SonicJobs Logo
Left arrow iconBack to search
  1. Home
  2. 02362, Plymouth, MA
  3. Senior IT Risk Analyst

Senior IT Risk Analyst

Rockland Trust
Posted a month ago, valid for 15 days
Location

Plymouth, MA 02362, US

Salary

$41.67 - $50 per hour

info
Contract type

Full Time

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Sonic Summary

info
  • Rockland Trust is hiring a Senior IT Risk Analyst to enhance its First Line of Defense IT Risk Management Program, with a salary range of $100,000 to $120,000 per year.
  • This hybrid role requires working three days a week in the Plymouth office and offers the flexibility to work remotely for the remaining days.
  • Candidates must have a minimum of 5 years of professional experience in IT risk management or related fields, along with a bachelor’s degree in a relevant discipline.
  • Key responsibilities include leading IT risk assessments, evaluating control effectiveness, and mentoring junior team members while ensuring compliance with regulatory requirements.
  • Preferred qualifications include professional certifications such as CISA or CISSP and experience in the financial services industry.

Senior IT Risk Analyst (First Line of Defense)

Rockland Trust is seeking a Senior IT Risk Analyst to advance the Bank’s First Line of Defense IT Risk Management Program. 

This is a hybrid role, 3 days Mon-Wed in the Plymouth office then remaining days working remotely. 

This senior professional contributes to the identification, assessment, and mitigation of technology risks, providing informed recommendations to IT and business stakeholders. The role emphasizes accountability for high-quality risk assessments, strong judgment in interpreting results, and proactive contributions to process improvement and risk awareness across the organization.

 

This role serves as a resource and mentor to less-experienced colleagues, supporting development and consistent execution of sound risk management practices. The Senior IT Risk Analyst works closely with stakeholders across IT and business areas to ensure risks are adequately identified and managed, controls are designed and operating effectively, and necessary remediation activities are completed in a timely manner.

 

Key Responsibilities

IT Risk Assessment & Control Evaluation

  • Lead comprehensive IT risk assessments across applications, infrastructure, and IT processes, including inherent and residual risk evaluations.
  • Evaluate the design and operating effectiveness of controls, ensuring assessments are evidence-based and aligned with internal methodologies and regulatory requirements.
  • Conduct detailed walkthroughs and interviews with IT and business stakeholders to validate processes and risks, identify control gaps, and obtain and evaluate appropriate documentation and evidence.
  • Analyze risk and control data to identify trends, recurring issues, or systemic weaknesses to translate findings into actionable insights.
  • Maintain sufficient documentation of assessments performed, tests conducted, and issues noted in the Bank’s systems of record, ensuring clarity, completeness, and alignment with Bank and regulatory methodology and requirements.

Risk Communication & Issue Resolution

  • Communicate findings, risk implications, control gaps, or other such issues to stakeholders in a professional, credible, and constructive manner.
  • Support, advise, and challenge remediation plans to ensure proposed actions effectively mitigate identified risks.
  • Coordinate responses to audit, regulatory, or other internal inquiries, ensuring timely and accurate resolution of outstanding issues.
  • Track and monitor remediation efforts and key milestones to facilitate risk closure, proactively identifying potential bottlenecks or emerging risks.

Program Support & Mentorship

  • Provide guidance and informal coaching to junior team members, reviewing work products to ensure adherence to risk assessment standards and quality expectations.
  • Contribute to continuous improvement initiatives for IT risk assessment methodologies, reporting practices, and other opportunities.
  • Serve as a trusted resource for IT and business teams on risk-related topics, fostering a risk-aware culture and promoting best practices.
  • Stay current with regulatory guidance, industry standards, and emerging risks to support program maturity and long-term risk management effectiveness.

 

Required Qualifications

  • Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, Accounting, Finance, or a related field with equitable risk and controls experience.
  • Minimum of 5 years of professional experience in IT risk management, technology audit, or control testing, including execution of risk assessments, control evaluation, and reporting.
  • Must be able to work the hybrid schedule:  3 days Mon-Wed in the Plymouth office then remaining days work remotely. 
  • Experience with GRC platforms (e.g., Archer) and risk reporting tools (e.g., PowerBI dashboards).
  • Familiarity with risk and control frameworks such as NIST, CIS, COBIT, FFIEC, or ISO.
  • Demonstrated ability to effectively communicate, both written and verbally, complex IT risk and control concepts effectively to technical and non-technical stakeholders.
  • Experience navigating highly regulated or matrixed environments, interacting with audit, compliance, and/ or regulatory stakeholders.
  • Strong analytical skills, attention to detail, and ability to make independent, informed decisions.
  • Proven ability to influence outcomes and drive follow-through on risk identification and mitigation activities.

 

Highly preferred:

  • Professional certifications: CISA, CRISC, CISM, CISSP, or equivalent.
  • Financial services industry experience.

 



Learn more about this Employer on their Career Site

Apply now in a few quick clicks

By applying, a Sonicjobs account will be created for you. Sonicjobs's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Logo
SonicJobs
Your next career move. Sorted.
Search jobsbackground image

Contact us

© 2017 - 2026 SonicJobs Inc. All rights reserved

Terms & Conditions | Privacy Policy | Browse Jobs