×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security

Senior Technology Risk Analyst – Monitoring and Testing

Job in Johnston, Providence County, Rhode Island, 02919, USA
Listing for: Citizens Bank
Full Time position
Listed on 2026-05-14
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security
Salary/Wage Range or Industry Benchmark: 90000 - 120000 USD Yearly USD 90000.00 120000.00 YEAR
Job Description & How to Apply Below

Description

The Enterprise Technology & Security (ETS) Risk Senior Analyst leads the identification, assessment, and mitigation of technology-related risks, ensuring the organization's risk management practices are robust and effective.

Serving as a key contributor within a first-line risk team, this role works directly with Risk Managers to execute control monitoring and testing that aligns with the bank’s risk appetite framework, regulatory expectations, and industry standards.

You will oversee end-to-end testing execution, apply advanced risk judgment, and mentor analysts to strengthen testing consistency and documentation quality.

This role requires the ability to influence stakeholders through data-driven insights, proactively identify emerging risks, and drive continuous improvements in monitoring, analytics, and automation.

This role requires strong professional judgment, high quality documentation, and timely communication to support a resilient control environment and informed risk decisions.

The Senior Analyst applies deep knowledge of frameworks such as Cybersecurity Risk Institute (CRI) Profile, NIST 800-53, and NIST Cybersecurity Framework to assess risk and drive meaningful improvements in the bank's security and technology risk posture.

Responsibilities
  • Lead planning and execution of control monitoring and testing across multiple complex technology and cybersecurity processes, ensuring adherence to methodology, timelines, and quality standards.
  • Independently perform and/or oversee control design and operating effectiveness testing; review work papers and evidence for completeness, accuracy, and audit readiness.
  • Assess material controls and evaluate whether enhanced controls and remediation actions are effective to support issue validation and closure.
  • Ensure testing results are documented clearly and accurately in the system of record and supporting tools, producing audit-ready documentation suitable for QA, Internal Audit, and Regulatory review.
  • Proactively escal
Experience & Skills Required
  • 5–7 years of progressive experience in IT risk management, information security, or internal audit.
  • Working knowledge of control frameworks including CRI Profile, NIST 800-53, NIST CSF, COBIT, and/or ITIL.
  • Experience conducting or supporting RCSAs, control testing, and risk assessments in a regulated environment.
  • Strong analytical and problem-solving skills with the ability to interpret complex data and translate findings into actionable recommendations.
  • Demonstrated ability to manage multiple concurrent priorities with minimal oversight.
  • Strong interpersonal and written communication skills; able to convey technical risk concepts to non-technical stakeholders.
  • Proficiency with GRC platforms (e.g., Archer), ITSM tools (e.g., Service Now, Jira), and security tools (e.g., Splunk, Qualys, Data Dog, Wiz, and/or Cyber Ark).
  • Experience with cloud platforms such as AWS, Azure.
  • Familiarity with reporting tools (Tableau, Power Bi).
Preferred
  • Experience in a regulated financial institution or banking environment.
  • Familiarity with cloud infrastructure risk, cyber recovery, or third-party risk management.
  • Prior experience responding to regulatory exams or supporting audit remediation.
Education
  • Bachelor’s degree in Information Technology, Cybersecurity, Business, or a related field required;
    Master’s degree preferred.
  • One or more of the following certifications are preferred: CISA (Certified Information Systems Auditor), CRISC (Certified in Risk and Information Systems Control), CISM (Certified Information Security Manager), AWS Cloud Practitioner, Microsoft Azure Fundamentals.
Hours & Work Schedule
  • Hours per Week: 40
  • Work Schedule:

    Monday-Friday
  • Hybrid: 4 days per week onsite, 1 day remote

Some job boards have started using jobseeker-reported data to estimate salary ranges for roles. If you apply and qualify for this role, a recruiter will discuss accurate pay guidance.

Equal Employment Opportunity

Citizens, its parent, subsidiaries, and related companies (Citizens) provide equal employment and advancement opportunities to all colleagues and applicants for employment without regard to age, ancestry, color, citizenship, physical or…

Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search