Business Unit:

Compliance, Risk and Internal Audit

Reporting To:

Director, Operational Risk

Shift:

US/Seattle (Mar-Nov 8:30 pm - 5:30 am IST / Nov-Mar 9:30 pm - 6:30 am IST) (India)

About Russell Investments, Mumbai: 

Russell Investments is a leading outsourced financial partner and global investment solutions firm providing a wide range of investment capabilities to institutional investors, financial intermediaries, and individual investors around the world. Building on an 87-year legacy of continuous innovation to deliver exceptional value to clients, Russell Investments works every day to improve the financial security of its clients. The firm is the world’s sixth-largest investment adviser, with $1 trillion in assets under advisement (as of June 30, 2022) and $288.3 billion in assets under management (as of March 31, 2023) for clients in 30 countries. Headquartered in Seattle, Washington in the United States, Russell Investments has offices around the world, including London, New York, Toronto, Sydney, Tokyo, Shanghai – and has opened a new office in Mumbai, India in June 2023.

Joining the new Mumbai office is an incredible opportunity to work closely with global stakeholders to support the technology and infrastructure that drives the investment and trading processes of a globally recognized asset management firm. Be one of the first to join this new team based out of Goregaon (East) in Mumbai and be a part of creating the foundation and culture for the firm’s growing operations in India. The Mumbai office operates 5-days a week from Monday to Friday with varying shifts to accommodate time zones around the world.

For more information, please visit https://www.russellinvestments.com.

Job Description:

We are seeking a highly skilled and experienced IT Risk Analyst to join our dynamic team. The IT Risk Analyst will be responsible for identifying, assessing, and mitigating IT related risks within our organization. The ideal candidate will have a strong understanding of IT security principles, risk assessment methodologies, and regulatory requirements. This role requires excellent analytical skills, attention to detail, and the ability to communicate complex technical concepts to non-technical stakeholders.

Years of Experience

• 2-6 years proven experience in IT risk management, information security, or a related field.

Qualifications

• Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent work experience. Professional certifications (e.g.,CCSP, SSCP, CISM) preferred.
• Understanding of IT security principles, risk assessment methodologies, and regulatory requirements (e.g., GDPR, PCI DSS, SOX).
• Analytical and problem-solving skills, with the ability to investigate complex systems and processes to identify potential risks and vulnerabilities.
• Strong communication and interpersonal skills, with the ability to effectively communicate technical concepts to non-technical stakeholders.
• Ability to work independently and collaboratively in a fast-paced environment, with a strong attention to detail and accuracy.
• Experience working with cross-functional teams and stakeholders to implement risk management strategies and initiatives.
• Knowledge of emerging IT trends, technologies, and threats, with a commitment to continuous learning and professional development.
• Strong project management skills, with the ability to prioritize tasks, meet deadlines, and manage multiple projects simultaneously.
• Experience with IT risk frameworks (e.g., NIST Cybersecurity Framework, ISO 27001, COBIT).
• Experience with Governance, Risk and Compliance tools (e.g., MetricStream, Service Now, Archer) a plus.

Responsibilities

• Assist and support audit engagements and testing for both internal and external IT audits.
• Perform periodic IT internal testing to ensure all processes and controls are operating effectively and remediate deficiencies if any.
• Manage internal requirements, documentation management, and change management.
• Participate in risk assessments of IT systems, processes, and controls to identify vulnerabilities and potential threats.
• Develop and maintain an understanding of the organization's IT infrastructure, including networks, applications, databases, and hardware.
• Collaborate with IT teams to monitor the effectiveness of existing security controls and recommend enhancements to mitigate identified risks.
• Monitor industry trends, emerging threats, and regulatory changes to ensure the organization's IT security practices remain current and effective.
• Develop and maintain IT risk management policies, standards, procedures, and documentation to support policy compliance efforts and internal audit requirements.
• Participate in the development and implementation of risk mitigation strategies.
• Assist in the preparation of risk assessment reports, findings, and recommendations for senior management and key stakeholders.
• Ensure systems and policies align with Russell Investments Corporate policy.

Core Values

• Strong interpersonal, oral, and written communication and collaboration skills with all levels of management
• Strong organizational skills including the ability to adapt to shifting priorities and meet frequent deadlines,
• Demonstrated proactive approach to problem-solving with strong judgment and decision-making capability.
• Highly resourceful and collaborative team-player, with the ability to also be independently effective and exude initiative and a sense of urgency.
• Exemplifies our customer-focused, action-oriented, results-driven culture.
• Forward looking thinker, who actively seeks opportunities, has a desire for continuous learning, and proposes solutions.
• Ability to act with discretion and maintain complete confidentiality.
• Dedicated to the firm’s values of non-negotiable integrity, valuing our people, exceeding client expectations, and embracing intellectual curiosity and rigor.