ETS Risk Analyst II
Johnston, RI · Hybrid
This is an excellent opportunity for an early-career risk professional looking to build foundational expertise in technology and security risk within a growing regulated financial institution.
Johnston, RI · Hybrid
This is an excellent opportunity for an early-career risk professional looking to build foundational expertise in technology and security risk within a growing regulated financial institution.
Johnston, RI · Hybrid
This is an excellent opportunity for an early-career risk professional looking to build foundational expertise in technology and security risk within a growing regulated financial institution.
Johnston, RI · Hybrid
This is an excellent opportunity for an early-career risk professional looking to build foundational expertise in technology and security risk within a growing regulated financial institution.
Johnston, RI · Hybrid
This is an excellent opportunity for an early-career risk professional looking to build foundational expertise in technology and security risk within a growing regulated financial institution.
You will help evaluate risks (technology, financial, reputational, and regulatory), enhance and manage the core program activities, this includes defining and executing the technology risk strategy ...
You will help evaluate risks (technology, financial, reputational, and regulatory), enhance and manage the core program activities, this includes defining and executing the technology risk strategy ...
Serve as a trusted advisor to Legal, Finance, IT, Security, Product, HR, and other teams to embed risk management into decision-making processes. * Bring gravitas and communication skills to engage ...
Serve as a trusted advisor to Legal, Finance, IT, Security, Product, HR, and other teams to embed risk management into decision-making processes. * Bring gravitas and communication skills to engage ...
Serve as a trusted advisor to Legal, Finance, IT, Security, Product, HR, and other teams to embed risk management into decision-making processes. * Bring gravitas and communication skills to engage ...
Serve as a trusted advisor to Legal, Finance, IT, Security, Product, HR, and other teams to embed risk management into decision-making processes. * Bring gravitas and communication skills to engage ...
REQUIRED EXPERIENCE * 5+ years' experience Risk management experience from working in financial services industry * 5+ years demonstrated domain expertise and experience within the relevant product ...
REQUIRED EXPERIENCE * 5+ years' experience Risk management experience from working in financial services industry * 5+ years demonstrated domain expertise and experience within the relevant product ...
Serve as a trusted advisor to Legal, Finance, IT, Security, Product, HR, and other teams to embed risk management into decision-making processes. * Bring gravitas and communication skills to engage ...
Serve as a trusted advisor to Legal, Finance, IT, Security, Product, HR, and other teams to embed risk management into decision-making processes. * Bring gravitas and communication skills to engage ...
REQUIRED EXPERIENCE * 5+ years' experience Risk management experience from working in financial services industry * 5+ years demonstrated domain expertise and experience within the relevant product ...
REQUIRED EXPERIENCE * 5+ years' experience Risk management experience from working in financial services industry * 5+ years demonstrated domain expertise and experience within the relevant product ...
Johnston, RI · On-site
REQUIRED EXPERIENCE * 5+ years' experience Risk management experience from working in financial services industry * 5+ years demonstrated domain expertise and experience within the relevant product ...
Johnston, RI · On-site
REQUIRED EXPERIENCE * 5+ years' experience Risk management experience from working in financial services industry * 5+ years demonstrated domain expertise and experience within the relevant product ...
Johnston, RI · On-site
REQUIRED EXPERIENCE * 5+ years' experience Risk management experience from working in financial services industry * 5+ years demonstrated domain expertise and experience within the relevant product ...
Johnston, RI · On-site
REQUIRED EXPERIENCE * 5+ years' experience Risk management experience from working in financial services industry * 5+ years demonstrated domain expertise and experience within the relevant product ...
Johnston, RI · Hybrid
$83K - $111K/yr
Required Qualifications * 3-5 years of financial services experience, with focus on Risk and technology. * Ability to be equally effective in performance of rote duties as well as high-touch ...
Johnston, RI · Hybrid
$83K - $111K/yr
Required Qualifications * 3-5 years of financial services experience, with focus on Risk and technology. * Ability to be equally effective in performance of rote duties as well as high-touch ...
Smithfield, RI · On-site
This includes conducting tactical activities to ensure the Business is assessing the inherent risk ... related financial activities and the rules and regulations of numerous self-regulatory ...
