Risk Operations Analyst II
PayNearMe
SQL
Director – IT Application Risk Lead
Webster Bank
full-time
Posted on:
Location Type: Remote
Location: Remote • Ohio • 🇺🇸 United States
Visit company websiteSalary
💰 $140,000 - $175,000 per year
Job Level
Senior
Tech Stack
CloudCyber SecurityPMP
About the role
- Play a critical leadership role in overseeing and strengthening the bank’s technology and application control environment
- Report to the Managing Director Front Line Control Officer
- Serve as the primary risk partner to the bank’s Business Solutions team to ensure that technology risks are proactively identified, assessed, and mitigated across the enterprise
- Build and maintain a comprehensive control inventory
- Enhance the risk and control self-assessment (RCSA) program
- Ensure alignment with internal policies, regulatory requirements, and industry best practices
- Provide risk partnership for key technology processes, including system availability, Batch Operations (job scheduling and secure file movement), monitoring and logging, release management, quality assurance, and Application Programming Interface (API) management
- Drive the early identification of control issues, emerging risks, and process deficiencies
- Lead root cause analysis and oversee the development and execution of robust, sustainable remediation plans to address control gaps and prevent recurrence
- Analyze risk data to assess likelihood, impact, and trends, and provide actionable insights to senior leadership
- Partner closely with peers within the IT First Line Control Office and Cloud Engineering to support risk-informed decision-making across the technology development lifecycle
- Perform application technology risk assessments, including dimensions of password compliance, user access provisioning and deprovisioning, segregation of duties, resiliency, computer operations, alignment to firm standards, vulnerability health, technical currency, and availability
- Lead the execution and documentation of RSCA processes across the respective Front Line Units (FLUs) to ensure it aligns with regulatory requirements and industry best practices
- Develop and deliver executive-level reporting that highlights risk trends, control effectiveness, and areas requiring attention
- Support internal audits and regulatory examinations, ensuring all required documentation and evidence are accurate and readily available
Requirements
- High school diploma or GED required
- Bachelor’s degree in Technology, Risk Management, or a related field, preferred
- Risk certifications preferred (CISA, CISSP, PMP, etc)
- Minimum of 7+ years of experience in IT risk management, operational risk, or technology internal audit within the banking or financial services industry
- Substantial experience in leading Risk and Control Self-Assessment (RCSA), Internal Controls Design or similar Controls Testing programs within the banking sector
- At least 4 years in a leadership role within the banking sector
- Deep understanding of governance, change management, banking regulations, risk management frameworks, internal control standards, and code QA best practices
- Strong familiarity with application architecture, regression testing, user acceptance testing, automation, observability, and agile software practices
- Strong understanding of operational risk management techniques and control assessment methodologies
- Knowledge of OCC Heightened Standards and Regulatory Category IV banking requirements preferred
- Deep understanding of technology risk frameworks for infrastructure, cloud, cybersecurity, service management, and delivery (e.g., NIST, ISO, FFIEC), CRI/CRI Profile, and risk rating methodologies
- Excellent leadership and project management skills
- Strong analytical, problem-solving, and decision-making skills
- Excellent verbal and written communication abilities, with the capacity to present complex information clearly
- Ability to influence senior stakeholders and build effective working relationships across business units and lines of defense
- Strategic thinker with attention to detail and operational acumen
- Strong commitment to quality and continuous improvement
- Proficiency in risk management software and data analysis tools
Benefits
- Incentive compensation
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
IT risk managementoperational riskRisk and Control Self-Assessment (RCSA)Internal Controls Designapplication architectureregression testinguser acceptance testingautomationobservabilityagile software practices
Soft skills
leadershipproject managementanalytical skillsproblem-solvingdecision-makingverbal communicationwritten communicationinfluencingrelationship buildingstrategic thinking
Certifications
CISACISSPPMP
