ABA Testing Analyst
A Fortune 50 financial services company is seeking a highly motivated ABA Testing Analyst for our client in the McLean, VA area.
Overview:
- Serve in an Asset Based Testing role responsible for planning, scoping, executing, and reporting on the testing of IT and Information Security controls.
- Manage all phases of the assessment process and maintain clear communication with business partners and stakeholders.
- This role operates within an Agile environment and plays a key role in maintaining strong governance and risk management practices.
Responsibilities:
- Plan and scope Asset Based Assessments, including developing communications, risk and control matrices, scope documents, and supporting materials.
- Conduct walk-throughs with business partners to identify actual versus expected controls.
- Create and execute test strategies for evaluating control effectiveness.
- Document all work performed to meet the IIA reperformance standard.
- Record and track issues; prepare and deliver final reports.
- Present assessment results and findings to leadership and stakeholders.
- Perform other duties as assigned to support the Asset Based Testing program.
Qualifications:
- Experience in control testing across one or more of the three lines of defense (Audit, ERM, or First Line).
- Hands-on experience with audit and information security risk assessments.
- Knowledge of applicable federal and state regulations including:
- Federal Financial Institutions Examination Council (FFIEC)
- National Institute of Standards and Technology (NIST)
- International Standards Organization (ISO) frameworks
- Familiarity with NCUA, GLBA, NIST Cybersecurity Framework & 800 Series, ISO 27001/27002, SANS/CIS 20, PCI DSS, and other Information Security standards.
- Strong ability to work effectively with all levels of staff, management, stakeholders, and third parties.
- Effective planning, research, analytical, and problem-solving skills.
- Strong verbal, written, and interpersonal communication skills, including technical writing proficiency.
- Bachelor’s degree in Business, Information Systems, or a related field, or equivalent work/military experience.
- Professional certifications such as CISSP, CISA, CCSP, or CRISC preferred.
- Proven ability to present findings and conclusions clearly and concisely.
- Strong relationship-building skills, demonstrating rapport, trust, diplomacy, and tact.
- Proficiency in word processing and spreadsheet software (e.g., Microsoft Word, Excel).
