- Customer Audit Support: Collaborate with our clients and customers during customer audits. Assist in providing crucial documentation, responding to audit inquiries, and ensuring compliance with customer-specific requirements.
- Respond to Moody's customers to help them complete their vendor risk reviews of Moody's software products and the information security controls that protect customer data.
- Work closely with Moody's sales and legal teams to support the sales process from RFP submission through contract negotiations. Be a trusted expert on information security and controls-related details for Moody's products.
- Engage with teams across Moody's in sales, product management, development, operations, and business continuity to give customers the information they need to complete their risk reviews of Moody's products.
- Create and maintain documentation for customers on Moody's products' information security controls.
- Assist in SOC1/SOC2 Audits: Collaborate with product teams to assist in the preparation, coordination, and execution of SOC1 and SOC2 audits. This includes gathering relevant documentation, conducting internal assessments, and collaborating closely with external auditors.
- Support ISO Audits: Assist in the management of ISO audits by helping to maintain compliance with ISO standards (e.g., ISO Contribute to the development and maintenance of policies, procedures, and controls in alignment with ISO requirements.
- Risk Remediation Monitoring: Monitor and supervise the progress of risk remediation activities. Collaborate with partners to ensure timely and effective remediation of identified risks and issues.
- Documentation and Reporting: Maintain accurate and up-to-date records of audit activities, findings, and remediation efforts. Assist in the preparation of audit reports and documentation for internal and external partners.
- Compliance Monitoring: Support ongoing compliance efforts by monitoring alignment to policies, procedures, and regulatory requirements. Collaborate with teams across the organization to identify areas of improvement and assist in implementing necessary changes. Support efforts to automate and improve monitoring efficiency and coverage.
- Third Party Risk: Participate in buildout of Moody's-wide enhanced third party risk management framework and support Moody's Analytics implementation.
- Training and Awareness: Participate in training sessions related to risk management, compliance, and audit processes. Assist in raising awareness of compliance requirements within the organization.
- Excellent verbal and written communication skills. Ability to handle negotiations and difficult conversations with clients.
- Organized, attentive to detail, able to prioritize and meet deadlines.
- Strong analytical, problem-solving, collaboration, and project management skills.
- Knowledge of IT and cyber controls and frameworks (SOC 1 and SOC 2, C5, NIST, ISO 27001, COBIT).
- 5 to 7 years' experience in IT audit, enterprise risk management, information security, or vendor risk management.
- Familiarity with software development practices and enterprise technology operations, particularly in public cloud environments.
- Proficient with Microsoft Office applications; familiarity with GRC platforms.
- CISA, CRISC, CISSP, PMP certification or equivalent experience.
-
Risk Manager
hace 5 horas
Amazon Support Services Costa Rica SRL - B20 San José, Costa Rica2-5 years of experience working in relevant industries such as law, risk management, investigations, project management, etc. · - Bachelor's degree · - Demonstrated written communication skills - able to write, clearly and succinctly · - Demonstrated experience in making high jud ...
-
Operational Risk Sr Manager
hace 1 día
Citi Heredia, Costa RicaThis role is Operational Risk Execution for Controls: Operations. Key responsibility is to support and manage the oversight of effective execution of Operational Risk Management Framework including op risk reporting, oversight of completeness of loss reporting, Lessons Learned pr ...
-
Risk Management Coordinator En
hace 5 horas
Amzn Support Srvcs Costa Rica Heredia, Costa Rica1+ years of relevant work experience. · - Proven written and verbal communication skills in English. · - Ability and willingness to work weekends. · - Maturity and ability to review explicit adult content from a clinical perspective. This includes nudity, strong language, etc. · ...
-
Emerging Risk Manager
hace 1 día
Amazon Support Services Costa Rica SRL San José, Costa RicaBasic qualifications · - Bachelor's degree · - 2+ years in a risk management or program management role · - Excellent written and verbal communication skills with the ability to present information clearly and concisely · - Proven analytical skills and comfort in deriving insight ...
-
Sr. Lead Risk Analyst, Cyberrisk Management
hace 1 día
Stryker Heredia, Costa Rica**Why join Stryker?**: · Our total rewards package offering includes bonuses, healthcare, insurance benefits, retirement programs, wellness programs, as well as service and performance awards - not to mention various social and recreational activities, all of which are location s ...
-
Associate, Risk Management, Exception Management
hace 5 horas
Pfizer San José, Costa RicaROLE SUMMARY · The Digital Risk Management (DRM) organization works with a global stakeholder community to incorporate legal, regulatory and corporate policy requirements into solutions, services and daily Digital operational activities. DRM strives to make compliance simple and ...
-
Risk Manager Ii, Escalation Management and
hace 1 día
Amzn Support Srvcs Costa Rica San José, Costa Rica3 year of experience in Reported Abuse, Abuse Prevention OR 2 years of experience in investigations, risk, incident or crisis management. · - Demonstrated experience handling escalations. · - Demonstrated experience driving root cause investigations. · - Demonstrated experience w ...
-
Risk Management Program Coordinator
hace 1 día
Viatris San José, Costa RicaUpjohn Export B.V. sucursal Costa Rica · At VIATRIS, we see healthcare not as it is but as it should be. We act courageously and are uniquely positioned to be a source of stability in a world of evolving healthcare needs. · Viatris empowers people worldwide to live healthier at e ...
-
Senior Emerging Risk Manager
hace 1 día
Amazon Support Services Costa Rica SRL San José, Costa RicaBasic qualifications · - Bachelor's degree · - 6+ years in a risk management or program management role · - Excellent written and verbal communication skills with the ability to present information clearly and concisely · - Proven analytical skills and comfort in deriving insight ...