New
Smithfield, RI · On-site
This includes conducting tactical activities to ensure the Business is assessing the inherent risk ... related financial activities and the rules and regulations of numerous self-regulatory ...
New
Johnston, RI · Hybrid
$83K - $111K/yr
Required Qualifications * 3-5 years of financial services experience, with focus on Risk and technology. * Ability to be equally effective in performance of rote duties as well as high-touch ...
Johnston, RI · Hybrid
$83K - $111K/yr
Required Qualifications * 3-5 years of financial services experience, with focus on Risk and technology. * Ability to be equally effective in performance of rote duties as well as high-touch ...
... financial services, preferably in cybersecurity, technology risk, or operational risk. * Strong experience with cloud technologies (IaaS, PaaS, SaaS), DevSecOps, web applications, operating systems ...
... financial services, preferably in cybersecurity, technology risk, or operational risk. * Strong experience with cloud technologies (IaaS, PaaS, SaaS), DevSecOps, web applications, operating systems ...
The Third-Party Assessment function adds value by providing specific business function assurance on vendors, in relation to customer, financial or reputational risk and bringing momentum to action ...
The Third-Party Assessment function adds value by providing specific business function assurance on vendors, in relation to customer, financial or reputational risk and bringing momentum to action ...
Barrington, RI · On-site +1
Underwriting team members provide medical and financial risk assessment on applications for individual life insurance applications. The primary responsibility of the Director, Life Underwriting is to ...
New
Barrington, RI · On-site +1
Underwriting team members provide medical and financial risk assessment on applications for individual life insurance applications. The primary responsibility of the Director, Life Underwriting is to ...
New
Johnston, RI · On-site
The Third-Party Assessment function adds value by providing specific business function assurance on vendors, in relation to customer, financial or reputational risk and bringing momentum to action ...
Johnston, RI · On-site
The Third-Party Assessment function adds value by providing specific business function assurance on vendors, in relation to customer, financial or reputational risk and bringing momentum to action ...
$110K - $222K/yr
Preferred at least 10+ years of industry experience in roles such as Fraud Management or Operational Risk Management roles with a Fraud / Risk Management component at complex financial services ...
$110K - $222K/yr
Preferred at least 10+ years of industry experience in roles such as Fraud Management or Operational Risk Management roles with a Fraud / Risk Management component at complex financial services ...
The Third-Party Assessment function adds value by providing specific business function assurance on vendors, in relation to customer, financial or reputational risk and bringing momentum to action ...
The Third-Party Assessment function adds value by providing specific business function assurance on vendors, in relation to customer, financial or reputational risk and bringing momentum to action ...
The Third-Party Assessment function adds value by providing specific business function assurance on vendors, in relation to customer, financial or reputational risk and bringing momentum to action ...
The Third-Party Assessment function adds value by providing specific business function assurance on vendors, in relation to customer, financial or reputational risk and bringing momentum to action ...
| Aspect | Financial Risk | Credit Analyst |
|---|---|---|
| Primary Focus | Identifying and managing financial risks across investments, markets, and corporate strategies | Assessing creditworthiness of individuals or companies to determine loan eligibility |
| Required Credentials | Finance, risk management certifications, often a degree in finance or economics | Finance, accounting, or economics degree; certifications like CFA or credit-specific training |
| Work Environment | Financial institutions, investment firms, corporate risk departments | Banks, lending institutions, credit agencies |
| Industry Usage | Widely used in banking, investment, and corporate sectors for risk mitigation | Primarily in banking and lending sectors for credit assessment |
Financial Risk professionals focus on identifying and mitigating potential financial losses across various areas, while Credit Analysts specialize in evaluating the creditworthiness of borrowers to facilitate lending decisions. Both roles require finance-related credentials and are integral to financial institutions, but their core responsibilities differ significantly.
