Senior Technology Risk Analyst - Controls CoE

Job Description:

The Role

Are you passionate about strengthening technology controls and influencing risk outcomes at enterprise scale? Do you thrive in complex environments where your judgment and expertise directly support audit, regulatory, and certification objectives? As a Senior Technology Risk Analyst, you will play a critical role in shaping how Fidelity evaluates and strengthens technology risk management across the organization. This role offers the opportunity to lead impactful testing efforts, collaborate with senior stakeholders, and continuously improve how we manage technology risk.

Core responsibilities include:

• Leading and executing technology risk and controls testing activities supporting audit, regulatory, and certification requirements
• Assessing control design and operating effectiveness across complex, distributed, cloud, and vendor‑hosted environments
• Partnering with technology, risk, and audit teams to identifying, analyzing, and escalating control gaps and emerging risks
• Applying advanced risk judgment and analytical thinking to solving complex control and risk challenges
• Contributing to improving testing methodologies, automation approaches, and documentation quality
• Providing guidance and informal mentorship to less experienced analysts while supporting broader testing workstreams

• Bachelor's degree in computer science, technology, or a related field (Master's degree preferred)
• 5 or more years of experience in technology risk, IT, cybersecurity, cloud, analytics, or audit roles
• Experience performing control assessments and evaluating control maturity across diverse technology environments
• Working knowledge of industry frameworks such as NIST, COBIT, AICPA Trust Services Criteria, ISO 27001, HITRUST, or similar
• Familiarity with cloud security models (AWS, Azure, SaaS, PaaS) and GRC platforms such as Archer (preferred)
• Professional certifications such as CISA, CISSP, CRISC, or CISM (nice to have, not required)