IT Risk Manager
About The Position
At AIG, we are reimagining the way we help customers to manage risk. Join us as a Business Intelligence Senior Delivery Associate to play your part in that transformation. It’s an opportunity to grow your skills and experience as a valued member of the team. Make Your Mark At AIG, technology is at the heart of everything we do, from underwriting risks to processing claims. The Information Technology (IT) team equips our colleagues with the latest tools to complete their work efficiently, with the highest standards of excellence. The team is responsible for shielding the company’s systems from security risks, while designing technology strategies that enable AIG’s businesses to achieve their goals. Innovation in IT drives innovation across the organization How you will create an impact The IT Risk Manager, Technology Risk & Controls Management (TRC) will be responsible for managing risks for several IT areas including Cloud Services and Network Services by collaborating with stakeholders and various levels of management in defining processes and controls, identifying issues and developing action plans, tracking remediation activities, closing risk findings, and managing risks and deliverables for audit activities (i.e., SOX, SOC1, Non-SOX/SOC1, other regulatory).
Requirements
- Bachelor's Degree preferred
- CISA, CRISC or CCSK Certification strongly preferred
- 5+ years of combined experience in Risk Management, Audit, Operational Risk Management, or Compliance in a Technology environment - Audit experience required.
- Knowledge and experience with SOX, SOC1, AWS, Azure, and various technologies for o/s (e.g., Windows, Unix, AS400, Mainframe) and databases (e.g., Oracle, Sybase, SQL, DB2)
- Cloud experience will be very helpful
- Outstanding analytical skills
- Excellent communication and partnership skills which are essential for interacting and communicating with key stakeholders across all levels
- Stakeholder management experience is preferred
- Efficient work habits such as meeting deadlines, honoring schedules, coordinating resources and meetings in an effective and timely manner, and demonstrating respect for others
Responsibilities
- Manage end to end risk management functions from helping define processes and controls, performing assessments, tracking remediation activities, to closing risk findings.
- Assess design and effectiveness of controls to identify weaknesses and gaps
- Track management action plan completion and issue remediation to closure
- Complete verification testing of completed management action plans
- Work closely with auditors as a point of contact for audit and regulatory engagements (internal and external)
- Facilitate and manage audit requests (internal and external) to completion
- Partner with Infrastructure Services stakeholders for proactive risk identification, assessment & monitoring
- Interact with business and other IT colleagues to ensure appropriate coverage of shared controls and/or shared processes
- Proactively engage team members and project leads to ensure system changes or enhancements consider Audit controls and IT standards before implementation
- Create and disseminate reporting and metrics related to the risk environment to key stakeholders and leadership
- Identify opportunities and work with IT stakeholders to embed risk management practices into the daily operations and processes
- Identify ways to improve and streamline IT processes and controls
- Provide risk advisory services to stakeholders as needed
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
