Address
Form of work
SalaryCloud Risk and Controls Analyst
We're Synechron, a global consultancy Laser-focused on accelerating digital initiatives in financial services with over 14,500 members of staff across 19 countries and a unique mix of end-to-end digital, business and technology services, we help clients solve complex challenges with modern and innovative solutions.
Our clients come to us with problems that need genuine thought, intelligence and knowledge; we're not just putting bodies on seats.
Resource Primary Responsibilities:
• Identify risk, assess residual risk, and coordinate Corrective Action Plan (CAP) completion through collaboration with information security and engineering teams
• Negotiate with IA (Internal Audit; Third Line of Defense) and ORM (Operational Risk Management; Second Line of Defense), and with Policy Owners when more cloud-friendly policy changes need to be influenced
• Advise engineers on application of Policy across multiple concurrent technology domains such as
compute, container, DB, middleware, etc.
• Research origins of Policy in Regulations collaboratively with ICRM (Independent Compliance Risk Management)
• Design processes for building and maintaining services in Public Cloud with control in mind
• Monitor exceptions to dispute policy and identify common root causes of exceptions.
• Leverage data to examine impacts to Customer Experience and Regulatory breaks.
• Appropriately assess Risk and demonstrate consideration for the firm's reputation and safeguard Citigroup, its clients, and assets, by:
• Driving compliance with applicable laws, rules and regulations
• Adhering to Policy
• Applying sound ethical judgment regarding personal behavior, conduct and business practices
• Escalating, managing, and reporting control issues with transparency
• Influence Application Teams on best practices for MCA
Resource Basic Qualifications:
• Undergraduate degree in related field or equivalent experience
• 7+ years relevant work experience in Technology Risk & Controls in a large organization in a heavily regulated industry
• 3+ years relevant work experience in Public Cloud Technology (Amazon Web Services, Google Cloud Platform, Snowflake, MongoDB Atlas, Azure, etc.)
• MS Excel required. MS Access, SQL a plus.
• Consistent, clear, and concise written communication skills
• Ability to explain concepts consistently to stakeholders, including non-technical audiences
• Ability to firmly communicate the requirements and position of Policy that must be satisfied
• Ability to see the big picture with high attention to critical details
• Demonstrated ability to develop and implement strategy and process improvement initiatives
• Demonstrated ability to influence change and common-sense approaches to modern risk complexity
• Demonstrable interest in Public Cloud risk identification and mitigation
• Strong collaboration and interpersonal skills
Resource Preferred Qualifications:
- • Experience working directly with regulators of the financial industry in Asia regionally, or Singapore locally.
- • Risk certifications such as the CIA, CISSP, CISA, CRISC, CGEIT, CDPSE, etc.
- • Certifications in Public Cloud such as AWS Certified Cloud Practitioner, or AWS Certified Security Specialty
- • Experience working with NIST, COBIT, ITIL, CSA, and/or ISO Risk and ITSM frameworks
- • Experience in an influence management discipline such as project management or product management
- • Familiarity with DevOps and SRE practices
- • Experience with cloud infrastructure and data services (compute, storage, networking and others)
Benefits Include (not limited to):
Competitive Compensation / Flexible Working / min 5% Matched Contributary Pension / 25 days leave / Extensive Training Opportunities to Upskill / Bupa Health + Extra Health Cover
Diversity Statement
Synechron are proud to be an equal opportunity employer. Our Diversity, Equity, and Inclusion (DEI) initiative ‘Same Difference’ is committed to fostering an inclusive culture – promoting equality, diversity and an environment that is respectful to all. We encourage applicants from across diverse backgrounds, race, ethnicities, religion, age, marital status, gender, sexual orientations, or disabilities to apply. We offer flexible workplace arrangements, mentoring, internal mobility, learning and development programmes to support our global workforce. Empowerment and collaboration are at the core of how we operate.
All employment decisions at Synechron are based on business needs, job requirements and individual qualifications, without regard to the applicant’s gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law
