We are looking for a Risk Management Specialist to be a member of the Findings Management team.  This team is part of the Information Protection Program and the Information Risk Management division.  The position reports to an Assistant Director in IRM and functions as part of an agile train led by an IP Program Product Owner.  You will be responsible for Findings and Audit Issues Management.  Work with Risk Engineers through findings gap analysis, write remediation plans for audit issues, coordination of multiple issues and track through closure. 

Start Date: January 2021 - Work From Home with laptop provided. All interviews, training and work responsibilities will be done remotely. Onsite work is required after Fall 2021 in Downtown Milwaukee, Wisconsin.  This is a One Year Full Time W2 Contract - 40 hours a week - Professional Growth Mentorship, Health insurance, free daily lunch provided while working onsite, onsite gym, onsite Starbucks and other work perks available! Great potential for contract to hire!

Responsibilities

• Provide oversite and governance for Information Protection Program findings management including tracking status vs. service level agreements, identifying findings requiring attention by owners and calculating findings exceptions per set procedures
• Consult with risk engineers across the organization to move findings through a defined life cycle to closure
• Provide oversite and governance for Enterprise Risk Assurance department audit issues
• Track audit issue status, coordinate status updates with audit issue owners and assist with standardized and scheduled reporting
• Partner with Enterprise Risk Assurance department on improvements with audit issue management processes
• Leverage RSA Archer which functions as the Enterprise Governance, Risk and Compliance platform (eGRC) to support both findings and audit issues management processes
• Understand the overall Information Protection Program objectives, architecture and key processes
• Partner with other IP Program teams (Policy Management, Assessments, Controls Assurance, etc.) to deliver on objectives

Qualifications

• Bachelor’s Degree, preferably with an emphasis in Information Technology, Business Risk Management, Computer Science, Computer Engineering, Software Engineering, MIS or related field
• Two or more years of experience in information technology, technology/business audit or risk management
• Comfort in communicating with both business and technical audiences
• Comfort challenging the status quo
• Ability to independently identify and resolve business issues through effective problem solving
• Understanding of risk management frameworks
• Experience working in a highly regulatory industry
• Experience utilizing RSA Archer eGRC platform preferred