SeniorRisk&ComplianceAnalyst

RESPONSIBILITIES: - - Lead cyber and technology risk assessments across systems, cloud environments, business processes, and major initiatives, evaluating threats, vulnerabilities, control effectiveness, and residual risk. - Maintain and operate the enterprise cyber risk register, including drafting risk statements, tracking mitigation plans, and supporting governance and reporting processes. - Translate technical findings, architectural concerns, and control gaps into clear business risk scenarios that support prioritization and decision-making. - Support and help mature quantitative cyber risk analysis approaches such as FAIR to improve how risk is measured and communicated. - Prepare materials and analysis to support the Cyber Risk Committee and executive risk reporting. - Partner with Security Architecture to assess risk in system designs, cloud architecture, identity models, data flows, and platform changes. - Collaborate with Security Engineering, Product Security, Legal, IT, and business teams to evaluate new initiatives, technology changes, artificial intelligence use cases, and third-party integrations through a risk lens. - Conduct risk assessments for emerging technologies including artificial intelligence and machine learning systems, evaluating data usage, model behavior, external dependencies, and security implications. - Evaluate risks associated with the use of artificial intelligence technologies, including model behavior, data exposure, prompt or input manipulation, and external model dependencies. - Develop dashboards and reporting that provide leadership with visibility into key cybersecurity risks and trends. - Track mitigation progress and risk treatment activities to ensure accountability and clear documentation of outcomes. - Contribute to the continued development of cyber risk management processes, methodologies, and governance practices across the GRC program. QUALIFICATIONS: - - 6+ years of experience in cybersecurity risk management, inf