Information Technology (IT) Risk Specialist-Service Provider

About the role

The Federal Reserve Bank of St. Louis is looking for an Information Technology (IT) Risk Specialist to join our team of IT examiners and risk specialists focused on service provider supervision. Under the authority provided in the Bank Service Company Act, the Federal Banking Agencies (Federal Reserve, FDIC, and OCC) jointly supervise technology services provided to financial institutions by certain third-party service providers (SPs). As an IT Risk Specialist, you will be primarily responsible for leading and participating in the supervision of SPs, which includes preparing, reviewing, and executing risk-focused supervisory activities. Through effective oversight of SPs, you will help ensure that operational and cyber resilience concerns that could impact a broad range of financial institutions are identified and remediated in a timely manner. You would work in either St. Louis, Missouri, or Little Rock, Arkansas, and report to a Supervisory Examiner. Specific grade level will be determined based on the candidate's experience. You Will: Plan, participate, and lead supervisory events, which includes target reviews, annual examinations, and continuous monitoring activities, in accordance with Interagency and Reserve Bank guidelines Assess the firm's IT risk management practices related to internal and external audit, board and management oversight, information security, cybersecurity, third-party risk management, development and acquisition, business continuity / disaster recovery, electronic banking, payments, and IT operations Develop high quality and timely work products and reports to support your conclusions Collaborate with the OCC, FDIC, and State Central Points of Contact (CPCs) to develop and execute supervisory strategies of SPs Communicate examination conclusions to the supervised firm's management team, Reserve Bank management, interagency stakeholders, and Board staff Foster strong relationships with the interagency CPC team, Reserve Bank personnel, Board of Governors, supervised firm management, and other federal and state banking regulators Travel overnight up to 20-30% of the time Work a compressed schedule in a hybrid work environment You Have: Bachelor's degree or commensurate industry experience Familiarity with common cybersecurity frameworks, information security practices, network architecture, business continuity / disaster recovery practices, IT risk management, and IT audit 5+ years' experience in a large and complex IT environment, that could include a large financial institution, technology service provider, or an IT audit firm A Certified Information Security Auditor (CISA), Certified Information Systems Security Professional (CISSP), or similar IT-related certification Strong verbal and written communication skills to convey information accurately and concisely to various stakeholders Well-developed analytical and organizational skills and demonstrated ability to manage multiple projects and deadlines US Citizenship or are a lawful permanent resident intending to become a citizen who meets certain other requirements You must live in, or relocate to, the 8th District and work out of our or St. Louis, Missouri, or Little Rock, Arkansas, offices. Relocation incentives are available. This position will work onsite and is not eligible for remote status.