IT Risk QA Senior Analyst

TL;DR

IT Risk QA Senior Analyst: Supporting the development and execution of QA processes to validate IT risk controls, cybersecurity measures, and regulatory compliance frameworks with an accent on independent control testing and validation aligned to FFIEC, NIST, GLBA, SOX, and PCI-DSS. Focus on walkthroughs, design and operating effectiveness testing, remediation tracking, and root cause analysis for control failures.

Location: Hybrid (must be based out of a local office in Tampa, FL; Columbia, SC; McKinney, TX; Charlotte, NC; Atlanta, GA; Birmingham, AL; Richmond, VA; Denver, CO; or Nashville, TN)

Company

hirify.global is a financial partner focused on steady growth, community roots, and customer-focused solutions.

What you will do

• Perform controls testing (walkthroughs, design, and operating effectiveness) under the Bank’s Enterprise Risk Management (ERM) Management Control Monitoring Program guidelines.
• Support IT control owners with remediation action plans, tracking, reporting, and coordination to ensure timely issue remediation.
• Compile, manage, submit, and socialize monthly, quarterly, and annual reporting (test results, dashboards, and remediation status).
• Conduct root cause analysis on control failures and recommend corrective actions to management.
• Assist with control projects and operational/IT risk initiatives as directed.

Requirements

• Bachelor’s degree in Information Technology, Computer Science, Risk Management, or related field, or equivalent work experience.
• 3+ years of IT governance, IT risk, or IT internal audit experience in banking/financial services.
• High-level understanding of assurance-based activities for IT controls (including job scheduling, access, and change management testing).
• Working knowledge of IT General Controls (ITGCs), application controls, IT platforms, and related technologies.
• Strong proficiency with Microsoft Word, Excel, and PowerPoint.
• Hybrid requirement: be based out of one of the local offices in the listed US locations.

Culture & Benefits

• Hybrid work with a secure, distraction-free remote/hybrid setup when applicable; hybrid roles report to a physical company location as directed by the manager.
• Office environment for in-person work at the assigned local office.
• Emphasis on integrity, trust, lasting customer relationships, and continuous improvement in IT risk management.

Hiring process

• Interviews and evaluation of experience in IT governance/risk/internal audit and control testing.
• Discussion of hybrid office alignment with one of the listed local offices.