GRC Specialist Analyst

Job Level: Analyst

Job Function: Governance & Assurance

Location:

Tralee, IE

Employment Type: Full Time

Requisition ID: 6260

SMBC Group is a top-tier global financial group. Headquartered in Tokyo and with a 400-year history, SMBC Group offers a diverse range of financial services, including banking, leasing, securities, credit cards, and consumer finance. The Group has more than 130 offices and 80,000 employees worldwide in nearly 40 countries. Sumitomo Mitsui Financial Group, Inc. (SMFG) is the holding company of SMBC Group, which is one of the three largest banking groups in Japan. SMFG’s shares trade on the Tokyo, Nagoya, and New York (NYSE: SMFG) stock exchanges.

In the Americas, SMBC Group has a presence in the US, Canada, Ireland, Mexico, Brazil, Chile, Colombia, and Peru. Backed by the capital strength of SMBC Group and the value of its relationships in Asia, the Group offers a range of commercial and investment banking services to its corporate, institutional, and municipal clients. It connects a diverse client base to local markets and the organization’s extensive global network. The Group’s operating companies in the Americas include Sumitomo Mitsui Banking Corp. (SMBC), SMBC Nikko Securities America, Inc., SMBC Capital Markets, Inc., SMBC MANUBANK, JRI America, Inc., SMBC Leasing and Finance, Inc., Banco Sumitomo Mitsui Brasileiro S.A., and Sumitomo Mitsui Finance and Leasing Co., Ltd.

This is a hybrid role, requiring the successful candidate to attend our Tralee office.

Role Description

SMBC is seeking a Governance, Risk and Compliance Specialist who has a strong passion for information security risk management and is interested in building a career at a fast growing and reputable Bank. The GRC Specialist focuses on Cyber Controls Oversight & Risk Evaluation. Individuals in this role should possess an energetic interest in building his/her experience in controls testing and monitoring; controls validation; and/or Cyber risk management. This individual will get invaluable exposure and experience in a field that is growing exponentially. By obtaining the skills that this role offers, this individual will always be marketable and posses a profile that is in high demand within the rapidly growing cyber security industry.

This role will report to the GRC Senior Manager

Role Objectives: Delivery

Assist in the evaluation of internal controls in key risk areas of cyber activities/practices to ensure compliance with internal policies and applicable rules, laws, and regulations.
Contribute to and maintain the Cyber Controls Catalog.
Assist with preparing and reporting the status of cyber controls/risk posture to the CISO and other members of senior level management.
Assist in the definition, creation and management of control procedures, including documentation, testing, validation, and reporting.
Assist with the delivery of appropriate corrective measure designed to strengthen internal controls, operational policies and procedures, and other weaknesses identified during risk and control assessments.
Learn and develop a solid baseline knowledge and understanding of cyber standards, frameworks, policies, and compliance regulations.
Develop and enhance existing processes to ensure efficiency in daily activities.

Qualifications and Skills

0-2 years of experience working in cybersecurity or general IT areas related to risk management, controls assurance, compliance programs.
Familiarity with cybersecurity and information security regulations, industry standards/frameworks (NIST CSF, the CRI Profile and CIS), and internal policies frameworks.
Background knowledge of information technology with a clear understanding of cybersecurity and risk management.
Have strong verbal and written communication skills.
Ability to demonstrate a self-motivated and disciplined approach to learning and working.
Ability to work in a team environment and demonstrate leadership skills when needed.
Possess a highly developed sense of personal accountability and follow-through with an ability to effectively prioritize multiple personal tasks, projects, and goals.

Additional Requirements

SMBC’s employees participate in a hybrid workforce model that provides employees with an opportunity to work from home, as well as, from an SMBC office. SMBC requires that employees live within a reasonable commuting distance of their office location. Prospective candidates will learn more about their specific hybrid work schedule during their interview process.

SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know at accommodations@smbcgroup.com.