Risk and Security Analyst

4 days ago


Irvine, United States Capital Group Full time
"I can succeed as a Technology Risk and Security Analyst at Capital Group."

The Technology Risk organization is responsible for the implementation of an effective Technology and Security risk management framework that partners with various lines of defense and stakeholders in the organization. The role is a strategic role within the Chief Information Security Officer (CISO) organization to drive the achievement of our strategic plan for risk management.

This role presents significant intellectual and technical challenges with tremendous opportunity for business impact. Leveraging new and emerging technologies is key to Capital Group realizing its long-term strategic objectives and identifying the risks these new technologies present to Capital Group and finding ways to adequately eliminate or mitigate these risks will be both challenging and immensely rewarding. A key part of the role will be collaborating with other internal risk functions to support evaluations of the effectiveness of Capital's technology policy and controls infrastructure, as well as providing external auditors and regulatory examiners with the materials necessary to conduct their work.

As a Technology Risk and Security Analyst, you will be responsible for contributing to the overall work efforts that identify, assess, track remediation efforts, and manage technology related risks across Capital Group. You will be a key member of the Technology Risk Team, and you will serve as an adviser to business areas on their security and technology risks.

Responsibilities:
  • Governance, Risk and Control Assessments
    • Support oversight of the following risk and control capabilities:
      • IT and security policies, standards, and procedures management
      • Threat identification and risk assessment
      • Metrics and reporting
      • Testing and external assurance oversight
      • Remediation management
  • Support first and second line of defense risk functions and relevant governance committees and other stakeholders as appropriate to develop the technology risk management agenda.
  • Support the design and implementation of best practices and technology risk management frameworks across the Information Technology Group (ITG).
  • Help establish and contribute to the application of Technology risk policies, and governance processes to create lasting solutions for minimizing losses from failed internal processes, inadequate controls, and emerging risks.
  • Assess' risks and drive actions to address the root causes that persistently lead to operational/technology risks losses by challenging both historical and proposed practices.
  • Review control exception requests and ensure risk mitigation or acceptance strategies are appropriate with input from your manager.
  • Provide advisory services to technology and business teams on technology risk and control matters pertaining to projects on firm initiatives and projects.
  • Enable the creation of and distribution of actionable risk metrics and reports.
    • Facilitate collaboration for risk analysis, remediation scoping and prioritization, reporting and engagement with stakeholders to enable oversight and effective risk decision making.
    • Support the design and implement the collection and reporting of key risk and control metrics.
    • Support the technology risk governance committee as well as other risk committees in the organization to establish a shared view of risk.
    • Monitor for emerging risks; recommend and implement mitigation strategies to address those risks.
"I am the person Capital Group is looking for."
  • You have a bachelor's degree in IT, risk and security management, computer science or related field.
  • You have at least 5-7 years of technology risk and security management experience successfully identifying, assessing, and mitigating technology risks in a complex, fast paced environment.
  • You have experience managing technology risk for infrastructure environments at an enterprise scale (e.g., Information Security, Cyber Security, Security Operations, Governance, etc.).
  • You have experience supporting technology risk programs.
  • You have expertise supporting the management of risks associated with agile software engineering practices, use of public cloud environments and big-data analytics.
  • You've worked with internal risk and security teams, auditors, and regulatory examiners.
  • You have superior analytical skills and demonstrated success identifying and solving ambiguous risk related problems.
  • You have proven ability to balance risk mitigation proposals with business objectives and always do what is in the client's best interests.
  • You have experience designing and implementing processes to identify, assess and test key technology and information security controls.
  • You have the ability to operate with a limited level of direct supervision.
  • You can exercise independence of judgement and autonomy.


Southern California Base Salary Range: $103,977-$166,363

San Antonio Base Salary Range: $85,477-$136,763

New York Base Salary Range: $110,221-$176,354

In addition to a highly competitive base salary, per plan guidelines, restrictions and vesting requirements, you also will be eligible for an individual annual performance bonus, plus Capital's annual profitability bonus plus a retirement plan where Capital contributes 15% of your eligible earnings.

You can learn more about our compensation and benefits here.

* Temporary positions in Canada and the United States are excluded from the above mentioned compensation and benefit plans.

We are an equal opportunity employer, which means we comply with all federal, state and local laws that prohibit discrimination when making all decisions about employment. As equal opportunity employers, our policies prohibit unlawful discrimination on the basis of race, religion, color, national origin, ancestry, sex (including gender and gender identity), pregnancy, childbirth and related medical conditions, age, physical or mental disability, medical condition, genetic information, marital status, sexual orientation, citizenship status, AIDS/HIV status, political activities or affiliations, military or veteran status, status as a victim of domestic violence, assault or stalking or any other characteristic protected by federal, state or local law.

  • Irvine, California, United States Capital Group Full time

    Capital Group">We are seeking an experienced Technology Risk and Security Analyst to join our team. As a member of the Chief Information Security Officer (CISO) organization, you will play a strategic role in driving the achievement of our risk management goals.">This is a challenging and rewarding opportunity for someone who wants to make a significant...


  • Irvine, California, United States Capital Group Full time

    Capital Group OverviewCapital Group is a leading investment management company that provides investment advisory services to individual and institutional investors. With a rich history of innovation and excellence, we have built a reputation for delivering exceptional investment performance and providing our clients with the best possible service.We are...


  • Irvine, United States Compu-Vision Consulting Full time

    Key Responsibilities: The UCI Division of Finance and Administration (DFA) needs help with the the implementation of its information security management program. This role will work closely with the Unit Information Security Architect. This role involves understanding the Unit's information security strategy and significantly contributing to the development,...


