Lead Analyst, Technology Risk Management

Job Description

With minimal guidance, implements technology risk strategies and technology risk management improvements for standard business line and/or business partner area facing a moderate level of technology risk. Uses knowledge of information, cyber, security and technology risk concepts to interpret needs and assist the assigned business line and/or business partner area with the evaluation of technology risk processes and execution and delivery of technology risk services. Uses familiarity with the assigned business line and/or business partner area to assist with the enforcement of technology risk policies, standards and regulatory requirements. May contribute to the development of technology risk control frameworks. Maintains a solid understanding of control and risk management concepts, security systems and applications in order to assist with the communication of relevant technology risk management policies, procedures and guidelines, and to assist with technology risk and control environment initiatives. Works to understand applicable laws and regulations and to become familiar with industry best practices. With minimal guidance, performs detailed application risk analyses to facilitate comprehensive risk assessments. Develops work papers and metrics for tracking. Manipulates advanced data including pulling, aggregating and developing reports from multiple sources for use by more senior roles. Performs standard and some complex analyses and identifies trends using a solid understanding of technology risk metrics (KRIs, KPIs). May contribute to the establishment of appropriate KPIs. Supports efforts to promote a strong technology risk culture and to enforce and communicate technology risk policies, procedures and guidelines. Advises the business line and more junior professionals on use of technology risk support tools to develop technology risk policy content. Contributes to the execution and delivery of standard issue remediation and tracking for the assigned business line and/or business partner area and helps to ensure appropriate, effective controls are in place. Communicates with stakeholders in both written and verbal form to facilitate requirements gathering, describe risk mitigation strategies and risk remediation. Manages smaller or less complex projects, or part of a large project, through to completion and derives technology risk solutions in partnership with various corporate teams within IT and the business environment. No direct reports. Contributes to the achievement of team objectives. Modified based upon local regulations/requirements. Bachelor s degree or the equivalent combination of education and experience is required. 3-5 years of total work experience preferred. Experience in Technology, Information Security and/or technology risk preferred. Knowledge of security systems and applications preferred. At least one security clearance preferred.

Qualifications

With minimal guidance, implements technology risk strategies and technology risk management improvements for standard business line and/or business partner area facing a moderate level of technology risk. Uses knowledge of information, cyber, security and technology risk concepts to interpret needs and assist the assigned business line and/or business partner area with the evaluation of technology risk processes and execution and delivery of technology risk services. Uses familiarity with the assigned business line and/or business partner area to assist with the enforcement of technology risk policies, standards and regulatory requirements. May contribute to the development of technology risk control frameworks. Maintains a solid understanding of control and risk management concepts, security systems and applications in order to assist with the communication of relevant technology risk management policies, procedures and guidelines, and to assist with technology risk and control environment initiatives. Works to understand applicable laws and regulations and to become familiar with industry best practices. With minimal guidance, performs detailed application risk analyses to facilitate comprehensive risk assessments. Develops work papers and metrics for tracking. Manipulates advanced data including pulling, aggregating and developing reports from multiple sources for use by more senior roles. Performs standard and some complex analyses and identifies trends using a solid understanding of technology risk metrics (KRIs, KPIs). May contribute to the establishment of appropriate KPIs. Supports efforts to promote a strong technology risk culture and to enforce and communicate technology risk policies, procedures and guidelines. Advises the business line and more junior professionals on use of technology risk support tools to develop technology risk policy content. Contributes to the execution and delivery of standard issue remediation and tracking for the assigned business line and/or business partner area and helps to ensure appropriate, effective controls are in place. Communicates with stakeholders in both written and verbal form to facilitate requirements gathering, describe risk mitigation strategies and risk remediation. Manages smaller or less complex projects, or part of a large project, through to completion and derives technology risk solutions in partnership with various corporate teams within IT and the business environment. No direct reports. Contributes to the achievement of team objectives. Modified based upon local regulations/requirements. Bachelor s degree or the equivalent combination of education and experience is required. 3-5 years of total work experience preferred. Experience in Technology, Information Security and/or technology risk preferred. Knowledge of security systems and applications preferred. At least one security clearance preferred.



BNY Mellon is an Equal Employment Opportunity Employer.

Primary Location: India-Maharashtra-Pune
Job: Asset Servicing
Internal Jobcode: 85299
Organization: BNY Mellon CAO-HR16507
Requisition Number: 1910714