Risk Analyst 1

Job Description Summary
Risk Analyst: Analyzes risk to business activities and operations. Identifies areas of potential loss or damage for current and proposed business and financial operations, processes, structures and cyber-risk exposure and quantifies impact. Implements and evaluates compliance with business and cyber risk-reduction policies, processes and standards. May participate in the development and maintenance of disaster recovery and business continuity plans. Supports organizational processes and programs for mitigation of financial risk, including administration of insurance. May support and administer security and health/safety programs in addition to risk management activities.

About the Team/Role
The technology risk analyst - Identity & Access Governance is an entry level operational role within the Information Technology Service Management group at WEX. This role will focus on ensuring monthly, quarterly and annual processes related to user access reviews, password control monitoring, and segregation of duties monitoring are completed.

How you’ll make an impact

• Facilitate a recurring operational process to ensure user access entitlements are attested to by management on a recurring basis.

• Gather necessary application entitlement data to support the access attestation process, transform data into required formats and submit to managers and application owners for certification.

• Identify outdated or no longer necessary entitlements and request removal as necessary.

• Create, and maintain team process documentation to ensure it is current.

• Peer review teams work and identify opportunities for improvement.

• Work to continuously improve the teams processes through automation of manual efforts via scheduling, scripting, macros and other means available.

• Ensure audit requests for evidence related to identity management are completed on time.

• Gather business and technical requirements from IT and business stakeholders related to identity and access management.  Facilitate and lead meetings as necessary.

• Provide guidance to business and technology control and application owners on access management best practices.

• Works on problems of moderate scope where analysis of situations or data requires a review of a variety of factors. 

• Exercises judgment within defined procedures and practices to determine appropriate action. 

• Builds productive internal/external working relationships.

• Strong oral and written communication skills to work effectively with employees of all levels of the organization.

• Must be comfortable facilitating interactions with teams of varied backgrounds in a corporate IT environment.

It would be great if you had already had the opportunity to work with 

• Scripting expertise:  PowerShell, Java, Javascript.

• Experience with: h​AD, LDAP.

Experience you’ll bring

• Highly proficient with Microsoft Excel or Google Sheets

• Understanding of identity and access management concepts and tools.

• Use of IAM tooling such as Sailpoint or Okta.

• High Proficiency in English written and verbal communication.

• Strong analytical and problem solving skills.

• Must be detail oriented.

About the Team/Role

The technology risk analyst - Identity & Access Governance is an entry level operational role within the Information Technology Service Management group at WEX. This role will focus on ensuring monthly, quarterly and annual processes related to user access reviews, password control monitoring, and segregation of duties monitoring are completed.

How you’ll make an impact

• Facilitate a recurring operational process to ensure user access entitlements are attested to by management on a recurring basis.

• Gather necessary application entitlement data to support the access attestation process, transform data into required formats and submit to managers and application owners for certification.

• Identify outdated or no longer necessary entitlements and request removal as necessary.

• Create, and maintain team process documentation to ensure it is current.

• Peer review teams work and identify opportunities for improvement.

• Work to continuously improve the teams processes through automation of manual efforts via scheduling, scripting, macros and other means available.

• Ensure audit requests for evidence related to identity management are completed on time.

• Gather business and technical requirements from IT and business stakeholders related to identity and access management.  Facilitate and lead meetings as necessary.

• Provide guidance to business and technology control and application owners on access management best practices.

• Works on problems of moderate scope where analysis of situations or data requires a review of a variety of factors. 

• Exercises judgment within defined procedures and practices to determine appropriate action. 

• Builds productive internal/external working relationships.

• Strong oral and written communication skills to work effectively with employees of all levels of the organization.

• Must be comfortable facilitating interactions with teams of varied backgrounds in a corporate IT environment.

It would be great if you had already had the opportunity to work with 

• Scripting expertise:  PowerShell, Java, Javascript.

• Experience with: h​AD, LDAP.

Experience you’ll bring

• Highly proficient with Microsoft Excel or Google Sheets

• Understanding of identity and access management concepts and tools.

• Use of IAM tooling such as Sailpoint or Okta.

• High Proficiency in English written and verbal communication.

• Strong analytical and problem solving skills.

• Must be detail oriented.