IT Risk Analyst,Specialist

Job Description

Job Description and Role:

We are seeking IT Risk Analyst [Grade J] based out of Chennai / Pune, India offices.  In this role you will be responsible for end-to-end management of third party risk assessment.

Here is brief description of the job role: 

Role and Responsibility:

·       This position would be part of global Third Party Risk Management team based in Chennai / Pune India, to perform Risk Assessments on BNY Mellon’s Third Parties.

·       The individual would assess the adequacy of controls, standards, policies, and procedures to protect the Confidentiality, Integrity and Availability of BNY’s information and ensure compliance to regulatory requirements.

·       Support lines of businesses and their processes and controls for identifying and managing technology and information risk associated with services provided by external vendors and provide ongoing independent oversight and challenge of technology.

·       Assess the level of inherent technology risks in the context of business objectives & risk appetite and establish residual risk and may involve coordinating site visits for high-risk service providers.

·       Provide guidance to the lines of business, Third Party and other stakeholders related to third-party risks and collaborate with Global Procurement, Operational Risk and Cyber Security teams.

 

Experience:

·       Minimum of 7 - 9 years of Information Security, vendor risk management and/or other risk management experience with a recognized company

·       Comprehensive SME level knowledge of Risk Assessments (Application/ Infrastructure or Vendor)

·       Experience with Risk Management, Operational Risk, Internal Audit, and/or Controls related function preferably in banking or financial services industry is desired

·       Familiar with regulatory and industry standards such as NIST, ISO etc. and SOC1/SOC2 audit reports

·       Ability to lead and execute complex risk assessments that require both analytical and technical skills across all domains of IT Security (example – Application & Infrastructure Security, Network Security, Cloud Security, Privacy, Identity and Access Management, Physical and Environmental Controls, Business Continuity/ Disaster Recover, and Regulatory/Standard Compliance etc.)

·       Good communicator with strong networking skills to build relationships with global stakeholders in multiple time zones

·       Strong written communication and report writing skills with proficiency on office productivity applications especially ability to quickly analyze and manipulate complex spreadsheets by writing macros

·       Flexibility, multi-tasking ability and willingness to work with changing priorities in a complex and dynamic work environment

·       Certifications such as CISSP, CISA or CISM preferred

 

What’s in it for you?

1.     Competitive global pay and benefits

 

2.     Unparalleled experience as part of one of the most advanced Risk and compliance teams in the world, with opportunities to build valuable skills and grow your career. 


Qualifications

Job Description and Role:

We are seeking IT Risk Analyst [Grade J] based out of Chennai / Pune, India offices.  In this role you will be responsible for end-to-end management of third party risk assessment.

Here is brief description of the job role: 

Role and Responsibility:

·       This position would be part of global Third Party Risk Management team based in Chennai / Pune India, to perform Risk Assessments on BNY Mellon’s Third Parties.

·       The individual would assess the adequacy of controls, standards, policies, and procedures to protect the Confidentiality, Integrity and Availability of BNY’s information and ensure compliance to regulatory requirements.

·       Support lines of businesses and their processes and controls for identifying and managing technology and information risk associated with services provided by external vendors and provide ongoing independent oversight and challenge of technology.

·       Assess the level of inherent technology risks in the context of business objectives & risk appetite and establish residual risk and may involve coordinating site visits for high-risk service providers.

·       Provide guidance to the lines of business, Third Party and other stakeholders related to third-party risks and collaborate with Global Procurement, Operational Risk and Cyber Security teams.

 

Experience:

·       Minimum of 7 - 9 years of Information Security, vendor risk management and/or other risk management experience with a recognized company

·       Comprehensive SME level knowledge of Risk Assessments (Application/ Infrastructure or Vendor)

·       Experience with Risk Management, Operational Risk, Internal Audit, and/or Controls related function preferably in banking or financial services industry is desired

·       Familiar with regulatory and industry standards such as NIST, ISO etc. and SOC1/SOC2 audit reports

·       Ability to lead and execute complex risk assessments that require both analytical and technical skills across all domains of IT Security (example – Application & Infrastructure Security, Network Security, Cloud Security, Privacy, Identity and Access Management, Physical and Environmental Controls, Business Continuity/ Disaster Recover, and Regulatory/Standard Compliance etc.)

·       Good communicator with strong networking skills to build relationships with global stakeholders in multiple time zones

·       Strong written communication and report writing skills with proficiency on office productivity applications especially ability to quickly analyze and manipulate complex spreadsheets by writing macros

·       Flexibility, multi-tasking ability and willingness to work with changing priorities in a complex and dynamic work environment

·       Certifications such as CISSP, CISA or CISM preferred

 

What’s in it for you?

1.     Competitive global pay and benefits

 

2.     Unparalleled experience as part of one of the most advanced Risk and compliance teams in the world, with opportunities to build valuable skills and grow your career. 



BNY Mellon is an Equal Employment Opportunity Employer.

Primary Location: India-Maharashtra-Pune
Job: Risk
Internal Jobcode: 60128
Organization: Office of CIO-HR18027
Requisition Number: 1917751