IT Risk Analyst III

Paychex Rochester , NY 14618

Posted Yesterday


Independently conducts routine risk management activities ensuring that Paychex business managers understand the gross and net impact of IT related risk. Identifies existing and recommended compensating controls to mitigate identified risk. The position also requires research and information analysis in support of various activities of the Risk and Compliance department such as preparing responses to prospect, client or partner security questionnaires and conducting vendor security risk assessments and identifying best practice security controls.

  • Independently conducts and presents routine risk assessments to business managers that include risk identification, impact assessment, compensating controls identification, risk mitigation opportunity identification and business recommendations.

  • Approves formal statements in response to prospect, client or partner security inquiries such RFPs, RFIs, partner questionnaires or ad hoc questions. Escalates sensitive response statements for further review when deemed necessary and appropriate.

  • Conducts and manages security risk assessments of current and prospective information hardware, software or service providers to ensure that adequate controls are in place to protect company interests.

  • Works with legal, business and IT management to incorporate and negotiate company security terms and conditions in Contracts.

  • Develops security policy and security standards for consideration by the Security Review Board. Identifies obsolete standards for possible retirement. Manages the policy exception requests process. Provides follow up to ensure review of expiring exception authorizations.

  • Develops security training materials that support the training of IT personnel and security program participants in the application of company security policies, standards and procedures.

  • Manages the monthly reporting for the Security Review Board and coordinates with senior risk analysts for quarterly reporting to the Security Governance Council.

  • Consults with all company internal personnel to provide guidance and understanding of information security principles, standards and industry best practices.


  • Bachelor's Degree in Computer Science, Information Security Management or related discipline - Preferred
  • 4 years of experience in Information Security.
  • 1 year of experience in Performing Information risk management activities.
See if you are a match!

See how well your resume matches up to this job - upload your resume now.… Change Resume
Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Business Systems Analyst II...


Posted 3 days ago

VIEW JOBS 8/13/2018 12:00:00 AM 2018-11-11T00:00 Description Act as a liaison among Stakeholders, Business Unit Owners, Management, IT and Hosting Partner to provide strategic guidance, leadership and coordination for System related efforts, including upgrades and new implementations that enable Paychex Teams to achieve their goals. Ensures the integrity, maintenance and security of the Corporate Applications and makes recommendations in areas that require a high level of technical competency. * Serves as a Primary Liaison with external vendors and internal IT teams to develop and implement system enhancements as well as ensure the Day to Day operations are achieved successfully for all Corporate Applications. Responsible to ensure all system changes are planned and executed according to procedures and comply with Internal/SOX controls. * Manage and provide Project leadership for all major System projects including upgrades and implementations affecting the Corporate Applications. Generally, acts as a Project Lead and may act as a Project Manager to ensure the overall success criteria of the effort are achieved, appropriate resources are included, and all project timelines and milestones are identified. * Provides leadership, guides decisions and makes recommendations relating to workflow, process improvement, business requirements and business practices to streamline business operations and ensure objectives are achieved and in line with the Company?s strategic direction. * Maintains and builds partnerships with various corporate business units and IT departments to ensure efficient functioning of interdepartmental processes. * Evaluates alternatives and explores the adaptation of policies, procedures, standards, techniques, materials and equipment to meet specific needs and provide for the best solutions. * Serves as Subject Matter Expert for team and provides technical and professional mentorship to less senior Analysts in the department. Leads the team in collaboration and enhancing the overall knowledge level. * May facilitate or lead Executive/Sr. Management level presentations to set expectations and provide clear and concise strategic direction for system applications. Requirements * Bachelor's Degree in Business or Computer Science - Preferred * 10+ years of experience in IT System experience or equivalent combination of education and experience. Paychex Rochester NY

IT Risk Analyst III