Bus. Mgmt - IT Security Specialist, Remediation Challenge - QA

Lead assessments of audit and regulatory finding remediations to mitigate risk within technology infrastructure and applications, collaborating with stakeholders across the three lines of defense.,Provide advice and guidance to Technology segments and Technology Risk Services on Audit & Assurance Standards, IT Risk Governance Control Frameworks, and GRC frameworks.,Contribute to mature Governance Oversight & Control practices through improvement of Risk Identification, Control Design, and Operating Effectiveness.,Identify emerging themes, understand trends, and provide specialized business management advice to senior management.,Lead continuous improvement projects, leveraging agile/lean practices/methods (e.g., AI, ML, Power BI/Apps, Python).,Expert knowledge of IT Audit and Control methodology, IT Governance Controls and Standards, and associated tools.,Competencies in technology controls, emerging threats, and technology risk disciplines.,Strengthen independent assurance, governance, and oversight operations using lean continuous improvement practices.,Apply core Agile frameworks (Scrum, Kanban) for operational workplan projects.,Collaborate with data scientists, engineers, information security specialists, and business stakeholders for AI initiatives.,Ability to train colleagues and team members related to risk and compliance of issue remediations.,Excellent verbal and written business communication skills; meticulous documentation.,Ability to manage multiple efforts simultaneously, priority demands, and strong organizational skills.,Ability to effectively interact with individuals across the organization and at various levels (technical, business, Senior & Executive Management).,Stay current with AI/ML research and trends, recommending relevant tools, frameworks and methodologies.

10+ years as an IT Risk Specialist with relevant experience in governance, risk and compliance management within regulated industries.,Information Security or technology risk and controls background (financial industry experience a plus).,IT governance experience in information security and controls risk frameworks (i.e., ITIL, NIST, COBIT).,Knowledge and experience with various lifecycle methodologies / frameworks, i.e., Agile, Project Management, IT Processes, Risk Management frameworks and process / operations.,Knowledge and experience with various technology tools including, but not limited to, RSA Archer, JIRA, Confluence, Sharepoint, MS Office, Excel.,CRISC certification or equivalent experience.,CISA certification or equivalent experience.,CISSP certification or equivalent experience a plus.,University degree or relevant field / equivalent experience.

University Degree or equivalent experience