The Cervantes Group

Compensation

Full Description

Role Description: The will be assisting the Business Control & Risk Management team in driving effective and consistent business line execution against the Enterprise Risk Management Framework. This person will be responsible for managing and supporting SOX examinations (internal & external), and all stakeholders involved. The Business Analyst will be involved in the collection, review, and analysis of control performance data and metrics, and remediation action plans as applicable. Education & Requirements: • Bachelor’s Degree is required • 4+ years’ in IT Risk Management, Internal Controls, IT Auditing, relevant line of business experience and/or legal or regulatory experience is required • In depth knowledge of SOX IT controls is required • Demonstrated experience supporting and/or leading risk projects across multiple business lines offering a wide variety of financial services products and services • Knowledge of applicable laws and regulations and financial services industry regulators • Understanding of banking operations and the financial services regulatory and risk management environment Plus: • Advanced knowledge of applicable US laws and regulations and financial services industry regulators is a plus • Bilingual in Spanish/English (not required, but would be a plus) Job Duties: • Manage examinations, audits, and reviews on behalf of the Technology organization, specifically IT SOX audit across all aspects of Technology, including but not limited to network security, access management, cyber security, IT architecture, IT resiliency, software development lifecycle, disaster recovery, infrastructure engineering, and all other aspects of IT management. • Manage all key stakeholders throughout Technology examination, audit, and review; including the auditors/regulators offering oversight and understanding of US operating entities, including their respective lines of business and corporate functions, as well as participation in all facets of management of examinations and reviews of US operating entities. • Work with various stakeholders to evaluate action plans, and remediation actions and collaborate with various teams to identify, assess, and validate various Technology risks and controls before, during and after examinations, audits and/or reviews. • Keep abreast of legal and regulatory matters affecting the US financial services industry, the regulatory environment, and potential impact on US operating entities. • Compile, analyze, and review quantitative and non-quantitative regulatory risk management information from US operating entities partnering with Second Line of Defense to provide input/review of relevant frameworks, policies, and standards. • Drive Risk Culture and facilitate awareness of, and adherence to, risk frameworks, policies, and standards through internal validation and issue/risk management. • Continuously monitor all sources of risk existing within Technology, and externally; while utilizing research, networking, and experience to anticipate critical risks and issues impacting Technology. Job Type: Full-time Pay: $80,000.00 - $90,000.00 per year Benefits: • 401(k) • Health insurance • Paid time off • Tuition reimbursement Ability to commute/relocate: • Dallas, TX 75201: Reliably commute or planning to relocate before starting work (Required) Experience: • IT Risk Management: 4 years (Required) • Internal Controls, IT Auditing: 4 years (Required) • SOX IT : 4 years (Required) Work Location: Hybrid remote in Dallas, TX 75201