Sr. IT and Security Risk Analyst

Company Details Company URL:

https://www.berkleytechnologyservices.com/ Berkley Technology Services (BTS) is the technology engine behind W. R. Berkley Corporation, a Fortune 400 insurance powerhouse. Work in a hybrid role with offices in Des Moines, IA | Wilmington, DE | Irving, TX | Manassas, VA. BTS delivers innovative software solutions, secure system connectivity, and world-class IT operations across the enterprise. We offer a collaborative, forward-thinking culture where tech professionals thrive. Our team enjoys a casual dress code, flexible work options, and a competitive benefits package. Responsibilities We're looking for a proactive and strategic Sr. IT & Security Risk Analyst to join our growing IT Governance, Risk, and Compliance (GRC) team. You'll play a key role in maturing our IT risk program, assist with implementing tools and procedures that improve risk assessment/analysis processes, consult on risk mitigation, help drive process and/or control enhancements, and partner with sr. leadership and teams across the organization to help drive continuous improvement. Lead and assist with efforts to mature the IT risk management program, identify and implement process improvements and explore automation opportunities where valuable. Support the implementation and maturation of cyber risk quantification (CRQ) platforms and related processes. Ensure organizational awareness, acknowledgement, and help facilitate informed decisions regarding identified risks and issues. Conduct IT risk assessments across cloud and on-premise environments (network, infrastructure, applications, systems, and associated IT processes). Collaborate with IT, InfoSec, and business teams to assess and communicate risk posture, mitigation recommendations, and facilitate the issue management lifecycle. Perform top-down and bottom-up assessments of controls, processes, systems, and technologies Help ensure compliance with regulations like NYDFS 500, GDPR, SOX, CCPA, PCI, DORA, and SWIFT. Utilize tools and frameworks such as Archer, ServiceNow, CRQ platform, FAIR, NIST, CIS, ISO, and COBIT. Partner with cross-functional teams to build scalable, sustainable GRC processes and foster a culture of risk awareness. Qualifications Bachelor's degree in Computer Science, Information Technology, Engineering, Cybersecurity, or related field. 3+ years of hands-on experience in IT risk management, cybersecurity, or GRC operations. Strong technical background in networking, systems, or application development. Experience configuring or supporting GRC platforms and risk automation tools. Familiarity with regulatory compliance and risk frameworks (NIST, CIS, ISO, COBIT, UCF). Excellent communication, analytical, and organizational skills with the ability to communicate and collaborate with sr. leadership.

Preferred certifications:

CISA, CISSP, CRISC, CGEIT, or similar. Why Join BTS? Work with a Fortune 400 company Be part of a mission-driven, tech-forwardteam Lead program maturity and innovationin IT risk Access to career growth, training, and certification support The Company is an equal employment opportunity employer. Sponsorship Details Sponsorship not Offered for this Role