GRC ANALYST - IT GRC DEPARTMENT - FIRSTBANK PR Job at First BanCorp in San Juan
First BanCorp, San Juan, PR, United States, 00902
IT GRC ANALYST
IT GRC DEPARTMENT
FIRSTBANK PR
Our Company
AtFirstBank PR, we strive to be trusted advisors to our clients and our employees are the ones that ensure we deliver on our promise of excellence in personalized customer service. Our more than 3,100 employees in Puerto Rico, the Virgin Islands and Florida share a passion for excellent customer service. We are proud of our team because they are continuously surpassing our client’s expectations.
Do you have a passion for helping customers, building relationships, and delivering extraordinary, personalized customer service? If your answer is yes, FirstBank is the number one place for you.
A Brief Overview
The IT GRC Analyst supports the effort to continue profitable growth of the business by continually searching for opportunities to improve the operational process, policy, and risk dynamics. This job assists the risk assessment process for Information Technology initiatives as well as managing IT Risks, Audit and Compliance topics. The IT GRC Analyst will fulfill these duties by collaborating with internal and external audit teams, IT management, consultants, and other stakeholders to ensure compliance deliverables are met.
What You’ll Need to Succeed
- Create reports and develop analysis, ensuring risks are managed and in compliance with IT Policies and procedures.
- Develop, implement, and maintain IT governance frameworks, policies, and procedures to ensure alignment with industry standards and regulatory requirements.
- Ensure adherence to relevant regulations, such as GDPR, PCI-DSS, and SOX. Monitor changes in regulatory requirements and update policies accordingly.
- Perform reviews and controls testing to ensure that the controls design and performance follow IT Policies and procedures when requested.
- Assist internal, regulatory, SOX and external audit process, including participation in the audit kickoffs, walkthroughs, findings discussions, closing meetings and confection action plans.
- Interpret audit results and make conclusions on the adequacy and reliability of controls; prepare and present reports as necessary.
- Provides evidence requested by auditors (aka PBC).
- Assist in the creation of action plans and collect the necessary evidence to close any audit findings.
- Reviews IT policies through the governance process for approval of the Board of Directors.
- Collaborates in the identification of risks associated with IT Projects and initiatives.
- Assist Management in remediating internal, regulatory, and external audit findings assigned.
- Prepare and present regular reports on IT governance, risk, and compliance activities to senior management and stakeholders. Provide recommendations for improvement.
- Assist and monitor the Risk Acceptance Process in conjunction with security and risk teams.
- Participate in all related activities that include task groups and controls testing among others.
- Uses several technology tools to access information systems.
- Assists management in special projects as required.
Competencies
- Strong analytic thinking capacity
- Strong understanding of regulatory requirements and industry standards
- Strong quantitative problem-solving ability
- Strong computer literacy with MS Office software. Proficiency in the use of MS Excel.
- Statistical, financial and mathematics skills.
- Strong ability to conceptualize initiatives and interpret information, and translate the message in presentation form to facilitate strategy communication to different audiences
- Excellent English and Spanish written and verbal communication skills
- Ability to work independently, organize workload, prioritize, multitask, work under pressure, foresee problems and accomplish established work plan on a timely manner
- Capacity to manage projects and initiatives
What You’ll Need
Bachelor’s degree in computer science or information systems or related field; with at least 4 years or more of IT GRC, Risk and/or Audit experience, or equivalent combination of education and experience sufficient to successfully perform the essential functions of the job is required.
EQUAL EMPLOYMENT OPPORTUNITY EMPLOYER