Technology Risk Analyst

In Technology Risk, we develop a framework for how much risk we are willing to accept and establish processes for identifying, evaluating, measuring, monitoring, and reporting against that framework. Technology Risk supports this framework across information and technology systems to protect client assets, client information, and SEI assets. Our team drives the Identity Access Management (IAM) program and is responsible for managing the identity lifecycle and managing access to information resources. Technology Risk oversees and assesses adherence to policy, and reports progress to management. Technology Risk assesses ongoing adherence to security standards and industry-leading practices by participating in recurring and ad-hoc risk assessments on platforms and applications and provides consultation/guidance to our first-line partners on policy and standard requirements to reduce risk.

What you will do:

• Facilitate deployment and maintenance of Technology risk and controls model with assigned Technology teams using industry-standard models (e.g., COBIT5, ITIL, NIST) as references
• Articulate the business risks associated with technical vulnerabilities and risks
• Work with other risk and controls teams and other audit and compliance functions to align work and deliverables
• Technology risk projects and/or demand management tasks as assigned
• Serve an as interdepartmental advisor, interfacing with technology lines of business and other areas such as members of Enterprise Risk, Legal and Compliance, and Information Security
• Manage remediation plans with technology lines of business to ensure completion and closure
• Understand firm policies around technology risk and controls and assess compliance
• Ability to leverage working knowledge of technology focused controls and/or audit testing methodologies
• Use working knowledge of industry standards related to technology controls
• Identify legal, regulatory, and contractual requirements, and organizational policies and standards related to technology to determine their potential impact on the business objectives
• Management of issues and risks relating to the portfolio of risk technology enhancements
• Facilitate and own external compliance audit activities (ISO27001, SOC1, SOC2, PCI)
• Clearly explain compliance program to third parties, including clients and vendors
• Coordinate with key stakeholders to develop solutions that pass audit scrutiny

What we need from you:

• Any combination of the following certifications: CISA, CISSP, CRISC, CISM, CPA, CIA, PMP, AWS, CIPP, CRM
• Bachelor’s degree from an accredited college or university, or equivalent experience
• A minimum of 3 years of financial services experience and/or a minimum of 3 years of experience across operations, technology, risk, legal, compliance, business management, or other control functions
• Comfortable in leading discussions across technology and business with subject matter experts, pushing toward clear and documented solutions
• A current knowledge of best practice IT controls, risk management techniques, and familiarity with GRC tools
• Well rounded knowledge of distributed technology environments
• Hands on experience with SailPoint certifications, provisioning, and/or implementation a plus
• Familiarity with Service Now and Request /TASK ticketing system
• Familiarity with Workiva and/or OneTrust a plus
• Solid analytical skills and the ability to evaluate business aspects of existing and future technologies
• Solving problems through analysis and the selection of solutions based on practice or precedent
• Previous experience with GDPR, UCITS, MIFID, FINRA, FFIEC, OCC, FCA, and CSSF regulatory environments a plus
• Proven experience effectively prioritizing workload to meet deadlines and work objectives
• Comfortable and able to adapt quickly to changing priorities and ad-hoc requests
• Comfortable interacting professionally with all levels of management and subject matter experts, able to build strong working relationships across multiple functions and collaborate effectively
• Confidence to take ideas forward and to professionally challenge others, where appropriate

What we would like from you:

• Excellent analytical, decision-making, problem-solving, team, and time management skills
• Ability to persuade and influence others on the best approach to take
• Resourceful and proactive in gathering information and sharing ideas
• Constructively challenges prevailing thoughts and processes
• Proactive individual who takes ownership of issues
• Highly driven self-starter, motivated, excellent oral and written communication and organization skills
• Very strong interpersonal skills in terms of effective listening, patience, composure, and conflict management
• Strong conceptual grasp of technology
• Experience interfacing with all levels of the organization
• Someone who will embody our SEI Values of courage, integrity, collaboration, inclusion, connection and fun.

SEI’s competitive advantage:

Salary : $94,100 - $119,000