IT Risk, Data Analyst
Fitch Group is a global leader in financial information services with operations in more than 30 countries. Fitch Group is comprised of: Fitch Ratings, a global leader in credit ratings and research; Fitch Solutions, an industry-leading provider of credit risk products and services; and Fitch Learning, a preeminent training and professional development firm. With dual headquarters in London and New York, Fitch Group is owned by Hearst.
Fitch complies with all laws governing employment in each jurisdiction in which it operates, and provides equal opportunity to all applicants and employees. All applications will be considered without regard to race, colour, religion, gender, national origin, age, disability, marital or veteran status, sexual orientation, and other status protected by applicable laws. Department Overview:
The IT Risk Data Analyst will support the Technology Risk department's goal to develop its use of GRC tools as part of creating a cohesive enterprise-wide multi-disciplinary risk management program.
This role will provide leadership and guidance both to the Technology Risk team and to other internal areas within the Risk and Technology departments. This individual will act as the first line of defense and have responsibility of being the key data analyst for the department. Job Responsibilities:
- Lead key projects and overseeing project from a Business Risk perspective with focus on those that have a cross-functional impact (e.g., Risk Register, Controls Library, Incident Management, Metrics)
- Build and implement the documentation standards and content to meet any internal and external needs
- Produce and maintain Data Governance documentation and artifact based on Technology Risk standards and best practices
- Create technical and business requirements for the Risk Data Warehouse (DW) platform and Metrics program. Key point person for creating business metrics and designing the dashboards needed by the clients.
- Draft technical requirements and work with the GRC Risk Officer to consolidate multiple queues for JIRAs that are monitored by Tech Risk
- Play a key role in defining, documenting and implementing key data governance processes (e.g., data quality issue management) and metrics
- Must be a hands-on data analyst and be confident in analyzing datasets, understanding data structures in a RDBMS platform, API documentation, data models. This position is not a developer role but one where you will be comfortable understanding data flows, data dictionaries, and patterns of data flows and processing of data.
- 5+ years banking or financial services with experience in risk and data analysis. Previous experience working in Technology Risk, Information Security or similar Technology departments is required. Must have prior technical analyst positions.
- Solid knowledge of data governance principles and processes
- Hands on knowledge of Database tools, tables and API technical documentation. Knowledge of T-SQL is required. Knowledge of ETL processes and data processing.
- Proven ability to collaborate with technical peers and management
- Adept at creating Technical and Business requirements for data feeds. Must have the ability to effectively explain plans and solutions verbally to both technology and business units.
- Capable of working independently with minimal supervision
- Demonstrate a degree of creativity with strong analytical and problem-solving skills
- Bachelor's degree or equivalent experience and education required
- Working knowledge of software security and GRC tools such as: Tenable, RSA Archer, MetricStream, Thycotic, Proof Point, Crowdstrike Falcon, Device42, JIRA
- Proficient in MS Word, Excel, Visio, and Power Point
- Proficient in creating dashboards with BI tools (e.g., Qlikview, Tableau)
- Hands-on SQL knowledge in an RDBMS environment (SQL Server, Sybase). Oracle RDS or equivalent cloud exposure a plus.
- Knowledge of CIS, NIST 800-53, COBIT, ISO 27001/02, FAIR frameworks
- An understanding of common compliance standards and regulations (e.g., SOX, Dodd-Frank) is required
Fitch is committed to providing global securities markets with objective, timely, independent and forward-looking credit opinions. To protect Fitch's credibility and reputation, our employees must take every precaution to avoid conflicts of interests or any appearance of a conflict of interest. Should you be successful in the recruitment process at Fitch Ratings you will asked to declare any securities holdings and other potential conflicts for you and your Family Members prior to commencing employment. If you, or your Family Members, have any holdings that may conflict with your work responsibilities, they must be sold before beginning work. In certain roles, employees and their Family Members may be limited to investments in diversified mutual funds only.
For more information about this policy, please visit the Code of Ethics and Conduct page .