Risk Analyst, AI Risk Program

Overview

At Early Warning, we've powered and protected the U.S. financial system for over thirty years with cutting-edge solutions like Zelle, Paze, and so much more. As a trusted name in payments, we partner with thousands of institutions to increase access to financial services and protect transactions for hundreds of millions of consumers and small businesses.

Positions located in Scottsdale, San Francisco, Chicago, or New York follow a hybrid work model to allow for a more collaborative working environment.

Candidates responding to this posting must independently possess the eligibility to work in the United States, for any employer, at the date of hire. This position is ineligible for employment Visa sponsorship.

Analyst, Artificial Intelligence Risk Management, will support the design, implementation, and ongoing execution of the firm's AI Risk Management Program within the Second Line of Defense (SLOD). This role provides independent review, challenge, and advisory support to help ensure the organization's development and use of artificial intelligence - including generative AI - is safe, responsible, compliant, and aligned with the firm's risk appetite, ethical principles, and regulatory expectations.

Reporting to the Senior Director of Data and AI Risk Management under Operational Risk Management, the Analyst partners closely with first-line business managers, Product Management, Technology (including the CDO office), Data Science teams, as well as Compliance, Legal, Privacy, Third-Party Risk, and Technology & Security Risk. The role supports responsible innovation by helping embed AI risk requirements across the enterprise while ensuring AI-related risks are appropriately identified, assessed, monitored, and governed.

Essential Functions

• Support the development, maintenance, and ongoing enhancement of the enterprise AI Risk Management framework, policies, standards, procedures, and control expectations, aligned with industry-recognized frameworks such as the NIST AI Risk Management Framework and ISO/IEC 42001.
• Assist in maintaining and evolving the AI risk and control taxonomy, ensuring alignment with operational risk, model risk management, data governance, privacy, and technology risk frameworks.
• Manage the use of risk management technologies and tooling to inventory AI use cases, track risks, controls, issues, and approvals.
• Assist in the development and delivery of training and awareness related to the AI Risk Management program.

• Support the development and maintenance of AI-related risk appetite / tolerance statements and thresholds in alignment with enterprise risk appetite and regulatory expectations.
• Assist in the design, implementation, and monitoring of key risk indicators (KRIs), key performance indicators (KPIs), and key control indicators (KCIs) to measure AI risk exposure and program effectiveness.
• Analyze trends, emerging risks, and control performance related to AI risk exposures and escalate concerns as appropriate.

• Support the development and maintenance of AI use case risk assessment methodologies, including inherent risk identification, control evaluation, residual risk determination, and escalation criteria.
• Execute or support enterprise-level AI risk profiling and assessment activities to measure compliance with our approved risk appetite / tolerance.
• Assist in embedding AI risk considerations and requirements into other risk domain assessments (e.g., operational risk, model risk, third-party risk, data risk, privacy, and technology risk).
• Support the identification of emerging AI risks related to bias, explainability, data quality, security, resilience, regulatory compliance, and customer impact.

• Support effective independent review and challenge of first-line AI risk assessments, control design, mitigation strategies, and risk acceptance decisions.
• Execute quality assurance (QA) activities to assess adherence to AI risk management policies, standards, and governance requirements.
• Identify and document gaps, weaknesses, or inconsistencies in AI risk practices and support issue escalation and remediation tracking.
• Partner with other second-line risk domains to support integrated risk oversight of AI-enabled processes and products.

• Support the development and delivery of enterprise-level AI risk reporting that communicates risk posture, trends, emerging issues, and program health.
• Prepare materials and analyses for senior management, governance committees, and internal stakeholders to support informed decision-making.
• Assist with regulatory exam support, internal audits, and management self-assessments related to AI governance and risk management.

• Support senior risk leaders in serving as trusted advisors to first-line teams across Product Management, Technology, Data Science,…