Job: Senior Technology Risk Analyst

Jobing Description

Description:
- Senior Technology Risk Analyst (1200192)

Job Description

Senior Technology Risk Analyst - 1200192

Description

The Senior Technology Risk Analyst position is part of the Enterprise Information Security Group (EISG), a team with corporate leadership for information security program standards and governance. EISG is part of the Information Security & Risk group within Shared Services. EISG provides Information Security and IT Risk services for Fidelity Investments: Policies & Standards, Communications, and Training & Awareness.

This position is a key part of the Policies & Standards function, with two main areas of responsibility - (1) stewardship of specific Information Security/IT Risk policies, standards and technical directives and (2) the day-to-day management and execution of the policy exception process. The individual will analyze, create and update policies, standards and technical directives using the established and approved enterprise processes within the Archer/PCS tool suite.

Primary Responsibilities

* Serves as contact for EISG Policy questions and change management requests
* Monitors and performs activities related to information security policies, standards, directives and exceptions
* Analyzes, recommends and develops control requirements and solutions to ensure risks and exposures are identified and mitigated
* Provides functional and technical assistance to business unit liaisons (Information Security and IT Risk officers) with information security policy management and compliance activities
* Creates and delivers ongoing reporting and metrics associated with the policy and exceptions program as well as with related IT controls work (e.g. SSAE16, ISO27001)
* Reviews metrics and documents concerns for escalation as appropriate
* Establishes and contributes to the completion of projects and organizational objectives; on-time and on-budget delivery
* Work with outside vendors, regulators and internal auditors
* Performs functional analysis for multiple, moderate projects, working across functional and organizational groups
* Develops and maintains group relationships in support of policy development and governance activities

Qualifications

Education and Experience

* Bachelor's Degree
* 5+ years Information Security and/or IT Risk work experience

Skills and Knowledge

* Strong analytical and problem solving skills. Able to perform detailed analyses and present strong fact-based reasoning to influence and inform firm-wide policy
* Ability to assess risks and form mitigation alternatives in defining compensating controls
* Information Security and IT Risk knowledge and experience
* Broad technology skills in networking, operating systems, applications and databases
* Excellent interpersonal skills
* Solid oral and written communication skills
* Ability to manage small to medium sized project teams in a matrixed environment leading to successful policy development outcomes
* Experience with conflict resolution

Company Overview

Fidelity Investments is one of the world's largest providers of financial services. Founded in 1946, the firm is a leading provider of investment management, retirement planning, portfolio guidance, brokerage, benefits outsourcing and many other financial products and services to more than 20 million individuals and institutions, as well as through 5,000 financial intermediary firms. For more information about Fidelity Investments, visit www.fidelity.com.

Job
: Technology

Primary Location
: NH-Merrimack

Schedule
: Full-time

Job Level
: Individual Contributor

Education Level
: Non-Degree Program ( 14 years)

Job Type
: Standard

Shift
: Day Job

Overtime Status
: Exempt

Travel
: No

Send this job to a friend
Send this job description to a friend by email. All the relevant details will be included in the message.Send this job to a friend