Technical Risk Analyst
A Fortune 50 financial services company is seeking a highly motivated Technical Risk Analyst for our client in the McLean, VA area.
Overview:
- A Fortune 50 financial services company is seeking a Technical Risk Analyst with a strong background in vulnerability management, IT controls, and risk assessment.
- The ideal candidate will assess, test, and strengthen internal control frameworks while ensuring compliance with corporate policies and industry regulations.
- This role requires an analytical and detail-oriented professional capable of working independently in a complex, cross-functional environment.
Responsibilities:
- Conduct risk assessments across IT, security, and business environments to identify vulnerabilities and control gaps.
- Evaluate and enhance existing internal control frameworks (e.g., COSO) to align with regulatory and organizational standards.
- Perform control testing and validation to ensure operational effectiveness, accuracy, and precision.
- Collaborate cross-functionally with Security, Audit, Compliance, and other internal risk offices to integrate asset-related controls into broader risk management strategies.
- Support asset protection and fraud prevention initiatives by ensuring safeguards are in place and effective.
- Develop and maintain audit-ready documentation, including control matrices, process narratives, and testing results.
- Assist in the implementation and tracking of corrective actions and remediation plans.
- Provide reporting and insights to leadership on control performance, residual risks, and areas for improvement.
- Contribute to continuous improvement of risk assessment methodologies and control testing approaches.
Qualifications:
- 5+ years of experience in IT risk management, vulnerability management, internal controls, or audit support within a large enterprise.
- Strong understanding of internal control frameworks (e.g., COSO, COBIT, NIST, ISO 27001).
- Hands-on experience with IT general controls (ITGCs), application controls, and asset management processes.
- Experience preparing for or supporting internal/external audits and regulatory reviews.
- Knowledge of fraud prevention, asset protection, and vulnerability remediation practices.
- Familiarity with ERP systems and asset tracking tools (e.g., ServiceNow, Archer, SAP).
- Excellent analytical, documentation, and communication skills, with proven ability to summarize complex risk issues for executive audiences.
- Ability to work independently and manage multiple priorities in a fast-paced environment.
