Share this Job

Senior IT Risk & Security Analyst

Apply now »

Date Posted: Jun 21, 2022

Location(s): Cary, NC, US, 27513

Company: MetLife

Location: Cary, NC (hybrid) 

Job Description:
The IT Risk & Security Analyst will coordinator work with various groups across the IT organization and serve as a facilitator to enable timely completion of audits performed by internal and external auditors. The IT Risk & Security Analyst works with Internal and external auditors and process / control owners. This person will be the point person in key audit related activities such as audit planning, communication of the controls and audit objectives, schedule and attend meetings, track evidence requests and remediation activities to support various audit related activities. The IT Risk & Security Analyst will be responsible for timely and accurate updates to management.

Essential job functions and responsibilities:

  • Support the tracking of audits, schedule audit follow-up, and central storing of audit reports and artefacts.
  • Attend walkthrough, Information Provided by Entity, testing and reporting meetings for various audit engagements
  • Lead metrics-based tracking to measure effectiveness and efficiency of accomplishing various audit objectives
  • Actively work on Process, Risk and Controls framework
  • Work closely with the Archer risk findings team on risk related to audit issues
  • Review and upload audit requests, submission, correspondence, findings and results
  • Perform evidence reviews prior to delivering to auditors
  • Work closely with the project manager and provide regular updates on various audit meetings and sessions
  • Work with the audit issue management team to gather updates on audit issue remediation, assess Management Action Plan, report status of issues

Skills, Education & Experience:

  • A Bachelor’s degree from an accredited college or university with major course work in accounting, finance, IT, business administration or a closely related field.
  • 3-5 years of experience in IT risk and compliance (preferred), internal audit or IT risk advisory with a strong understanding of audit processes and engagements
  • Some experience with IT process, risk and controls framework and IT General Controls (ITGC)
  • Solid understanding of IT auditing procedures and techniques
  • Working knowledge in at least one of the Governance, Risk and Compliance (GRC) tools such as OpenPages (preferred), RSA Archer, RSAM, SAP GRC, RiskConnect, ACL etc.
  • Working knowledge of Sarbanes-Oxley, SSAE18 SOC 1 and SOC2 requirements.
  • Independently plan, organize and direct an audit program under minimal supervision
  • Experience with industry standard Information Technology Control Policies and Standards frameworks including COBIT, NIST and ISO is preferred
  • Excellent interpersonal, verbal, and written communication skills, including experience in making presentations to senior management and technical subject matter experts
  • Ability to conducting training sessions on various IT audit topics
  • Experience with Microsoft based applications such as Excel and SharePoint. Advanced excel skills such as VLOOKUP, Pivot tables and macros, is desirable
  • Ability to work effectively with multiple levels of management and collaborate to improve promote partnership. Establish and maintain effective working relationships with process and control owners


One of more of the following certification is desirable: CISA, CISSP, CISM and CRISC.


At MetLife, we’re leading the global transformation of an industry we’ve long defined. United in purpose, diverse in perspective, we’re dedicated to making a difference in the lives of our customers.




MetLife, through its subsidiaries and affiliates, is one of the world’s leading financial services companies, providing insurance, annuities, employee benefits and asset management to help its individual and institutional customers navigate their changing world. Founded in 1868, MetLife has operations in more than 40 countries and holds leading market positions in the United States, Japan, Latin America, Asia, Europe and the Middle East.


We are one of the largest institutional investors in the U.S. with $642.4 billion of total assets under management as of March 31, 2021. We are ranked #46 on the Fortune 500 list for 2021. In 2020, we were named to the Dow Jones Sustainability Index (DJSI) for the fifth year in a row. DJSI is a global index to track the leading sustainability-driven companies. We are proud to have been named to Fortune magazine's 2021 list of the "World's Most Admired Companies." 


MetLife is committed to building a purpose-driven and inclusive culture that energizes our people. Our employees work every day to help build a more confident future for people around the world.


We want to make it simple for all interested and qualified candidates to apply for employment opportunities with MetLife.  For further information about how to request a reasonable accommodation, please click on the Disability Accommodations link below.


MetLife is a proud Equal Employment Opportunity and Affirmative Action employer dedicated to attracting, retaining, and developing a diverse and inclusive workforce. All qualified applicants will receive consideration for employment at MetLife without regards to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, age, disability, national origin, marital or domestic/civil partnership status, genetic information, citizenship status, uniformed service member or veteran status, or any other characteristic protected by law.


MetLife maintains a drug-free workplace.


Requisition #: 126663


Nearest Major Market: Raleigh