Technology Risk Cover Letter

In response to your job posting for technology risk, I am including this letter and my resume for your review.

Previously, I was responsible for level 2 Support for all IT-Incidents at this location and provide overall IT-Problem Management, based on the transferred Incidents.

Please consider my experience and qualifications for this position:

• Experience in crafting custom proof of concept application exploits using testing tools/frameworks or scripting exploits in Python, Perl, JavaScript, Shell scripting
• Expert knowledge of network, application and operating system security risks
• Experience or trainings in related disciplines computer science, computer security, software development, system design, open source frameworks, encryption schemes
• Superb at conducting qualitative and quantitative risk assessments using common methodologies
• Knowledge of Industry standards, frameworks and best practices, such as NIST SP800-53, COBIT, SOC1, ISO27001 is preferred
• Knowledge of Governance, Risk, and Compliance (GRC) tools, such as Archer or Open Pages is preferred
• Relevant certifications such as CISSP, CISA, are preferred
• CRISC, CISA, CISM, or CISSP accreditation preferred

Please consider me for the technology risk opportunity. I am including my resume that lists my qualifications and experience.

In the previous role, I was responsible for training and support for IT Line on IT control matters and the Banks Operational Risk Framework.

My experience is an excellent fit for the list of requirements in this job:

• Cybersecurity platform ops/reports interpretation for remediation (SW, network, OS)
• Firewall policy evaluation, review, and etc
• Expert level understanding of IT Audit and risk based audit approaches
• Infrastructure technology experience (metrics / process / initiative management)
• Advanced in spreadsheet, reporting and database tools (Excel, Access and other Microsoft Office applications) – This cannot be understated
• Thorough knowledge of technology system processes, reporting functions and methodologies
• Statistical analysis and graphical data display experience
• Advanced metrics design and hands on management / reporting skills

I am excited to be applying for the position of technology risk. Please accept this letter and the attached resume as my interest in this position.

In the previous role, I was responsible for a different view of the world to business partners by translating emerging IT and business trends into meaningful risks and opportunities.

Please consider my experience and qualifications for this position:

• Demonstrate drive and commitment to the creation and delivery of platforms to support risk technology
• Background in product and development lifecycles – across product definition, software development, production implementation and support operations
• Knowledge of Fed, OCC, FDIC regulations and guidelines around Technology and Information Security Risk
• Proven experience in project management, understand complex business processes, risks, and controls
• Working knowledge of best practices in application development, business continuation planning, vendor governance, and information security/data protection
• Understanding of industry standard process and control frameworks
• Experience serving as technology security leader in complex organizations, preferably the Insurance or Financial Services industry
• Strong knowledge of current and emerging technology domain risks, and innovative risk management methods

I would like to submit my application for the technology risk opening. Please accept this letter and the attached resume.

Previously, I was responsible for iT audit services, including Service Organisation Controls audits (SOC1 / CSAE3416 / SSAE16 / ISAE 3403; SOC2; and SOC3), IT internal audits, IT testing for external audits, and IT testing for CEO / CFO requirements, to a broad base of clients.

Please consider my experience and qualifications for this position:

• Business Intelligence Reporting and visualization Tools Knowledge such as Cognos and QlikView/QlikSense preferred
• Big 4 or Technology experience
• Experienced at conducting qualitative and quantitative risk assessments using common methodologies
• Skillful in using MS Word, Excel, PowerPoint, Access, and Project
• Develop and manage relationships with key stakeholders including
• Hold, or be actively working towards, professional Risk, Audit or Security certification such as CISSP, CISM, CISA, CRISC (with exams passed at a minimum)
• Provides technical advice and consultation
• Researches and investigates independently new issues and innovations to maintain currency of technical expertise

I am excited to be applying for the position of technology risk. Please accept this letter and the attached resume as my interest in this position.

In my previous role, I was responsible for technical and best practice guidance on IT Risk to the business and IT taking into account specific business platform and regional complexities and issues.

Please consider my experience and qualifications for this position:

• Will also communicate with external clients / vendors
• Familiarity with hosted and cloud services and related security implications and control approaches, knowledge of AWS preferred
• Practical experience and knowledge of Enterprise applications with service oriented architecture supporting various channels and devices like web, mobile, tablets
• Past experience with internal and external audits including providing and reviewing audit evidence with auditors
• Relevant experience working in the Application Change Control area where application changes are documented, coordinated and implemented
• Strong experience in developing and implementing IT risk assessment frameworks and process mapping (six sigma, lean approach)
• Understanding the systems and payments activities in each BL to identify technology and payments risks and opportunities for improvement
• Build relationships with BL resources to gain insight into risk mitigation activities