At Popular, we offer a wide variety of services and financial solutions to serve our communities in Puerto Rico, United States and Virgin Islands. As employees, we are dedicated to making our customers dreams come true by offering financial solutions in each stage of their life. Our extensive trajectory demonstrates the resiliency and determination of our employees to innovate, reach for the right solutions and strongly support the communities we serve; therefore, we value their diverse skills, experiences and backgrounds.
Are you ready for a rewarding career?
Over 8,000 people in Puerto Rico, United States and Virgin Islands work at Popular.
Come and join our community
General Description
The Risk Analyst is responsible for assessing the adequacy of the internal controls in the InformationTechnology Division. This role includes self:identifying the weaknesses in the systems and processes and creating an action plan to address the issues, prevent audit findings, and promote best practices. The Risk Analyst can also be involved in the planning and execution of internal assessment procedures and the creation of reports to present to management. This position requires understanding the IT environment and processes and connecting the dots on how different processes impact the overall environment and business processes. Must work within a team to create a solid information technology culture and collaborate with clients to develop and put in place policies and procedures that align with the best practices.
Essential Duties and Responsibilities
:Identify and evaluate risks and controls related to IT Processes and activities.
:Provide guidance and support in developing documentation of risks, control descriptions, and remediation plans.
:Performs general and application control reviews and assessments for simple to complex computer information systems.
:Follows up on audit findings, self:identified issues, and other regulatory findings to ensure that management has taken corrective action(s).
:Follows up on audit findings, self:identified issues, and other regulatory findings to ensure the Internal Audit Unit, Cyber Security Unit, and other entities review and close them.
:Performs miscellaneous job:related duties as assigned.
:Performs information control reviews, including those of system development standards, operating procedures, system security, programming controls, communication controls, backup and disaster recovery, and system maintenance.
:Directs and reviews internal control procedures and security for systems under development, acquired systems, and enhancements to current systems.
:Prepares and presents written and oral reports and other technical information in a pertinent, concise, and accurate manner for distribution to management.
:Consult with and advise administrators, management, and staff on various operational issues related to computerized information systems and general business operations.
:Coordinate and lead meetings as necessary with auditors or examiners and process owners to understand the processes, clarify doubts, and establish action plans with due dates.
:Document memos to conclude control execution using narratives and flowcharts.
:Responsible for document and process evaluation that allows for capability assessment, presentation of data and dashboards, and recommendations to staff about the current state of the IT business.
:Identify trends, patterns, or fluctuations and recommend future actions to the units.
:Able to build partnerships or influence existing partnerships to achieve organizational results.
Minimum Education
Bachelors Degree in Accounting or Computer Science
Experience
:Two (2) to three (3) years of experience in IT audits or IT Risk and procedures
:Knowledge of internal auditing, controls, risk management, and finance and accounting practices and methods.
:Experience with multiple technology domains, including Window