BNY Mellon Careers

Project Leader - Risk Analyst

Pune, India
Risk


Job Description

Role and Responsibility:

·         The analyst/ technical lead would be part of global Technology Risk Management (TRM) team based in India, to perform Risk Assessments on BNY Mellon’s Third Parties.

·         This individual would assess the adequacy of controls, standards, policies, and procedures to protect the Confidentiality, Integrity and Availability of BNY’s information and ensure compliance to regulatory requirements.

·         Support lines of businesses and their processes and controls for identifying and managing technology and information risk associated with services provided by external vendors and provide ongoing independent oversight and challenge of technology.

·         Assess the level of inherent technology risks in the context of business objectives & risk appetite and establish residual risk and oversee site visits for high-risk service providers.

·         Provide guidance to the lines of business, Third Party and other stakeholders related to third-party risks and collaborate with Global Procurement, Operational Risk and Cyber Security teams.

 

Experience:

·         Minimum of 6 years of Information Security experience with a recognized company

·         Comprehensive SME level knowledge of Risk Assessments (Application/ Infrastructure or Vendor)

·         Experience with Risk Management, Operational Risk, Internal Audit, and/or Controls related function preferably in banking or financial services industry is desired

·         Familiar with regulatory and industry standards such as NIST, ISO etc. and SOC1/SOC2 audit reports

·         Ability to lead and execute complex risk assessments that require both analytical and technical skills across all domains of IT Security (example – Application & Infrastructure Security, Network Security, Cloud Security, Privacy, Identity and Access Management, Physical and Environmental Controls, Business Continuity/ Disaster Recover, and Regulatory/Standard Compliance etc.)

·         Good communicator with strong networking skills to build relationships with global stakeholders in multiple time zones

·         Strong written communication and report writing skills with proficiency on office productivity applications especially ability to quickly analyze and manipulate complex spreadsheets by writing macros

·         Flexibility, multi-tasking ability and willingness to work with changing priorities in a complex and dynamic work environment

·         Certifications such as CISSP, CISA or CISM preferred

 


Qualifications

Role and Responsibility:

·         The analyst/ technical lead would be part of global Technology Risk Management (TRM) team based in India, to perform Risk Assessments on BNY Mellon’s Third Parties.

·         This individual would assess the adequacy of controls, standards, policies, and procedures to protect the Confidentiality, Integrity and Availability of BNY’s information and ensure compliance to regulatory requirements.

·         Support lines of businesses and their processes and controls for identifying and managing technology and information risk associated with services provided by external vendors and provide ongoing independent oversight and challenge of technology.

·         Assess the level of inherent technology risks in the context of business objectives & risk appetite and establish residual risk and oversee site visits for high-risk service providers.

·         Provide guidance to the lines of business, Third Party and other stakeholders related to third-party risks and collaborate with Global Procurement, Operational Risk and Cyber Security teams.

 

Experience:

·         Minimum of 6 years of Information Security experience with a recognized company

·         Comprehensive SME level knowledge of Risk Assessments (Application/ Infrastructure or Vendor)

·         Experience with Risk Management, Operational Risk, Internal Audit, and/or Controls related function preferably in banking or financial services industry is desired

·         Familiar with regulatory and industry standards such as NIST, ISO etc. and SOC1/SOC2 audit reports

·         Ability to lead and execute complex risk assessments that require both analytical and technical skills across all domains of IT Security (example – Application & Infrastructure Security, Network Security, Cloud Security, Privacy, Identity and Access Management, Physical and Environmental Controls, Business Continuity/ Disaster Recover, and Regulatory/Standard Compliance etc.)

·         Good communicator with strong networking skills to build relationships with global stakeholders in multiple time zones

·         Strong written communication and report writing skills with proficiency on office productivity applications especially ability to quickly analyze and manipulate complex spreadsheets by writing macros

·         Flexibility, multi-tasking ability and willingness to work with changing priorities in a complex and dynamic work environment

·         Certifications such as CISSP, CISA or CISM preferred

 



BNY Mellon is an Equal Employment Opportunity Employer.

Primary Location: India-Maharashtra-Pune
Job: Risk
Internal Jobcode: 60473
Organization: Office of the CIO-HR06033
Requisition Number: 1814282