← all jobs

Principal Technology Risk Analyst

Work from home Full-time role Hiring

Job Description: Position Description: *Applicants are permitted to work remotely from an at-home worksite anywhere in the United States.* Facilitates all external audit activity related to financial reporting, independent controls attestation, and compliance with regulatory requirements. Performs proactive risk assessments and develops control strategies for emerging technologies, including AI, Machine Learning, and Snowflake data services. Runs external audits and technology risk support for inquiries from technology and operational stakeholders. Supports systems and technology for external audit activity, including attestation and financial statement audits. Primary Responsibilities: Enhances the external audit program activities focused on key technology areas, including DevOps, Cloud, and Technology Operations. Coordinates external auditor readiness engagements and readiness assessments, and provides timely status updates to management. Plans and coordinates audit cycles with external auditors and internal stakeholders. Facilitates requests from external auditor and monitors the progress to ensure timely completion. Performs technology risk assessments and develops control strategies; including documenting controls, identifying potential gaps and inconsistencies, and making recommendations for improvement and mitigation. Provides technical assistance on risk related systems issues. Serves as a liaison with technology and risk teams to track external audit findings and perform issues follow-up. Consults with other team members to generate action plans and resolve technical issues. Assesses the various information technology risks that the business faces in its operations and implements action plans, policy, and procedural changes for risk avoidance and mitigation. Evaluates control maturity by performing control design and operating effectiveness reviews and peer reviews. Assists with conducting Cloud Risk assessments and readiness reviews for applications and workloads migrating to the public Cloud environment. Education and Experience: Bachelor’s degree in Computer Science, Engineering, Information Technology, Information Systems, Management Information Systems, or a closely related field (or foreign education equivalent) and five (5) years of experience as a Principal Technology Risk Analyst (or closely related occupation) performing Information Technology (IT) audits, risk assessments, and cybersecurity control reviews. Or, alternatively, Master’s degree in Computer Science, Engineering, Information Technology, Information Systems, Management Information Systems, or a closely related field (or foreign education equivalent) and three (3) years of experience as a Principal Technology Risk Analyst (or closely related occupation) performing Information Technology (IT) audits, risk assessments, and cybersecurity control reviews. Skills and Knowledge: Candidate must also possess: Demonstrated Expertise (“DE”) performing or coordinating external audit engagements (SOC 1, SOC 2, SOC 3, controls attestation reports, financial audits, ISO 27001, or COBIT external IT audit programs) in distributed environments; and maintaining in-scope IT General Control (ITGCs) and IT Application (ITAC) documentation and procedures. DE performing an IT controls assurance program -- identifying and designing new controls, evaluating control procedures and evidence documentation, and conducting control assessments through formal design and operating effectiveness reviews; and establishing control maturity and control/process enhancements using industry control frameworks – AICPA Trust Service Criteria, HiTRUST, ISO 27001 certification standard, or NIST Cybersecurity frameworks. DE performing risk management and IT audits, and implementing ITGC or cybersecurity controls for large-scale, complex IT infrastructures, including mainframe, distributed, network, cloud, and vendor hosted (SaaS/PaaS) infrastructure; reviewing vendor’s independent SOC 1 or SOC 2 audit reports to confirm the appropriate controls are in place for the services provided and to safeguard data; and creating executive communications focusing on risk, impact, and corrective actions, using Governance, Risk, and Compliance (GRC) tools. DE performing risk assessments and IT audits of secure software development lifecycle processes and procedures -- automated build and deployment pipelines in a DevOps solutions framework, using Github, SonarQube, Jenkins, Artifactory, or uDeploy; and assessing software development controls, identifying potential gaps and inconsistencies, and making recommendations for improvement and mitigation. Salary: $140,000.00 - $150,000.00/year. #PE1M2 #LI-DNI Certifications: Category: Information TechnologyPlease be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.

More open positions

Selerix Case Builder and Service Specialist

Work from home Full-time role

International Employer Experience Manager

Work from home Full-time role

Entegra Regional Sales Executive- Georgia

Work from home Full-time role

Entegra Regional Sales Executive- Oklahoma

Work from home Full-time role

Job Completion & Accounts Assistant (Offshore-Remote-Philippines)

Work from home Full-time role

CSR Client Success Consultant

Work from home Full-time role

Regional Associate Director, US Field Medical Immunology, East Region - Admilparant

Work from home Full-time role

[Remote] Senior Data or Systems Engineer

Work from home Full-time role

[Remote] ABM Specialist

Work from home Full-time role

Remote Data Entry Specialist – Flexible Work-from-Home Opportunity with Competitive Hourly Pay at careerzynith

Work from home Full-time role

Technical Support Specialist

Work from home Full-time role

Part-Time Shopify Developer – Remote | Competitive Pay + Flexible Schedule & Benefits

Work from home Full-time role

Associate Specialist, Procurement

Work from home Full-time role

Remote Live Chat Data Entry Specialist – High‑Pay $40/hr – Join careerzynith’s Global Streaming Operations Team

Work from home Full-time role

Remote Blockchain Developer (Smart Contracts)

Work from home Full-time role

Senior Mobile App Developer (Android)

Work from home Full-time role

Staff Information Security Engineer job at Segra in Raleigh, NC, VA, IA, AZ, TX

Work from home Full-time role

Strategic Accounts Manager

Work from home Full-time role

Risk Advisory GRC Consultant - Remote (USA)

Work from home Full-time role

Accounts Payable Associate (Temp to Hire)

Work from home Full-time role

Experienced Full Stack Customer Service Representative – Remote Customer Support

Work from home Full-time role