Join our team to innovate in risk mitigation, leveraging your skills in a fast-paced, impactful environment.

As a Tech Risk & Controls Associate in Cybersecurity and Technology Controls, you will be a part of a team that supports the implementation of risk mitigation strategies, controls and action plans for the firm. Working closely with the technology risk teams and cross-functional partners, you contribute your skills and insights to the continuous improvement of risk management methods. As a valued member of the team, you will have the opportunity to learn and grow in a dynamic and fast-paced environment, making a tangible impact on technology risk and controls at the firm.

Job responsibilities

Support efficient and effective execution of assessments, ensuring alignment with organizational objectives, risk appetite, and regulatory compliance.  Support the governance of issues raised from our assessments, tracking concerns, and resolution of findings, and ensure timely and effective closure of identified control deficiencies. Assess and monitor technology risks, ensuring compliance with firm standards, regulatory requirements, and industry best practices  Support implementation of effective controls in collaboration with cross-functional teams and stakeholders Evaluate the effectiveness of existing controls, identify gaps, and recommend improvements to mitigate risks and enhance the firm's risk posture Analyze complex situations, provide advice on risk management strategies, and support the implementation of risk mitigation measures

Required qualifications, capabilities, and skills

Bachelor’s Degree in Computer Science or related disciplines 2+ years of experience or equivalent expertise in technology risk management, information security, or a related field, with a focus on risk identification, assessment, and mitigation Experience in risk identification, assessment, and control evaluation, with a strong understanding of industry standards Demonstrated ability to analyze complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders Proficient knowledge of risk management frameworks, regulations, and industry best practices 

Preferred qualifications, capabilities, and skills

CISM, CRISC, CISSP, or other industry-recognized risk certifications