This role will participate in risk governance functions in the IT Risk Management team in the first line of defense. The Senior Risk Analyst will be responsible for updating IT policies, standards, and for creating detailed procedures for the IT department. The role focuses on developing effective communication and change management plans to socialize changes to stakeholders throughout the organization. This role will also be involved in developing monitoring for certain vendor-related activities and mapping sourcing/procurement data to program/project reports.

• Risk Governance: Support governance process for governance documents and risk taxonomies for information technology.
• Integrate procurement, project, and program data to understand and monitor vendors and impact to IT projects.
• Facilitate training and awareness sessions on governance processes for TI staff.
• Policy, Standards, and Procedures: Update and maintain policies and standards in line with policy management policy. Document procedures to align with requirements.
• Establish monitoring capabilities for assessing adherence to policy and standards requirements.
• Regulatory Presentations: Accountable for developing materials for periodic OGS/OGM meetings with regulators in consultation with IT senior leadership team

The base pay for this position is relative to your experience but the range is generally $94,432 to $163,682 per year. This position is eligible for variable compensation, which may be in the form of incentive, bonus, or commission pay. First Citizens offers a competitive, comprehensive benefits program which you can review here: .

Bachelor's Degree and 4 years of experience in Risk management, or financial analysis, or statistical modeling OR High School Diploma or GED and 8 years of experience in Risk management, or financial analysis, or statistical modeling

Preferred Education: Master's Degree / MBA

Preferred Area of Study: Legal or Business Administration

Preferred Area of Experience: Regulatory Relations or Legal in an IT organization

License or Certification Type: CRISC - Certified in Risk and Information Systems Control , CISM - Certified Information Systems Manager

Skill(s): Knowledge of financial sector regulatory practices for a large financial institution, Knowledge of various banking and government regulatory requirements and processes, Ability to effectively communicate regulatory information to technical, management, regulators, and executive audiences, Ability to bring resolution to complex inquiries/issues involving multiple stakeholders, Knowledge of risk techniques and practices, Experience managing risk, performing governance activities, and risk assessment activities in Large Financial Institutions (>5 years)