slides or templates within a report production application
  • Act as liaison between Risk Reporting Team and ARM Data Management and Chief Data Office Understand data sources and the data environment. Identify and research data anomalies. Respond to questions on data discrepancies, sources of data and data extracts
  • Define data needs, propose enhancements to existing data processes or data fields, identify data problems/errors, and participate in the Data Quality Incident Process when data errors occur
  • Support Information Risk (and other risk type) Content SMEs by providing supporting data, producing report visuals, and data mining for analysis. Work with SMEs to investigate, analyze and interpret period- over-period changes in metrics
  • Ensure a robust control environment by documenting, maintaining and adhering to operating procedures, including performing periodic testing of data aggregation tools, formulas, and queries to ensure they are working as intended; and performing visual and reasonableness checks/validations and researching unusual variances
  • Other ad-hoc duties as assigned by manager
  • Projects
  • 3+ years of data analysis/aggregation/reporting experience
  • Experience establishing and/or maintaining databases (SQL, SAS, Oracle, …)
  • Experience building automated/semi-automated data feeds from multiple source systems
  • Experience with data visualization tools such as Tableau, Qlik, Spotfire, W Desk or similar
  • Knowledge of/previous exposure to information risk a plus
  • Proficient in Word, Excel, PowerPoint, Access
  • Self-motivated and detail oriented
33

Information Risk Associate Resume Examples & Samples

  • Monitor existing technology issues and actions and support the closure verification process
  • Complete quality assurance reviews of various control assessment programs
  • Identify opportunities for process improvements to deliver increasing efficiency within the Risk & Control framework
  • 7-10 years of experience in IT, IT Risk management, audit or equivalent
  • Broad understanding of Inherent Risk and Control effectiveness to be able to communicate concisely and completely to others
  • Experience with risk assessment, interpretation, analytical and negotiation skills
  • Working knowledge within the following risk domains/technologies