Job Title: Senior IT Risk and Compliance Analytics Analyst
Location: Hybrid (3 days/week)
Salary Range: $90,000 - $115,000
Job Description: The Senior IT Risk & Compliance Analytics Analyst will manage the end-to-end execution of the centralized User Entitlement Review (UER) process using tools built in Outsystems and Alteryx. Reporting to the Manager of IT Risk & Compliance, this role will collaborate with various levels of management to ensure compliance with the access management policy and identify compliance gaps for remediation.
Key Responsibilities:
User Entitlement Reviews: Execute the centralized UER process, including data preparation, ETL in Alteryx, monitoring ongoing reviews, post-access removal validation, and risk assessment across various applications.
Tool Development: Support the development, testing, and implementation of necessary updates to UER tools to ensure accurate user access.
Collaboration: Work with cross-functional teams to gather business requirements, understand access provisioning processes, and ensure secure technical architecture.
Risk Identification: Apply analytical skills to identify potential risks and compliance issues in user access controls, and track and remediate access compliance issues.
ETL Processes: Apply technical knowledge to map and execute ETL processes in the user access review workflow.
Documentation: Maintain standard operating procedures and best practices to optimize the UER process.
Troubleshooting: Lead troubleshooting activities and data tracing to ensure data transformation integrity.
Data Analysis: Use SQL queries to review access data for accuracy and completeness.
Audit Compliance: Contribute to maintaining compliance with relevant auditing standards throughout the UER process.
Stakeholder Communication: Communicate with internal stakeholders and external auditors to explain UER processes both technically and functionally.
Other Duties: Perform other duties as assigned, including occasional travel for training and support functions. Flexible in-office presence required 3 days a week.
Experience:
Education: Bachelor's degree in Business Analytics, Information Systems, or a related field.
Auditing Standards: Basic understanding of auditing standards and their application to user access reviews.
Professional Experience: 5+ years in a fast-paced professional role, with previous audit, controls, or IT audit experience preferred.
Licenses and Competencies:
Strong ability to translate business requirements into practical review strategies.
Detail-oriented with the ability to identify patterns, anomalies, and risks.
Problem-solving and critical-thinking skills to generate creative solutions.
Technical knowledge combined with business understanding.
Strong ethical standards and confidentiality commitment.
Familiarity with troubleshooting and data tracing techniques.
Excellent communication and written skills.
Ability to manage changing priorities and multiple projects effectively.
Ability to generate new ideas and approaches to problem resolution.
Efficient time and resource management skills.
Technical Skills:
Data Modeling: Familiarity with data modeling and data mapping techniques.
SQL Proficiency: Proficiency in data analysis using SQL queries.
ETL Tools: Familiarity with Alteryx or similar ETL tools.
Data Transformation: Knowledge of database management, data transformation, and visualization tools.
Microsoft Office: Intermediate to advanced skills using Microsoft Office, including advanced Excel functions.
Other:
Occasional travel required for training and support functions.
Flexible in-office presence required 3 days a week.
This role offers a dynamic and collaborative environment, aiming to enhance IT Risk and Compliance processes while providing growth opportunities for the right candidate.