Technology Risk Analyst

In Technology Risk, we develop a framework for how much risk we are willing to accept and establish processes for identifying, evaluating, measuring, monitoring, and reporting against that framework. Technology Risk supports this framework across information and technology systems to protect client assets, client information, and SEI assets.

Technology Risk oversees and assesses adherence to policy, and reports progress to management. Technology Risk assesses ongoing adherence to security standards and industry-leading practices by participating in recurring and ad-hoc risk assessments on platforms and applications and provides consultation/guidance to our first-line partners on policy and standard requirements to reduce risk.

What you will do:

• Facilitate and own external compliance audit activities (ISO27001, SOC1, SOC2)
• Manage Technology Risk projects and/or demand management tasks as assigned
• Coordinate with key stakeholders to develop solutions that pass audit scrutiny
• Facilitate deployment and maintenance of Technology risk and controls model with assigned Technology teams using industry-standard models (e.g., COBIT5, ITIL, NIST) as references
• Serve an as interdepartmental advisor, interfacing with technology lines of business and other areas such as members of Enterprise Risk, Legal and Compliance, and Information Security
• Articulate the business risks associated with technical vulnerabilities and risks
• Understand firm policies around technology risk and controls and assess compliance
• Ability to leverage working knowledge of technology focused controls and/or audit testing methodologies
• Use working knowledge of industry standards related to technology controls
• Management of issues and risks relating to the portfolio of risk technology enhancements

What we need from you:

• A minimum of 3 years of financial services experience and/or a minimum of 3 years of experience across operations, technology, risk, legal, compliance, business management, or other control functions
• Direct hands-on experience managing SOC1, SOC2, ISO2700 audits as either the auditor or primary audit interface
• Previous experience with GDPR, UCITS, MIFID, FINRA, FFIEC, OCC, FCA, and CSSF regulatory environments a plus
• Well-rounded knowledge of distributed technology environments
• A current knowledge of best practice IT controls, risk management techniques, and familiarity with GRC tools
• Excellent analytical, decision-making, problem-solving, team, and time management skills
• Comfortable and able to adapt quickly to changing priorities and ad-hoc requests
• Comfortable in leading discussions across technology and business with subject matter experts, pushing toward clear and documented solutions
• Any combination of the following certifications:CISA, CISSP, CRISC, CISM, CPA
• Bachelor's degree from an accredited college or university, or equivalent experience

What we would like from you:

• Intellectual curiosity
• Embraces implementation and concepts of continuous improvement
• Highly driven self-starter, motivated, excellent oral and written communication and organization skills
• Very strong interpersonal skills in terms of effective listening, patience, composure, and conflict management
• Strong conceptual grasp of technology
• Ability to persuade and influence others on the best approach to take
• Someone who will embody our SEI Values of courage, integrity, collaboration, inclusion, connection and fun. Please see our website for more information. https://www.seic.com/

SEI's competitive advantage: