IT Controls Engineer
Role details
Job location
Tech stack
Job description
In this role, you will work closely with IT, Security, and Risk stakeholders to ensure technology risks are effectively identified, assessed, and managed across the enterprise. You will facilitate IT RCSAs, document risks and controls within ServiceNow IRM, and track remediation of issues resulting from assessments and audits. You will regularly prepare dashboards and risk reports for leadership, support audit evidence requests, and help enhance GRC processes through automation and tool optimization. Your work directly contributes to maintaining a strong, sustainable, and compliant IT control environment within a financial services organization.
Requirements
Bachelor's degree in Information Systems, Computer Science, Cybersecurity, or related field (or equivalent experience).
-
3-5 years of experience in IT Risk Management, IT Controls, IT Audit, or GRC functions, preferably within financial services or a technology-driven organization.
-
Hands-on experience with ServiceNow IRM or other GRC platforms, including risk, control, and issue management.
-
Experience executing RCSA, control testing, and issue management activities.
-
Working knowledge of NIST CSF, ISO 27001, COBIT, FFIEC CAT, and GLBA/NYDFS.
-
Proficiency in data analytics and SQL scripting to support control testing, risk assessments, and reporting.
-
Intermediate to advanced proficiency with Microsoft Excel, Word, PowerPoint, and Outlook.