Senior Technology Risk Analyst
Country Bank · Ware, MA · 2 mo ago
Finance$75k–$85k/yrFull-time
About the role
Country Bank is a growing mutual community bank with locations in Hampden, Hampshire and Worcester counties. Founded in 1850, we are dedicated to making a difference in the lives of our customers, communities, and team members.
Responsibilities
- Support the risk management and information security functions to ensure compliance with the Bank’s Vendor Management Program, IT Risk Management Program, and Information Technology Risk Assessment process.
- Work closely with the IT Security Department and all business areas to maintain appropriate vendor and application oversight.
- Collaborate directly with the Operational Risk Analyst and provide support and back-up when opportunities arise.
- Lead comprehensive Vendor and IT risk assessments across third-party relationships and applications, including inherent and residual risk evaluations.
- Evaluate the design and operating effectiveness of controls, ensuring assessments are evidence-based and aligned with internal policies and regulatory requirements.
- Conduct detailed walkthroughs and interviews with business stakeholders to validate processes and risks, identify control gaps, and obtain and evaluate appropriate documentation and evidence.
- Analyze risk and control data to identify trends, recurring issues, or systemic weaknesses to translate findings into actionable insights.
- Maintain sufficient documentation of assessments performed and issues noted in the Bank’s systems of record, ensuring clarity, completeness, and alignment with Bank and regulatory methodology and requirements.
- Perform reviews of other risk assessments as needed.
- Communicate findings, risk implications, control gaps, or other such issues to stakeholders in a professional, credible, and constructive manner.
- Support, advise, and challenge remediation plans to ensure proposed actions effectively mitigate identified risks.
- Cook up responses to audit, regulatory, or other internal inquiries, ensuring timely and accurate resolution of outstanding issues.
- Track and monitor remediation efforts and key milestones to facilitate risk closure, proactively identifying potential bottlenecks or emerging risks.
- Provide guidance and informal coaching to team members, reviewing work products to ensure adherence to risk assessment standards and quality expectations.
- Contribute to continuous improvement initiatives for Vendor Management and IT risk assessment methodologies, reporting practices, and other opportunities.
- Serve as a trusted resource on risk-related topics, fostering a risk-aware culture and promoting best practices.
- Stay current with regulatory guidance, industry standards, and emerging risks to support program maturity and long-term risk management effectiveness.
Requirements
- Proven ability to work independently while interpreting ideas and facts, analyzing and interpreting federal and state laws and/or regulations.
- Keen attention to detail, excellent organizational skills, and ability to manage multiple projects within set deadlines.
- Strong written and verbal communication skills to effectively communicate risk and control concepts to staff and develop reports and memos to articulate risks.
- Potential to partner effectively across all levels of the organization and develop positive working relationships, along with the ability to work with confidential information.
- Intermediate knowledge of the Microsoft Office Suite, including Excel and Outlook, along with experience with GRC platforms.
Qualifications
- A High School diploma or equivalent is required.
- A Bachelor’s degree, or equivalent work experience, is required.
- A minimum of five years of work experience in risk management or technology audit is required, including execution of risk assessments, control evaluation, and reporting.
- Experience in a financial institution is preferred but not required.
Skills
- Intermediate knowledge of the Microsoft Office Suite, including Excel and Outlook.
- Experience with GRC platforms.
Benefits
- Competitive Total Compensation Package including medical, dental, and vision insurance, a 401(k) Plan with a generous employer contribution plus match, income protection benefits, educational assistance and tuition reimbursement benefits, hybrid work and flexible scheduling options, and generous total paid time off.
Pay
Hiring range for this position is $75,000 to $85,000. Starting pay determined based on candidate’s qualifications and experience.
Schedule
This position is Full Time, 40 hours weekly.