Application Risk Manager - W2 Contract - Hybrid Onsite in Kennesaw GA/Chandler AZ/Chicago IL/Richmond VA
Position Summary
Application Management is related to the Application Infrastructure Technology (AIT) for registered applications (AppHq) used within the bank. These applications have a lifecycle and requirements that must be maintained to ensure compliance with Policies and Standards enforced by the bank.
Typically, the Application Manager is accountable for end to end compliance, the roadmap and the technology utilized by the application and in this case is normally the Product Manager. Within EET, there is a centralized team aligned to the product and engineering teams who support and maintain the compliance through the various systems, processes and tollgates related to the operation and roadmap for the AIT’s.
Maintaining this compliance is very much about managing the risk and process for both the day to day operations and any change that requires a tollgate approval. THis role is about monitoring deliverables identified in the Risk Integration and Support Environment (RISE), maintaining accuracy of AppHq, ensuring GIS Security requirements are current, maintaining documentation to support approval processes and raising risk artifacts directly aligned to the AIT.
Day to day activities
· Application Management through maintenance of AppHq. Working with the product managers to ensure AIT is accurately maintained in AppHq
· RISE deliverables managed and closed effectively and on time
· GIS Continuous Monitoring tools reporting and tracking of patching and security requirements associated with the AIT. Impact assessment and analysis of GIS Continuous monitoring metrics that may result in consequence for the AIT
· Documentation coordination and management for the AIT which may be required to support approvals and tollgates. Document creation will be the responsibility of the Product Management and Engineering teams.
· Co-ordination of audit and reg assessments associated with the AITs. Working with Risk Managers and the Technical Risk Officers where specific actions are identified with the AIT’s
· Support development of any related Policies, Standards and Baselines related to the AITs
· Creation of Exception Requests (GIS ERP) and Risk Cases (RISE SIAI) required to support risk process in relation to the AITs. Ownership of risks and mitigation plans for specific AITs
· Weekly report and escalation of AIT’s metrics for RISE and GIS CM
Required Skills
Good understanding of the bank's Application Management policies, standards, processes, and systems
Good understanding of Risk frameworks
Excellent action management and prioritization to ensure deadlines are not missed
Excellent written and verbal communication skills as well as technical, process and reporting skills
Strong analytical skills and use of tools (excel) to report and track vulnerabilities and impact
Process definition, creation and optimization based on AIT requirements
Desired Skills
Nice to have IT security principles and requirements with good understanding of, and measuring possible threats and vulnerabilities. Identifying options for mitigation and controls (technology and processes) to reduce or remove risks Up to date with the latest bank policies, standards and security baselines Working knowledge of IT risks and ability to interact with a broad cross-section of personnel to explain and enforce controls to manage and mitigate identified risks