-
Senior Program Manager, Community Risk
hace 1 día
Amazon Support Services Costa Rica SRL San José, Costa Rica5+ years of program or project management experience · - Experience using data and metrics to determine and drive improvements · - Experience owning program strategy, end to end delivery, and communicating results to senior leadership · Have you ever purchased a product on Amazon ...
-
Risk Manager
hace 1 hora
Amazon Support Services Costa Rica SRL - B20 San José, Costa Rica De jornada completaAmazon has built a reputation for excellence with recent examples of being named the #1 most trusted company for customers. To deliver on this reputation for trust the Selling Partner Abuse team is tasked with identifying and preventing abuse for our customers and brand owners wo ...
-
AVP - Operational Risk Manager
hace 1 hora
12542 Citicorp Services India Private Limited Heredia, Costa Rica De jornada completaThe Operational Risk Manager provides full leadership and supervisory responsibility. Provides operational/service leadership and direction to team(s). Applies in-depth disciplinary knowledge through provision of value-added perspectives or advisory services. May contribute to th ...
-
Operational Risk Sr Manager
hace 1 semana
Citigroup Heredia, Costa Rica Paid WorkThe Operational Risk Sr Manager accomplishes results through the management of professional team(s) and department(s). Integrates subject matter and industry expertise within a defined area. Contributes to standards around which others will operate. Requires in-depth understandin ...
-
Technical Product Manager, Integrated Risk Management
hace 1 semana
ServiceNow Heredia, Costa Rica De jornada completa· We're not yesterday's IT department, we're Digital Technology. The world around us keeps changing and so do we. We're redefining what it means to be IT with a mindset centered on transformation, experience, AI-driven automation, innovation, and growth. We're all about deliveri ...
-
Emerging Risk Manager
hace 1 hora
Amazon Support Services Costa Rica SRL San José, Costa Rica De jornada completaAmazon's Perfect Order Experience organization is chartered to protect buyers and sellers so that customers can shop with confidence on We do this by ensuring that customers receive authentic products in the condition and functionality they expect, and by quickly making things r ...
-
Project Manager
hace 1 día
Citi Heredia, Costa RicaThe Senior Risk and Control Officer responsible managing projects and able to analyze data and information of the projects being conducted. The projects this role will manage/lead and have oversight will support the Citi Shared Service (CSS) Organization to review the control env ...
-
Operational Risk Analyst Ii
hace 5 horas
Citi Heredia, Costa RicaThe Operational Risk Analyst II is a developing professional role. Applies specialty area knowledge in monitoring, assessing, analyzing and/or evaluating processes and data. Identifies policy gaps and formulates policies. Interprets data and makes recommendations. Researches and ...
-
Risk Reporting Analyst
hace 5 horas
Citi Heredia, Costa RicaOTRC's Risk Reporting Team is responsible for providing risk and control management reporting services to OTRC and other key stakeholders within Enterprise O&T. Our team has a need for a Metrics Reporting Analyst with good Risk and Controls background, with special focus on produ ...
-
Operational Risk Analyst Ii
hace 5 horas
Citi Heredia, Costa RicaThe Operational Risk Analyst II is a developing professional role. Applies specialty area knowledge in monitoring, assessing, analyzing and/or evaluating processes and data. Identifies policy gaps and formulates policies. Interprets data and makes recommendations. Researches and ...
-
Business Risk Senior Analyst
hace 5 horas
Citi Heredia, Costa RicaThe Third-Party Risk Management (TPRM) organization has an important role in managing and mitigating risks associated with Citi's use of third parties. The TPRM organization owns the end-to-end responsibility, accountability, and authority to ensure proper execution of Third-Part ...
Asst Dir-Risk Management - Heredia, Costa Rica - Moody's
Descripción
Moody's is a developmental culture where we value candidates who are willing to grow. So, if you are excited about this opportunity but don't meet every single requirement, please apply You may be a perfect fit for this role or other open roles.
Moody's is a global integrated risk assessment firm that empowers organizations to make better decisions.
At Moody's, we're taking action. We're hiring diverse talent and providing underrepresented groups with equitable opportunities in their careers. We're educating, empowering and elevating our people, and creating a workplace where each person can be their true selves, reach their full potential and thrive on every level. Learn more about our DE&I initiatives, employee development programs and view our annual DE&I Report at
The Moody's Analytics Risk Management team within the Banking Solutions group leads all aspects of the Banking Operating Unit's risk management framework and implements its risk management activities, with the objectives of safeguarding critical business data, protecting data privacy, addressing information security threats, ensuring legal and regulatory compliance, meeting customer requirements for controls assurance, and promoting risk awareness. The team collaborates with Enterprise Risk Management and Moody's Shared Services to reduce risk to acceptable levels while enabling business priorities.
The Role
We are seeking a highly skilled and experienced Risk Professional to join our organization The Assistant Director – Risk Management role will support our risk management and compliance efforts, with a main focus on assisting in leading SOC1/SOC2/C5, ISO audits, and customer audits of Moody's Analytics software products and services. Also, will support customer inquiries primarily in technology and cyber due diligence assessments and supervising risk remediation activities.
Responsibilities
Qualifications
Moody's is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, protected veteran status, sexual orientation, gender expression, gender identity or any other characteristic protected by law.
Candidates for Moody's Corporation may be asked to disclose securities holdings pursuant to Moody's Policy for Securities Trading and the requirements of the position. Employment is contingent upon compliance with the Policy, including remediation of positions in those holdings as necessary.
For more information on the Securities Trading Program, please refer to the STP Quick Reference guide on ComplianceNet
Please note: STP categories are assigned by the hiring teams and are subject to change over the course of an employee's tenure with Moody's.
