The GRC Contributor will execute Digital & Technology Governance, Risk and Compliance activities to evaluate and reduce IT risk. Communication of control requirements, priorities and evaluate risks, representing that information to the appropriate level of management and to the affected teams with appropriate and necessary context. Contribute to efforts to identify and manage risk, while effectively balancing between enabling the business and maintaining an acceptable level of risk control/management.
Execute risk identification, quantification, and management efforts related to the technology organization.
Provide risk evaluation and assessment of likelihood and impact of findings, vulnerabilities and exceptions.
Provide input to periodic updates on risk management projects for senior executives.
Provide input for plans, roadmaps, and prioritization for projects
Build a network of relationships throughout the organization that can be leveraged to accomplish the broad requirements of this position.
Contribute unique mix of skills and experience to further development of the Risk Management program.
1+ years in IT risk management
Basic understanding of IT risk management, compliance and regulatory requirements Understanding of basic business, finance and management concepts with the willingness to expand in this area as a core aspect of the role
Advanced degree in actuarial sciences mathematics, statistics or business Proven risk management and control experience
Compliance/Governance experience (ISO, SOC, SOX)
Ability to quickly comprehend a problem, develop a solution, and act on the solution
Strong critical thinking skills: developing and testing a hypothesis, then drawing logical conclusions
Ability to coordinate and motivate other people, especially those outside of a direct reporting relationship