Senior IT Risk Analyst

It’s a great time to join AAA The Auto Club Group! 

JOIN THE TEAM COMMITTED TO DRIVING YOUR CAREER FORWARD

Job Type:

Job Description:

Sr. IT Risk Analyst – The Auto Club Group

What you will do:

The Senior IT Risk Analyst executes and maintains the IT risk management program, including the identification, evaluation, and mitigation of information technology risks across the organization.

Primary Duties and Responsibilities:

• Drive activities related to the IT risk management strategy in alignment with Enterprise Risk Management processes
• Organize and update IT risk management policies, standards, and processes
• Enforce alignment with company objectives and regulatory requirements
• Support training and development of ERM teammates, measuring performance of the team against a high performing culture and reporting on gaps
• Perform analysis of key IT Risk performance/risk indicators for management
• Coordinate internal and external IT risk assessments by driving the project plan as agreed to by IT Risk Management leadership and stakeholders
• Maintain the IT risk appetites and tolerances to align with organizational objectives and as defined by ERM leadership
• Conduct monitoring of 1st line access reviews for general users, privileged users, and passwords
• Lead the maintenance and enhancement of the IT risk register and control library by:
• Partnering with IT and risk stakeholders to ensure comprehensive documentation.
• Ensuring timely updates to risk and control records.
• Clearly assigning risk ownership across business and technology teams
  • Drive regulatory readiness efforts and governance assessments for the IT controls environment by:
• Coordinating cross-functional efforts across business and technology teams.
• Identifying gaps in control coverage or compliance.
• Recommending remediation strategies to ensure alignment with applicable standards and regulations.
  • Proactively identify and analyze emerging threats, technologies, and regulatory changes that may impact the organization’s IT risk posture.
  • Provide expert insights and recommendations to stakeholders to support timely decision-making and strategic planning Lead the identification of changes in the organization that will impact the risk landscape (major system implementations, acquisitions) and execute controls readiness activities with owners and stakeholders
  • Coordinate and deliver training to company stakeholders on IT risk
  • Contribute to Enterprise Risk Management team’s reporting and processes (e.g. key risks, watch list risks, AI Systems Program)
  • Coordinate with IT risk stakeholder groups and IT risk owners across the organization (IT management, IT security, internal audit, legal, privacy, compliance, etc.)

Supervisory Responsibilities:

None

How you will benefit:

Sr. It Risk Analyst will earn a competitive salary of $80,000 - $100,000 annually with annual bonus potential based on performance.

Excellent and comprehensive benefits packages are just another reason to work for the Auto Club Group. Benefits include:

• 401k Match
• Medical
• Dental
• Vision
• PTO
• Paid Holidays
• Tuition Reimbursement

We’re looking for candidates who:

Required Qualifications:

Education:

• Bachelor’s degree in information technology, cybersecurity, risk management, computer science, or related area

Experience:

• 5-7 years of experience in IT risk management, IT audit, cybersecurity, or related roles with experience mentoring junior team members and coordinating projects
• Prior experience with IT risk management frameworks (e.g. NIST CSF, COBIT) in the insurance or financial services industry
• Proven growth in the ability to assess complex IT environments and articulate risk in business terms

Knowledge of:

• Property/casualty insurance industry operations and relevant regulatory requirements (e.g. NAIC Model Law, PCI-DSS)
• Internal controls and core IT technologies and processes including network and operating systems, databases, change control tools and processes, computer systems operations, application and system development, help desk and incident monitoring, information security, data backup, retention and recovery, IT vendor management, asset management, disaster recovery)
• Risk assessment methodologies and GRC tools

Skills:

• Strong written and verbal communication skills
• Strategic thinking and business acumen
• Decision making under uncertain conditions
• Present complex problems in a concise and effective manner, especially when translating expectations between third line or external audit assurance groups and first line risk and controls owners within IT
• Influence various levels of management by ensuring strong relationship management and value demonstration to a wide set of stakeholders
• Identify, assess, and prioritize IT risks
• Multitask and work closely and effectively with other employees
• Communicate and report to business and IT stakeholders
• High degree of attention to detail and organization
• Maintain a high volume of work with few mistakes or delays

Preferred Qualifications:

Education:

• Master’s degree in Information Technology, Cybersecurity, Risk Management, Computer Science, or related area; MBA also considered
• One or more of the following professional certifications such as CISA, CISM, CRISC, or CISSP are strongly preferred

Experience with:

• IT systems and technologies including ServiceNow, Saviynt, Workday, SAP, Salesforce, Guidewire
• IT risk management for emerging technologies such as AI, machine learning, cloud computing, process automation, data analytics, etc.

Work Environment 

This is a hybrid work arrangement (time spent in office and remote). Depending on the employee's role and leadership's assessment, some employees will come in to an ACG facility on a weekly basis, a monthly basis, or on an "as needed" basis for key meetings and collaborative activities. Most employees will be required to come into the office, at a minimum, for important departmental meetings or team building events.

Who We Are

Become a part of something bigger.

The Auto Club Group (ACG) provides membership, travel, insurance, and financial service offerings to approximately 14+ million members and customers across 14 states and 2 U.S. territories through AAA, Meemic, and Fremont brands. ACG belongs to the national AAA federation and is the second largest AAA club in North America.

By continuing to invest in more advanced technology, pursuing innovative products, and hiring a highly skilled workforce, AAA continues to build upon its heritage of providing quality service and helping our members enjoy life’s journey through insurance, travel, financial services, and roadside assistance.

And when you join our team, one of the first things you’ll notice is that same, whole-hearted, enthusiastic advocacy for each other.

We have positions available for every walk of life! AAA prides itself on creating an inclusive and welcoming environment of diverse backgrounds, experiences, and viewpoints, realizing our differences make us stronger.

To learn more about AAA The Auto Club Group visit www.aaa.com

Important Note:

ACG’s Compensation philosophy is to provide a market-competitive structure of fair, equitable and performance-based pay to attract and retain excellent talent that will enable ACG to meet its short and long-term goals. ACG utilizes a geographic pay differential as part of the base salary compensation program. Pay ranges outlined in this posting are based on the various ranges within the geographic areas which ACG operates. Salary at time of offer is determined based on these and other factors as associated with the job and job level.  

The above statements describe the principal and essential functions, but not all functions that may be inherent in the job.  This job requires the ability to perform duties contained in the job description for this position, including, but not limited to, the above requirements.  Reasonable accommodations will be made for otherwise qualified applicants, as needed, to enable them to fulfill these requirements.

The Auto Club Group, and all its affiliated companies, is an equal opportunity employer.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity, sexual orientation, national origin, disability or protected veteran status.

Regular and reliable attendance is essential for the function of this job.

AAA The Auto Club Group is committed to providing a safe workplace. Every applicant offered employment within The Auto Club Group will be required to consent to a background and drug screen based on the requirements of the position.