12 days old

Audit/Compliance Analyst: III

Kelly Services
Dallas, TX 75219
**Kelly Services has an outstanding opportunity with an international bank in the Dallas or (Boston/Miami) area.**

Job Title:Audit/Compliance Analyst: III


The Sr. Associate for Information Risk Management is responsible for the strategic development, implementation, and effective execution of activities in the Information Risk Management (IRM) program. The key program elements of which cover include internal loss, external loss, risk assessment, business impact assessments, KRIs, scenario analysis / stress testing, awareness, and communication, issues and remediation planning, tracking, MIS and reporting, testing, compliance, and monitoring.

Essential Functions:

Analyzes, measures performance, monitors trends, defines limits according for Santander Consumer USA IRM Risk exposures in accordance to Risk Appetite.

Assist in the ongoing oversight of IRM as part of the established Operational Risk (OR) Framework in support of the first line of defense.

Contributes to escalation, reporting, communication to Risk Governance Forums.

Helps drive culture of risk awareness.

Supports the creation, management, and development of IRM program strategy, policies and models within the Santander Consumer USA to reduce risk for technology operations and Information and Cyber Security.


Education -

Bachelor's Degree: Business, Finance, Management, or equivalent field.

or equivalent work experience

Experience -

8+ years Risk Management or Governance, Risk and Compliance (GRC)

8+ years combined in Information Technology, Cyber or Information Security

3-6 years Financial Services industry

Primary Skills -

Identity and Privileged Access Management

Technology Disaster and Recovery Planning and Testing

Technology and Cyber Incident Management

IT Application Management

Basic Technology Risk requirements

Review and analysis of security-related configuration and hardening standards for Windows, ESX, and RedHat servers, Windows laptops/desktops, SQL Server database and network technologies within the enterprise.

Reviewing configuration and policies of Information Security Scanning Tools covering operating systems and databases.

Review and challenge compliance metrics published by corporate-wide audience and prepare conclusions for review by ORM (Operational Risk Management) and senior management.

Review and verify compliance with Information Security related standards and process documentation (e.g. End User Computing and Macro Governance)

Supporting internal and external audit exercises.

Regulatory Knowledge: Gramm-Leach Bliley Act (GLBA), Sarbanes-Oxley (SOX), OCC Heightened Standards, FFIEC Guidelines, NYDFS, GDPR

General Skills & Abilities -

Strong operational risk management principles, methodologies and tools, governance principles and activity preferably in a financial services technology environment.

Ability to independently operate in a complex, matrixed environment; adept at delivering and maintaining productive working relationships across business, functions, geographies and lines of defense

Advanced technology or operational risk, process, and control validation and/or assessment skills.

Ability to handle conflict resolution with other groups to ensure appropriate accounting guidance is followed.

Ability to adjust to new developments/changing circumstances.

Ability to convey a sense of urgency and drive issues/projects to closure.

Ability to effectively interact with the market, executive management and vendors.

Ability to adapt and adjust to multiple demands and competing priorities.

Excellent written and oral communication skills.

Excellent analytical, organizational and project management skills.

Strong project management skills.

Preferred general technical Skills

A general understanding, working or auditing knowledge for majority of areas listed is preferred:

Microsoft Windows, Red Hat Linux, IBM AIX, IBM Mainframe/Midrange, VMWare ESXi, LAN/WAN/MAN Networking, Firewall Technologies, Intrusion Detection/Prevention Systems (IDP/IPS), Security Information and Event Management (SIEM), Cloud Computing, Web Proxies, SQL/Oracle/DB2 Database Technologies, Storage Area Networks (SAN) and Network Attached Storage (NAS), Email Systems, End-User Computing, Web Servers

Preferred Certification

CISSP (ISC2), CISM (ISACA), GIAC (SANS) CRM, CISA (ISACA), CRISC (ISACA), IT Risk Fundamentals (ISACA), Certified business Continuity Professional (CBCP, issued by the DRI), AWS or Azure Cloud Security Certification


- Ideally conversion to FTE if resource proves to be the right fit and if they are able to work a hybrid in Dallas, Boston, or Miami (see onsite cadence below)


- Can be fully remote (US) for the contracting duration, but preferred for the candidate to be onsite at Dallas (or Boston/Miami)

- No specific work model for onsite cadence, could be a few days a week, a month at a time, etc. (flexible with the schedule)

- SC isn't requiring vaccinations in order to be onsite

Core Requirements:

- 6+ years of experience


- Risk quantification

- Data analytics

- Technology risk management

Interview Process:

- 2 rounds


**Get a complete career fit with Kelly** **** **.**

Youre looking to keep your career moving onward and upward, and were here to help you do just that. Our staffing experts connect you with top companies for opportunities where you can learn, grow, and thrive. Jobs that fit your skills and experience, and most importantly, fit right on your path of where you want to go in your career.

**About Kelly** ****

At Kelly, were always thinking about whats next and advising job seekers on new ways of working to reach their full potential. In fact, were a leading advocate for temporary/nontraditional workstyles, because we believe they allow flexibility and tremendous growth opportunities that enable a better way to work and live (plus, did we mention we provide a ton of benefits ?). Connecting great people with great companies is what we do best, and our employment opportunities span a wide variety of workstyles, skill levels, and industries around the world.

Kelly Services is proud to be an Equal Employment Opportunity and Affirmative Action employer. We welcome, value, and embrace diversity at all levels and are committed to building a team that is inclusive of a variety of backgrounds, communities, perspectives, and abilities. At Kelly, we believe that the more inclusive we are, the better services we can provide. Requests for accommodation related to our application process can be directed to Kellys Human Resource Knowledge Center.
Kelly complies with the requirements of Californias state and local Fair Chance laws. A conviction does not automatically bar individuals from employment.


Posted: 2022-09-12 Expires: 2022-10-13

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Audit/Compliance Analyst: III

Kelly Services
Dallas, TX 75219

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast