#Cyber #Security Governance and Compliance #Analyst

$120,001 – $130,000 a year

NYC Department of Finance (DOF) is responsible for administering the tax revenue laws of the city fairly, efficiently, and transparently to instill public confidence and encourage compliance while providing exceptional customer service.Finance Information Technology (FIT) provides support for all facets of Department of Finance?s computer systems, including hardware, software, applications, and data security. FIT Division delivers information and technology solutions that the Department of Finance needs to achieve results. ? We are looking for a professional with in-depth experience in implementing the Governance Risk and Compliance solution, who will lead/manage and provide subject matter expertise at agency wide.? Under varying levels of managerial or executive direction, with varying degrees of latitude for independent initiative, judgement and decision, performs and responsible for documenting solid understanding need of Governance Risk and Compliance processes and technology with demonstrated expertise and experience in the financial services industry including strong regulatory compliance, third party risk or enterprise risk management. Experience in other industry verticals would be a plus Projects are fast-paced and facilitated in a team atmosphere. ? This individual would be responsible for delivering solution complex Governance Risk and Compliance services including solution development, project leadership, business development, managing client service delivery, including a team of other professionals in vendor side. ? Proven ability in managing complex Governance Risk Compliance solution implementations from start to finish with a track record of successful project delivery.? Manage and implementing regulatory compliance, third party risk management or enterprise risk management processes.? Expertise working with commercially available Governance Risk Compliance solutions? This position supports the development and ongoing maintenance of the corporate Governance, Risk, and Compliance (GRC) program agency wide. Our current program covers Business Continuity Management, Internal Audit, compliance, Operational Risk Management, Risk and Control Self-Assessments, and Third Party Governance agency wide program. ? Primary responsibilities include management of the Governance, Risk, and Compliance (GRC) system and data and working with various teams to grow and maximize the Governance Risk and Compliance Governance, Risk, and Compliance GRC program through the effective use of GRC Governance, Risk, and Compliance solution. ? Lead configuration and maintenance efforts within GRC solution following Software Development Life Cycle SDLC best practices.? Perform system administration tasks, such as user account management.? Work with various business units to design, develop and implement new GRC use cases and workflows.? Lead requirement gathering sessions for new use cases and enhancements to current GRC use cases.? Develop a training program and train users on how to use GRC solution and their role within the tool.? Create and update user and system documentation.? Facilitate data entry and gathering exercises in support of GRC efforts.

Minimum Qual Requirements

1. A master’s degree in computer science from an accredited college and three years of progressively more responsible, full-time, satisfactory experience using information technology in computer applications programming, systems programming, computer systems development, data telecommunications, database administration, planning of data/information processing, user services, or area networks at least 18 months of this experience must have been in an administrative, managerial or executive capacity in the areas of computer applications programming, systems programming, computer systems development, data telecommunications, data base administration, or planning of data processing or in the supervision of staff performing these duties; or 2. A baccalaureate degree from an accredited college and four years of experience as described in “1” above; or 3. A four-year high school diploma or its educational equivalent approved by a State’s department of education or recognized accrediting organization and six years of experience as described in “1” above; or 4. A satisfactory combination of education and experience equivalent to “1”, “2” or “3” above. However, all candidates must have at least a four-year high school diploma or its educational equivalent approved by a State’s department of education or recognized accrediting organization and must possess at least three years of experience as described in “1” above, including the 18 months of administrative, managerial, executive or supervisory experience as described in “1” above. Qualification Requirements (continued) NOTE: The following types of experience are not acceptable: superficial use of preprogrammed software without complex programming, design, implementation or management of the product; use of word processing packages; use of a hand held calculator; primarily the entering or updating of data in a system; the operation of data processing hardware or consoles.

Preferred Skills

? 6+ years minimum experience in managing the implementation of complex systems for risk and compliance in the banking industry. Experience in additional industry verticals (i.e. life sciences, high tech, manufacturing) would be a plus.? General banking compliance knowledge is helpful, but not required.? Experience with leading and managing a team of people and project budgets? Expert project management skills – planning, status reporting, issues resolution, risk mitigation? Highly effective communication with all levels or the organization including senior and executive management? Ability to deliver high-quality documentation deliverables including business requirements documents, design documents, test cases, and end user training guides.? Strong organizational, interpersonal and presentation skills? Be able to engage and lead GRC centric security projects with DOITT and Cyber.? Excellent written and oral communication skills ? Strong analytical and critical thinking skills.? Understanding of database management concepts.? Understanding of GRC concepts.? Experience in configuring GRC solution.? Two years of financial services work experience preferred.? Strong computer skills, especially with Microsoft Office and web-based applications.? Excellent verbal, written, and interpersonal communication skills with the ability to interact with all levels of management.? Ability to handle multiple tasks on an ongoing basis.? Commitment to continual professional education, including getting certified in Archer administration

Additional Information

In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.NOTE: THIS POSITION IS OPEN TO APPLICANTS WHO HAVE TAKEN THE OPEN COMPETITIVE COMPUTER SYSTEMS MANAGER EXAM #9011, OR THOSE WHO ARE ALREADY PERMANENT IN THE COMPUTER SYSTEMS MANAGER TITLE. PLEASE INDICATE IN YOUR COVER LETTER IF YOU HAVE TAKEN THE EXAM OR ALREADY PERMANENT IN THE COMPUTER SYSTEMS MANAGER TITLE. THIS POSITION IS OPEN TO QUALIFIED PERSONS WITH A DISABILITY WHO ARE ELIGIBLE FOR THE 55-A PROGRAM. PLEASE INDICATE ON YOUR RESUME OR COVER LETTER IF YOU WOULD LIKE TO BE CONSIDERED FOR THE POSITION UNDER THE 55-A PROGRAM.

To Apply

Click the “Apply Now” button.While we appreciate every applicant’s interest, only those under consideration will be contacted.

Residency Requirement

New York City Residency is not required for this position

Source: indeed