A financial services company in New York is currently seeking an experienced professional to join their growing team in White Plains. In this role, the IT Functional Control Officer (FCO) will be responsible for managing compliance and operational risk associated with key Information Technology (IT) Programs.

Responsibilities:

• Proactively identifying self-identified issues (SIIs) and supporting IT staff in remediation activities to improve operational efficiency
• Assisting with controls testing program delivery, including conducting walkthroughs, developing control test scripts, and supporting design and operating effectiveness testing
• Supporting Risk and Control Self-Assessments (RCSAs) for Information Technology Risks and Controls that support business departments
• Regularly reviewing Policy Relevant Documents (PRDs) for annual revisions and amendments to address identified gaps in coverage or roles and responsibilities
• Collaborating with key stakeholders across the 2LoD (Operational Risk) and 3LoD (Internal Audit) for adherence to the Operational Risk Management Framework and remediating Audit Control Remediations and regulatory findings
• Leveraging experience in key IT programs (e.g., Change Management, Incident Management, Software Development, and Lifecycle Management) to recommend process improvements and best practices as part of BAU responsibilities
• Conducting periodic status meetings with AD management and/or Group Company primary contacts, including senior management, to provide updates, ascertain remediation status, and address any remediation concerns

Qualifications:

• 5+ years of Information Technology experience
• Experience in the Financial Services industry
• Experience in a 1LoD role or other Risk Management and Audit roles
• Experience working with common Risk Management frameworks, including RCSAs, control testing programs and maturity assessments
• Experience in developing and/or reporting Key Risk and Performance Indicators
• Experience in IT Audit and/or IT Risk
• Experience working with IT teams to strengthen their adherence to organizationally defined IT controls
• Strong understanding of Governance, Risk, and Compliance (GRC) practices to support Information Technology's adherence to authoritative frameworks (FFIEC, COBIT, NIST, etc.) and U.S. regulatory expectations
• Experience executing control testing, reporting, and tracking control remediation
• Ability to influence responsible parties (including senior management) working in the 1st, 2nd, and 3rd lines of defense in conversations regarding AD IT Control compliance and remediation activities
• Familiarity with controls testing program delivery, including conducting walkthroughs, developing control test scripts, and supporting design and operating effectiveness testing
• Great interpersonal skills
• Excellent communication skills (written and verbal)
• Able to work well autonomously as well in a team with group company IT teams

Desired Skills:

• Active CISA and/or CRISC certification
• Experience working within SDLC, Program and Project Management, and IT Operations (Capacity Management, Configuration Management, etc.)
• Active CISA and/or CRISC certification