Description
ETS Risk Analyst II - Monitoring and Testing
Role Overview
The Enterprise Technology & Security (ETS) Risk Analyst II plays a critical role in the identification, assessment, and mitigation of technology and security related risks across the organization. Working within a first-line risk team, this role partners directly with Risk Managers to execute control monitoring and testing that aligns with the bank's risk appetite framework, regulatory expectations, and industry standards including Cybersecurity Risk Institute (CRI) Profile, NIST 800-53, and NIST Cybersecurity Framework. You will independently assess control effectiveness, monitor key risk indicators, and analyze results to identify trends, control gaps, and areas for improvement. This role requires strong professional judgment, high quality documentation, and timely communication to support a resilient control environment and informed risk decisions. This is an excellent opportunity for an early-career risk professional looking to build foundational expertise in technology and security risk within a growing regulated financial institution.
Responsibilities
Partner with Risk Managers to execute the control monitoring and testing program across multiple complex technology and cybersecurity processes.
Independently perform control design and operating effectiveness testing in accordance with established methodologies and timelines.
Assess material controls and determine whether enhanced controls are effective to support issue validation and closure.
Document testing results clearly and accurately in the system of record and supporting tools, producing audit ready documentation suitable for QA, Internal Audit, and Regulatory review.
Support the analysis of monitoring and testing results to identify themes, trends, root causes, and emerging issues.
Escalate control deficiencies, emerging risks, and potential delays in a timely and professional manner.
Support issue management activities, including testing to validate remediation and support issue closure
Participate in Risk and Control Self Assessments (RCSAs), including creation and validation of process maps that reflect key processes, risks, and controls
Maintain awareness of emerging risks and evolving technologies (e.g., artificial intelligence, automation, and data driven processes) and assess their impact on control design, effectiveness, and monitoring approaches.
Contribute to the continuous monitoring program by leveraging automated testing, key control metrics, and trend analysis to improve risk insight and control coverage.
Identify, evaluate, and prioritize opportunities to enhance control testing through automation, data analytics, and improved key control metrics, partnering with stakeholders to support implementation.
Build effective working relationships with business and technology stakeholders to stay informed of process changes and emerging risks.
Develop understanding of internal policies, infrastructure processes, and evolving industry risk trends.
Proactively pursue ongoing professional development, including relevant certifications, industry training, etc. to maintain current knowledge in a rapidly evolving field.
Experience & Skills
Required:
3-5 years of experience in IT, information security, risk management, or internal audit.
Foundational understanding of technology risk concepts, control frameworks (NIST 800-53, NIST CSF, CRI Profile, COBIT, or ITIL), and risk management lifecycle.
Familiarity with GRC platforms (e.g., Archer) and IT service management tools (e.g., ServiceNow, Jira).
Ability to analyze and interpret data from security and operational monitoring tools.
Strong written and verbal communication skills, with the ability to translate technical risk findings into clear documentation.
Demonstrated ability to manage multiple priorities in a fast-paced environment with attention to detail.
Proficiency in Microsoft Office Suite (Excel, Word, PowerPoint).
Preferred:
Experience in a regulated financial services or banking environment.
Familiarity with cloud environments (AWS, Azure) or infrastructure risk concepts.
Exposure to audit response, regulatory exam support, or corrective action tracking.
Education
Bachelor's degree in Information Technology, Cybersecurity, Business, or a related field required.
AWS Cloud Practitioner or Microsoft Azure Fundamentals
CISA (Certified Information Systems Auditor)
CRISC (Certified in Risk and Information Systems Control)
Hours & Work Schedule
Some job boards have started using jobseeker-reported data to estimate salary ranges for roles. If you apply and qualify for this role, a recruiter will discuss accurate pay guidance.
Equal Employment Opportunity
Citizens, its parent, subsidiaries, and related companies (Citizens) provide equal employment and advancement opportunities to all colleagues and applicants for employment without regard to age, ancestry, color, citizenship, physical or mental disability, perceived disability or history or record of a disability, ethnicity, gender, gender identity or expression, genetic information, genetic characteristic, marital or domestic partner status, victim of domestic violence, family status/parenthood, medical condition, military or veteran status, national origin, pregnancy/childbirth/lactation, colleague's or a dependent's reproductive health decision making, race, religion, sex, sexual orientation, or any other category protected by federal, state and/or local laws. At Citizens, we are committed to fostering an inclusive culture that enables all colleagues to bring their best selves to work every day and everyone is expected to be treated with respect and professionalism. Employment decisions are based solely on merit, qualifications, performance and capability.
Education:Why Work for UsEmployment Type: 1ST