San Juan-Cupey, PR
Risk Analyst
At Popular, we offer a wide variety of services and financial solutions to serve our communities in Puerto Rico, United States & Virgin Islands. As employees, we are dedicated to making our customers dreams come true by offering financial solutions in each stage of their life. Our extensive trajectory demonstrates the resiliency and determination of our employees to innovate, reach for the right solutions and strongly support the communities we serve; therefore, we value their diverse skills, experiences and backgrounds.
Are you ready for a rewarding career?
Over 8,000 people in Puerto Rico, United States and Virgin Islands work at Popular.
Come and join our community!
General Description
The Risk Analyst is responsible for assessing the adequacy of the internal controls in the InformationTechnology Division. This role includes self-identifying the weaknesses in the systems and processes and creating an action plan to address the issues, prevent audit findings, and promote best practices. The Risk Analyst can also be involved in the planning and execution of internal assessment procedures and the creation of reports to present to management. This position requires understanding the IT environment and processes and connecting the dots on how different processes impact the overall environment and business processes. Must work within a team to create a solid information technology culture and collaborate with clients to develop and put in place policies and procedures that align with the best practices.
Essential Duties and Responsibilities
- Identify and evaluate risks and controls related to IT Processes and activities.
- Provide guidance and support in developing documentation of risks, control descriptions, and remediation plans.
- Performs general and application control reviews and assessments for simple to complex computer information systems.
- Follows up on audit findings, self-identified issues, and other regulatory findings to ensure that management has taken corrective action(s).
- Follows up on audit findings, self-identified issues, and other regulatory findings to ensure the Internal Audit Unit, Cyber Security Unit, and other entities review and close them.
- Performs miscellaneous job-related duties as assigned.
- Performs information control reviews, including those of system development standards, operating procedures, system security, programming controls, communication controls, backup and disaster recovery, and system maintenance.
- Directs and reviews internal control procedures and security for systems under development, acquired systems, and enhancements to current systems.
- Prepares and presents written and oral reports and other technical information in a pertinent, concise, and accurate manner for distribution to management.
- Consult with and advise administrators, management, and staff on various operational issues related to computerized information systems and general business operations.
- Coordinate and lead meetings as necessary with auditors or examiners and process owners to understand the processes, clarify doubts, and establish action plans with due dates.
- Document memos to conclude control execution using narratives and flowcharts.
- Responsible for document and process evaluation that allows for capability assessment, presentation of data and dashboards, and recommendations to staff about the current state of the IT business.
- Identify trends, patterns, or fluctuations and recommend future actions to the units.
- Able to build partnerships or influence existing partnerships to achieve organizational results.
Minimum Education
Bachelor's Degree in Accounting or Computer Science
Experience
- Two (2) to three (3) years of experience in IT audits or IT Risk and procedures
- Knowledge of internal auditing, controls, risk management, and finance and accounting practices and methods.
- Experience with multiple technology domains, including Windows / Office 365, web and database management, software development, networking, automation, and cloud.
Certifications and Licenses
- CISA, CISM, or CISSP are not required but are preferred.
Other Qualifications
- Strong analytical, organizational, and problem-solving skills to work with multiple things and comply with established deadlines.
- Comprehensive understanding of internal control environments within the IT function.
- Knowledge of information security standards, best practices for securing computer systems, and applicable laws and regulations.
- Outstanding interpersonal and communication skills (verbal / written); ability to communicate effectively with technical and non-technical audiences in both English and Spanish.
- Experience with data analysis and a written summary of the results
- Working knowledge of MS Office: Word, PowerPoint, and Excel (formulas, pivot tables, and graphs)
- Excellent people skills to develop and maintain good relationships with auditees, anticipate their needs, present alternatives, and provide follow-up to the agreements reached.
Important: The candidate must provide evidence of academic preparation or courses related to the job posting, if necessary.
If you have a disability and need assistance with the application process, please contact us asesorialaboral@popular.com. This email inbox is monitored for such types of requests only. All information you provide will be kept confidential and will be used only to the extent required to provide needed exemptions or reasonable accommodations. Any other correspondence will not receive a response.
As Puerto Rico’s leading financial institution, we reaffirm our commitment to always offer essential financial services and solutions for our customers, including during emergency situations and/or natural disasters. Popular’s employees are considered essential workers, whose role is critical in the continuity of these important services even under such circumstances. By applying to this position, you acknowledge that Popular may require your services during and immediately after any such events.
If you are a California resident, please click here to learn more about your privacy rights.
.
Popular is an Equal Opportunity Employer
Learn more about us at www.popular.com and keep updated with our latest job postings at www.jobs.popular.com.
Connect with us!
Job Segment:
Law, Data Analyst, Legal, Data