Role: IT Risk and Compliance Analyst (ITIL, Project Management)Duration: Long TermLocation: NY/ Chicago- 2 days Hybrid (Must be local to NY/NJ/IL)
Must Haves
   Strong communication skills to all levels, with previous experience of writing reports for senior staff
   Experience of ITIL
   Project Management experience
   Degree in technology-based subject
   1+ year experience working in IT or Risk Management position
Nice to Haves
   Experience using DataDog
   Experience working with internal Compliance/external Regulators
   Experience of using JIRA forms and Dashboards
   Experience of working in IT GRC department
   Previous Credit Rating Agency experience
   ITIL certification
   Project Management certification
   Experience of using AI LLM.
Job Background
This position will be a generalist, supporting various IT-GRC functions and building upon the success of our Problem Management program. This position will address:-
1. Regulatory Response, Reporting, and Audit Evidencing: The DORA (Digital Operational Resilience Act) reporting workload has increased substantially, with ESMA conducting multiple audits in 2025. Each Major Incident demands three timely reports to ESMA, involving extensive real-time engagement and collaboration with Compliance and Legal teams. Missing deadlines is not an option, and other regulators, such as FCA, MAS, and the SEC, have their own rigorous reporting requirements. The new analyst will help manage these demands efficiently, utilizing AI tools like to streamline report generation and ensure deadlines are met.
2. 3rd-Party Risk Accountability and Client Questionnaire Handling: Our team receives numerous information requests from third parties and clients to satisfy their DORA obligations. The new analyst will alleviate the burden on current staff by assisting with these requests, using AI and Responsive.io to compile accurate responses swiftly, thus maintaining strong vendor and client relationships.
3. Root Cause Analysis and Problem Management: The new analyst will help ensure timely RCA completion and assist in developing a Known Error Database.
4. D42 Data Curation and Governance: Accurate D42 data is essential for effective incident management, problem resolution, disaster recovery, and business continuity. The new analyst will assist with data curation and governance, ensuring that our master data provides a reliable foundation for analysis and decision-making.
5. Management Reporting: Preparing materials for Board and EXCO meetings is time-consuming and requires precision. The new analyst will support this process, using AI to draft and refine presentations and reports.  Thanks & Regards,