  • Irvine, California, United States Capital Group Full time

    About Capital GroupCapital Group is a leading investment management company that offers a range of financial products and services. Our team of experts works together to provide innovative solutions for our clients.About the RoleWe are seeking an experienced Risk and Security Consultant to join our Technology Risk organization. This role will be responsible...


  • Irvine, United States Mechanics Bank Full time

    Mechanics Bank is currently searching for a Quantitative Model Risk Analyst to join our team in Irvine, California. Here at Mechanics Bank, we value connection, partnership, long-term relationships, and working together in person. This role is also open to work on-site at our Roseville location.The Quantitative Model Risk Analyst assesses and helps mitigate...


  • Irvine, United States Mechanics Bank Full time

    Mechanics Bank is currently searching for a Quantitative Model Risk Analyst to join our team in Irvine, California. Here at Mechanics Bank, we value connection, partnership, long term relationships and working together in person. This role is also open to work on-site at our Roseville location. The Quantitative Model Risk Analyst assesses and helps mitigate...


  • Irvine, California, United States Capital Group Full time

    Job OverviewCapital Group is seeking a highly skilled Chief Information Security Risk Strategist to join their team. As a key member of the organization, you will play a critical role in developing and implementing effective technology risk management strategies that align with the company's overall objectives.Responsibilities• Conduct comprehensive risk...


  • Irvine, California, United States Capital Group Full time

    Capital Group Overview: We are a global investment manager focused on investing in a broad range of assets, seeking to provide long-term capital growth to our clients.About the Position: As a Risk and Security Analyst level III, you will play a key role in contributing to the overall work efforts that identify, assess, track remediation efforts, and manage...


  • Irvine, United States Capital Group Full time

    "I can succeed as an Enterprise & Operational Risk Senior Analyst at Capital Group." As an Enterprise & Operational Risk Senior Analyst in Global Risk Management (GRM), you will provide valuable risk management expertise related to and in support of CG's core operational business functions through facilitation of both proactive and reactive risk management...


  • Irvine, California, United States Capital Group Full time

    Job Overview">Capital Group is seeking a skilled Technology Risk and Security Analyst to join our team. As a member of the CISO organization, you will play a key role in driving our risk management goals.">The successful candidate will have a bachelor's degree in IT, risk and security management, computer science or a related field, and at least 5-7 years of...


  • Irvine, California, United States Pacific Premier Full time

    Key ResponsibilitiesAs an Enterprise Risk Management Systems Analyst, you will be responsible for reviewing and analyzing current and proposed business operations and aligning them to the Archer platform. You will also be responsible for applying process, automated workflow and functional requirements to application design modifications and ensuring that...


  • Irvine, United States Mechanics Bank Full time

    Security Administration AnalystApply locations Irvine, California time type Full time posted on Posted 2 Days Ago job requisition id R4786Mechanics Bank is currently searching for a Security Administration Analyst to join our team. Here at Mechanics Bank, we value connection, partnership, long term relationships and working together in person. This role will...


  • Irvine, United States Western Digital Capital Full time

    Information Security GRC Specialist - Risk Program LeadFull-timeJob Type (exemption status): Exempt positionSalary Range: 135,660.00-192,100.00Business Function: IT SecurityWork Location: Irvine Office--LOC_WDT_USCA01At Western Digital, our vision is to power global innovation and push the boundaries of technology to make what you thought was once...


  • Irvine, United States Western Digital Full time

    Information Security GRC Specialist - Risk Program LeadWestern Digital is a leader in digital storage solutions compatible with Mac and PC. At Western Digital, our vision is to power global innovation and push the boundaries of technology to make what you thought was once impossible, possible.As an Information Security GRC Specialist, you will be critical in...

  • Cybersecurity Analyst

    3 weeks ago


    Irvine, California, United States Compu-Vision Consulting Full time

    Compu-Vision Consulting is seeking a Cybersecurity Analyst to join our team. In this role, you will be responsible for managing substantial work within the overall security program, demonstrating project management skills, gathering business requirements, creating supporting plans, and coordinating all aspects of your work for on-time delivery or escalating...


  • Irvine, California, United States Capital Group Full time

    Job DescriptionWe are looking for a highly skilled and experienced Risk and Security Analyst level III to join our team as a key member of the Technology Risk Team. The successful candidate will be responsible for contributing to the overall work efforts that identify, assess, track remediation efforts, and manage technology-related risks across Capital...


  • Irvine, California, United States eTeam Full time

    About eTeameTeam was formed in 1999 with the goal of becoming the supplier of choice for clients, employees, and contingent workers. Today, we're one of the fastest-growing companies in New Jersey and ranked as one of the best companies to work for by Staffing Industry Analysts and New Jersey Business. We're also an honored member of Deloitte's Technology...


  • Irvine, United States Mechanics Bank Full time

    Mechanics Bank is currently searching for a Security Administration Analyst to join our team. Here at Mechanics Bank, we value connection, partnership, long term relationships and working together in person. This role will be working on-site at our Irvine Exchange location. In support of the Bank's guidelines for the establishment and modification of...


  • Irvine, California, United States Capital Group Full time

    Key ResponsibilitiesAs a Risk and Security Analyst level III, you will play a critical role in supporting the development and implementation of technology risk management frameworks across Capital Group. Your primary responsibilities will include:* Governance, Risk, and Control Assessments: Conduct thorough assessments to support oversight of IT and security...


  • Irvine, United States Western Digital Full time

    Job DescriptionJob DescriptionCompany DescriptionAt Western Digital, we are on a mission to unlock the potential of data so people, companies and organizations everywhere can create what’s next. To fulfill our vision, we are always on the lookout for potential team members who share our passion for solving problems to empower others.When you join Western...