Compliance and Risk Management Senior Specialist

Compliance and Risk Management Senior SpecialistLocation: Dearborn, MI (onsite 4 days a week)Duration: ongoing long termInfo Needed: Last 4 of SSN, Education details for all degreesCompliance and Risk Management Senior SpecialistJob Description:The IT Compliance and Information Security Analyst provides oversight of IT compliance and regulatory requirements, IT Security and controls, supports the application teams.This role will ensure applications/digital infrastructure remains secure, resilient, and compliant with regulatory standards, play a key role in Second Line of Defense, supporting IT assessments, and remediate gaps.This position provides support for internal and external audit activities while working closely with business partners to identify, assess, and manage IT related risks.Our Company Technology is on an exciting transformation journey, and you will have a great opportunity to help us transform the Security area as well as Compliance and Regulatory requirementsMajor Responsibilities Include :Partner with Credit Application Teams to Implement and manage IT ControlsProvide Security & Control consulting to Application teamsInternal Audit and Third-Party Audit SupportSupport Credit Internal Controls with IT related controls and deficienciesManagement of Comments identified by the Audit and application teams (development, implementation, and sustainability of Control Improvement Plans)Conduct reviews of identified IT related audit CommentsSupport Application teams with Detailed Risk Assessments and Threat ModelingSupport Vendor Management and Business Owners with due diligence for supplier onboardingSupport Credit Privacy and Compliance Attorneys with IT related regulatory requirementsMonitor GCP-Security Command Center to maintain visibility into the cloud compliance postureSupport Third Party consulting engagementsMaintain accurate JIRA User Stories and BacklogEnsure the organization meets specific financial industry standardsExperience Required:Senior Specialist Exp: 7+ experience in relevant field.Experience Preferred:Finance/BankAdditional Information:Essential skills:Strong knowledge of company and Industry standard IT Controls and best security practicesSolid understanding of corporate policies (Information Security Policy, Finance Manual, Corporate Directives, etc.)Understand risk and implement mitigating controlsKnowledge of risk management principles, including risk assessment, mitigation, and reporting.Strong leadership skills and results orientedContinuous controls process improvement mentalityIntegrity - ability to "stand ground " for correct action and do the right thingDemonstrated ability to take ownership and accountability of all work and responsibilitiesStrong interpersonal and communication skills (written and verbal), with the ability to collaborate effectivelyDrafting and updating security procedures based on evolving threats and trendsExcellent interpersonal, collaborative and team building skillsCapable and comfortable working autonomouslyDesired experience:5+ years of progressive experience in information security, IT risk, Compliance, Audit within a financial services or regulated environment.2+ years of an IT Auditor experiencePreferred candidate will have a proven track record in IT security and controls, demonstrated strong controls mindsetExperience within the Financial Services sector is highly desirable to navigate the complex regulatory requirementsUnderstanding of Large Language Models (LLMs) and identify opportunities to integrate AI into the compliance lifecycle.Industry Certifications a plus (e.g., CISA, CRISC, CISM, CISSP)Required Qualifications:Bachelor's degree in Information Security, Computer Science, Information Systems, Finance, or a related field.