remoteonsite
IT Risk Analyst - Ameriprise Financial
Software Engineer
IT Risk Analyst driving enterprise risk management through comprehensive risk assessment, compliance oversight, and data-driven insights using industry-standard security frameworks and regulatory guidelines.
About the role
Key Responsibilities
- Conduct thorough IT risk assessments across systems, applications, and infrastructure to identify vulnerabilities and quantify potential impact.
- Develop and maintain risk registers, control matrices, and mitigation plans in alignment with industry standards such as ISO 27001, NIST, and SOC 2.
- Collaborate with audit, security, and business units to design and implement effective controls, monitor compliance, and report findings to senior stakeholders.
- Analyze data from security tools, logs, and incident reports to detect trends, assess risk exposure, and recommend proactive measures.
- Prepare concise risk summaries, dashboards, and presentations for executive leadership, ensuring clear communication of risk posture and remediation status.
Requirements
- Bachelor’s degree in Information Technology, Computer Science, Finance, or related field.
- 3+ years of experience in IT risk, audit, or cybersecurity risk management.
- Strong understanding of regulatory frameworks (e.g., GDPR, PCI‑DSS, SOX) and risk assessment methodologies.
- Proficiency with risk management tools (e.g., RSA Archer, MetricStream) and data analysis platforms (Excel, Power BI).
- Excellent analytical, communication, and stakeholder‑management skills.