Job Description:

Note:

Fidelity is not providing immigration sponsorship for this position.

The Role

The Enterprise Technology Risk group is seeking a passionate and driven professional to contribute to the Fidelity Brokerage and Wealth Technology Risk team. Specific responsibilities include the identification and monitoring of controls, proactive and new product risk assessments, compliance with existing and emerging regulatory requirements, and supporting internal and external audit activity (e.g., SOC 1) and IT General Controls (ITGC). In addition, there will be opportunities to support ad-hoc strategic projects and requests from our Operational Risk partners.

• Risk Management: Support BU risk management functions, including control testing, risk and control consulting, management reporting, and dedicated risk support
• Risk Assessments: Perform assessments of technology risk and controls for applications, platforms and services
• Audit Support: Assist in the support of internal corporate audit and annual SOC 1, SOC 2, and other external audits by identifying new applications, performing ITGC assessments, and managing exceptions
• Control Monitoring: Establish ongoing cadence to measure and report on the effectiveness of controls

The Expertise and Skills You Bring

• 2 years in Risk, Compliance, Information Security, Information Technology, Controls or Audit roles
• Bachelor’s degree or equivalent experience in Computer Science, Risk Management and Assurance, Cyber Security, or a related field of study
• Technical capabilities across multiple areas (e.g., technology infrastructure and application controls, production support, cybersecurity, access management, network and cloud, resiliency, etc.)
• Knowledge of current software and technology trends leveraged by Technology (e.g., Azure, AWS, Application Lifecycle Mgmt. Software, SaaS)
• Proven record of analyzing and/or supporting risk programs
• Ability to communicate risk programs to external auditors and regulators
• Professional technology risk certification or curiosity about perusing (e.g., CISSP, CISA, CRISC, CISM)
• Demonstrated risk management knowledge and experience, including risk assessment and control evaluation
• Strong problem-solving and critical thinking abilities
• Clear and direct written and oral communication skills
• Ability to build strong relationships and influence partners

The Team

Technology Risk is part of the broader Legal, Risk and Compliance group and partners with Corporate Audit, Enterprise Compliance, and Security to protect the interests of our customers, our employees, and Fidelity’s brand. You will also work closely with the Enterprise Risk and Compliance teams, Enterprise Cybersecurity, BU Information Security Officers (ISOs), and Fidelity external auditors.

Certifications:

Category:

Information Technology:

Most roles at Fidelity are Hybrid, requiring associates to work onsite every other week (all business days, M-F) in a Fidelity office. This does not apply to Remote or fully Onsite roles. Some roles may have unique onsite requirements. Please consult with your recruiter for the specific expectations for this position.

Please be advised that Fidelity’s business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.