As an IT Risk Analyst, you will play a key role in supporting the risk management product team by identifying, analyzing, and mitigating IT-related risks within the organization. Your responsibilities will include:

• Conducting risk assessments to identify vulnerabilities in IT systems, processes, and policies.
• Assisting in evaluating risks associated with third-party vendors and partners.
• Maintaining the IT risk register by documenting risks, issues, and remediation actions.
• Recommending risk mitigation strategies and implementing risk management controls across IT infrastructure.
• Collaborating with IT, cybersecurity, and business teams to track and resolve identified risks and vulnerabilities.
• Monitoring and reporting on the effectiveness of existing IT risk controls and recommending enhancements as needed.
• Ensuring compliance with relevant industry standards and regulatory requirements such as GDPR, SOX, PCI-DSS, and NIST.
• Assisting in the preparation for audits by internal and external parties and supporting the development and implementation of IT governance, risk, and compliance frameworks.
• Conducting vendor risk assessments to ensure alignment with internal risk and security policies and reviewing vendor performance and risk exposure regularly.

Qualifications and Experience:

• Bachelor's degree in information technology, Cybersecurity, Risk Management, or a related field.
• Certifications such as CRISC, CISA, or CISSP are highly desirable.
• 4-6 years of experience in IT risk management, IT auditing, or information security.
• Hands-on experience with risk management tools and frameworks such as ISO 27001, NIST, COBIT.

Skills and Competencies:

• Strong understanding of IT infrastructure, systems, and security best practices.
• Ability to assess technical and business risk related to information systems.
• Excellent problem-solving, analytical, and communication skills.
• Ability to communicate complex risk concepts to non-technical stakeholders.
• Familiarity with regulatory frameworks and compliance standards such as GDPR, HIPAA, SOX, PCI-DSS.

Technical Knowledge:

• Proficiency with risk management tools, GRC software, and security incident management tools.
• Experience with security controls related to networks, databases, and cloud environments.

In this role, you will need to leverage your expertise in IT risk management and security to contribute effectively to the organization's risk mitigation efforts and regulatory compliance initiatives. As an IT Risk Analyst, you will play a key role in supporting the risk management product team by identifying, analyzing, and mitigating IT-related risks within the organization. Your responsibilities will include:

• Conducting risk assessments to identify vulnerabilities in IT systems, processes, and policies.
• Assisting in evaluating risks associated with third-party vendors and partners.
• Maintaining the IT risk register by documenting risks, issues, and remediation actions.
• Recommending risk mitigation strategies and implementing risk management controls across IT infrastructure.
• Collaborating with IT, cybersecurity, and business teams to track and resolve identified risks and vulnerabilities.
• Monitoring and reporting on the effectiveness of existing IT risk controls and recommending enhancements as needed.
• Ensuring compliance with relevant industry standards and regulatory requirements such as GDPR, SOX, PCI-DSS, and NIST.
• Assisting in the preparation for audits by internal and external parties and supporting the development and implementation of IT governance, risk, and compliance frameworks.
• Conducting vendor risk assessments to ensure alignment with internal risk and security policies and reviewing vendor performance and risk exposure regularly.

Qualifications and Experience:

• Bachelor's degree in information technology, Cybersecurity, Risk Management, or a related field.
• Certifications such as CRISC, CISA, or CISSP are highly desirable.
• 4-6 years of experience in IT risk management, IT auditing, or information security.
• Hands-on experience with risk management tools and frameworks such as ISO 27001, NIST, COBIT.

Skills and Competencies:

• Strong understanding of IT infrastructure, systems, and security best practices.
• Ability to assess technical and business risk related to information systems.
• Excellent problem-solving, analytical, and communication skills.
• Ability to communicate complex risk concepts to non-technical stakeholders.
• Familiarity with regulatory frameworks and compliance standards such as GDPR, HIPAA, SOX, PCI-DSS.

Technical Knowledge:

• Proficiency with risk management tools, GRC software, and security incident management tools.
• Experience with security controls related to networks, databases, and cloud environments.

In this role, you will need to leverage your expertise in IT risk management and security to contribute effectively to the organization's risk mitigation efforts a