It Risk Analyst

Make banking a Fifth Third better®
We connect great people to great opportunities. Are you ready to take the next step? Discover a career in banking at Fifth Third Bank.
GENERAL FUNCTION:
This position is responsible for implementing information technology risk management strategies identified by Business Controls and/or Technology Risk Manager. In this role, the Business Controls Associate will be assigned overall responsibility for key areas of control assurance testing and will have accountability for proper planning, prioritization and execution of supporting technology risk responsibilities. This position is responsible for hands-on execution of control/risk assessments and the development of control enhancement recommendations.
Responsible and accountable for risk by openly exchanging ideas and opinions, elevating concerns, and personally following policies and procedures as defined. Accountable for always doing the right thing for customers and colleagues and ensures that actions and behaviors drive a positive customer experience. While operating within the Bank's risk appetite, achieves results by consistently identifying, assessing, managing, monitoring, and reporting risks of all types.
ESSENTIAL DUTIES AND RESPONSIBILITIES:

• Support business Controls/Technology risk leadership on the implementation of information Technology risk management strategy and operating priorities.
• Support the Centralized Testing CoE in delivering quality control assurance testing, testing workpaper and documentation, identifying control weaknesses and collaboratively working with IT BCG partners and LoB.
• Build effective relationships with Key individuals who own and Support processes you are responsible for evaluating, including the appropriate line-of-business risk managers.
• Perform ongoing planning and prioritization of Key projects and activities to ensure that resources are applied to the most critical areas. Communicate with business Controls/Technology risk manager, as needed, to ensure proper prioritization and management of workload.
• Participate on projects and ensure that Key IT risks are being adequately addressed. Coordinate with project managers to ensure that issues are identified, action plans are in place and that PLC requirements are being met.
• Perform risk assessments on Key IT processes or assets, identify vulnerabilities and propose solutions to mitigate risk. Perform due diligence and risk assessments on IT service providers.
• Work with IT areas in developing an effective Self-Assessment process for proactively identifying risks associated with processes, applications and technical infrastructure components.
• Support compliance with applicable regulations, which include, but is not limited to the following: the Sarbanes-Oxley Act, the Gramm-Leach-Bliley Act, and PCI-DSS
• Support the resolution of internal audit, Regulatory, or risk management related issues that could impact the confidentially, availability or integrity of data or processes.
• Create effective risk Assessment documentation supporting work performed, including formal communication on risk
• Assessment results. Be able to deliver effective presentations to management on summary of work performed and findings.

MINIMUM KNOWLEDGE, SKILLS AND ABILITIES REQUIRED:

• Three to six years of information technology, IT risk management, IT compliance, IT Assurance or other relevant experience required. Desired experience should include a foundation in IT security and controls. And familiarity with one or more industry frameworks such as NIST, COBIT, etc. While experience in a number of IT disciplines may provide a solid framework for this position, hands-on results from performing IT risk assessments, IT Assurance, information security consulting or IT audits are most beneficial.
• At least one relevant technical or Professional certification, such as CISA or CISSP, is desirable.
• Bachelor's degree required, preferably in computer science or information systems.
• Must Possess Excellent written and verbal communication skills, with a proven track record of interacting effectively with end users and Technology professionals.
• Able to work on multiple projects concurrently, Manage time effectively and require minimal supervision in the execution of IT risk Analyst responsibilities.
• Must Possess strong analytical capabilities and have a desire to learn new things.

IT Risk Analyst
LOCATION -- Rosemont, Illinois 60018
Fifth Third Bank, National Association is proud to have an engaged and inclusive culture and to promote and ensure equal employment opportunity in all employment decisions regardless of race, color, gender, national origin, religion, age, disability, sexual orientation, gender identity, military status, veteran status or any other legally protected status.