Job Description

Role name: IT Risk Analyst

Location: Toronto - 4 days onsite

Duration: 6+months Contract, Extendable

Expereince Level : 7+yrs

:

The IT Risk Analyst will be responsible for reviewing, documenting, and managing IT risk findings across multiple regions (UK, Toronto, India). This role requires a senior, independent professional with a strong understanding of IT risk standards, audit processes, and the ability to challenge and improve risk management practices within the organization.

Key Responsibilities:

Review and Assess IT Risk Findings:

Evaluate

risk findings

created by application teams, focusing on non-compliance issues (e.g.,

NPIDs, vulnerabilities, DLP

, expired passwords).

Ensure findings are properly documented and milestones for remediation are tracked and addressed.

Play a review role rather than direct remediation; ensure standards are followed and findings are closed appropriately.

Audit Coordination:

Work closely with internal and external auditors, project teams, and operational risk teams to provide evidence and meet audit requirements.

Facilitate audits, including application security, data security,

IAM, PAM, and compliance

(e.g., GDPR, NYDF).

Coordinate quarterly/monthly governance calls to highlight risk issues and progress.

Project Risk Assessment:

Support project risk assessments, including preparing and reviewing documents such as IRP (Integrated Risk Profile), IT Risk Triage, and related artifacts.

Collaborate with PMs, tech leads, and custodians to ensure risk documentation is complete and accurate.

Communication & Stakeholder Management:

Ensure effective communication with application teams, auditors, and other stakeholders regarding risk findings and remediation plans.

Make teams accountable for addressing findings and ensure timely follow-up.

Process Improvement:

Identify gaps in current risk management practices and propose improvements.

Support the development and refresh of risk integration activities, crown jewel reviews, and app lists.

Preferred Qualifications

Prior experience in

banking, finance IT, or wealth management risk

functions.

Familiarity with

Archer, Tableau, and other risk management/reporting

tools.

Experience working with global teams and managing cross-regional risk activities







Regards,


Email : ana@apptoza.com, Phone#: 6788247770