Governance Risk PM

Location: Whitehall, OH
Salary: Depends on Experience
Description:
Risk Remediation Delivery Senior Analyst

Location: Columbus, OH or Minnetonka, MN (hybrid 4 day onsite and 1 day remote)

Contract to hire

Job Summary

This position will report to the Risk Remediation Delivery Senior Manager and be responsible for supporting the Information Technology and Cyber Security organizations in matters related to audit, compliance, and the remediation of risk.

Summary:

This role requires the individual to work directly with First Line Technical Risk, Information Technology and Cyber Security teams, and drive tasks to completion on agreed schedules.

The Risk Remediation Delivery Senior Analyst plays a critical role in identifying, analyzing, and mitigating risks across the organization. This position is responsible for driving the delivery of remediation initiatives, working collaboratively with cross-functional teams to ensure successful resolution of risk issues. The ideal candidate will have a strong analytical background, excellent communication skills, and the ability to manage multiple remediation projects simultaneously.

Job Description:

• Lead and manage risk remediation projects from initiation through completion, ensuring timely and effective resolution of identified risks.
• Collaborate with business units, IT, Risk and Internal Audit teams, subject matter experts, and other stakeholders to gather requirements to drive the risk evaluation and remediation processes to completion within the Technology and Cyber Security organizations.
• Build strong partnerships with key technology partners, Risk, Cyber Security, and IT areas external to immediate team.
• Evaluate and understand findings within the pipeline to help ensure proper planning of priorities and resources.
• Analyze risk findings, prioritize remediation efforts, and track progress against established metrics and deadlines.
• Facilitate communication across teams to meet project requirements and deliverables associated with identified findings, milestones, and deliverables.
• Work with subject matter experts to create and maintain remediation strategies, tasks, and documentation related to action plan milestones and deliverables.
• Ensure alignment of remediation activities with organizational policies, regulatory requirements, and industry best practices.
• Identify process improvements to enhance risk management and remediation effectiveness.
• Support audits, assessments, and regulatory reviews by providing evidence of remediation activities.
• Maintain up-to-date knowledge of relevant regulations, frameworks, and emerging risks.
• Prepare and deliver status reports, presentations, and documentation to management and stakeholders.
• Schedule and facilitate meetings.
• May lead initiatives and projects.

Required Skills and Qualifications:

• High performer, driven and has positive 'can do' approach to problem solving
• Track record of successful project deliverables on time, within budget, and met objectives.
• Education: Bachelor's degree in Risk Management, Business Administration, Information Security, or a related field. Advanced degree or certifications (e.g., CRISC, CISM, CISSP) are a plus.
• Experience: 3+ years in risk management, remediation, or related fields, preferably within a large organization or consulting environment.
• Analytical Skills: Strong ability to analyze complex risk issues, synthesize data, and develop actionable remediation strategies.
• Project Management: Proven track record of managing multiple projects, meeting deadlines, and delivering results in a fast-paced environment.
• Communication: Excellent verbal and written communication skills with the ability to present complex information to technical and non-technical audiences.
• Collaboration: Demonstrated ability to work effectively in cross-functional teams and build strong working relationships with stakeholders.
• Technical Acumen: Familiarity with risk assessment tools, GRC platforms, and IT security concepts.
• Attention to Detail: High level of accuracy and thoroughness in documentation and reporting.
• Problem-Solving: Resourceful and proactive in identifying issues and implementing solutions.
• Regulatory Knowledge: Understanding of key regulations (e.g., SOX, GDPR, FFIEC, etc.) and industry standards (e.g., ISO 27001, NIST CSF, NIST RMF).

Preferred Qualifications:

• Experience in using GRC systems, and/ or other related systems.
• Experience using Azure Dev Ops or similar agile toolsets.
• Experience with utilizing CoPilot AI for various purposes.
• Experience with technical writing.
• Experience processing, analyzing, or working with several different types of data, including risk ratings, control, and metrics.
• Experience with risk remediation in financial services, healthcare, or highly regulated industries.
• Ability to adapt to changing priorities and new challenges.
• Self-motivated with a commitment to continuous learning and improvement.
• Knowledge of control testing and associated tests in relation to project plan implementation.
• Knowledge in Information Technology, Cybersecurity, Infrastructure, Cloud, Architecture, and Application Delivery.
• Professional certifications in risk management or cybersecurity. (CISSP, CISM, CISA, CySA+, Security+ or CRISC).

By providing your phone number, you consent to: (1) receive automated text messages and calls from the Judge Group, Inc. and its affiliates (collectively "Judge") to such phone number regarding job opportunities, your job application, and for other related purposes. Message & data rates apply and message frequency may vary. Consistent with Judge's Privacy Policy, information obtained from your consent will not be shared with third parties for marketing/promotional purposes. Reply STOP to opt out of receiving telephone calls and text messages from Judge and HELP for help.

Contact:

This job and many more are available through The Judge Group. Please apply with us today!