Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team to evaluate and enhance cybersecurity controls across the firm.
- Company: Goldman Sachs is a leading global investment banking and securities firm with a commitment to diversity.
- Benefits: Enjoy professional growth opportunities, wellness programs, and a supportive work culture.
- Why this job: Be part of a progressive team that shapes technology risk management and enhances business resilience.
- Qualifications: Relevant degree and 1-3 years in risk management or IT audits required.
- Other info: Work collaboratively in a global environment and gain insights into cutting-edge technology.
The predicted salary is between 36000 - 60000 £ per year.
WHO WE ARE
Led by the Chief Information Security Officer (CISO), Technology Risk is responsible for governing and overseeing the information security and cybersecurity risk and controls landscape for the Firm. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring information security & cybersecurity risk through intelligent tooling, and designing and driving implementation of information security & cybersecurity controls. The team has global presence across the Americas, APAC, India and EMEA.
Within Technology Risk, Digital and Risk Assurance is the execution arm, responsible for analyzing, triaging, and reporting on newly discovered risks, supporting Engineering Divisions in risk management, supporting our external audits from a technology standpoint, overseeing internal assessments as well as ensuring the integrity of the environment.
Your impact will be significant as you join the Digital Risk Office Assurance team, which is primarily responsible for supporting the Engineering Monitoring & Testing program. As part of the first line of defense, the Engineering Monitoring & Testing program was established to independently evaluate the design and performance of key controls. Our team partners with engineering teams across the firm to help them understand what they can do to reduce and manage their risk and make their systems more resilient.
HOW YOU WILL FULFILL YOUR POTENTIAL
Your responsibilities will include governance aspects of Controls Assurance programs, and issue management. You will work with all pillars within Technology Risk to understand the risks being identified and their potential impact. This will be an opportunity to build broad knowledge of the business and technologies across the entire firm and work with engineers at all levels in the organization.
JOB RESPONSIBILITIES
- Partner with business units to perform control evaluation, monitoring and testing efforts of key internal controls to identify control gaps as well as opportunities for effectiveness and efficiency improvements. These assessments will include coverage for other regulatory programs including SOX and RCSA.
- Evaluate the effectiveness of existing key controls, identify gaps, and recommend improvements to mitigate risks and enhance the firm's risk posture.
- Collaborate with cross functional teams and stakeholders to evaluate and validate the design, implementation, and performance of key engineering controls.
BASIC QUALIFICATIONS & SKILLS
- Relevant bachelor's degree (such as computer science, information technology, management information systems or related fields).
- 1-3 years' experience in Risk Management, Risk Reporting, Audits, Control Assessment and Evaluation, Governance, etc.
- Basic understanding of IT audit methodologies and control frameworks of IT platforms, processes, systems and controls, including areas such as logical access, physical security and change management controls at an infrastructure and application level.
- Familiarity with risk management framework, industry standards, financial industry regulatory requirements.
- Experience with any data analysis/visualization tool such as Excel, Tableau, Power BI, R, SQL, etc.
- Basic understanding of risk management principles or Sarbanes-Oxley Section 404, SOC 1 and SOC 2 reporting.
- Familiarity with general and cyber security related Information technology controls design and reviews.
- Ability to work effectively in a global team environment and drive results in a matrixed organization.
- Results oriented, strong sense of ownership and eagerness to learn.
- Strong sense of ownership and accountability.
- Clear communication skills, both verbally and in writing.
PREFERRED QUALIFICATIONS
- Understanding of information technology audit and control frameworks such as NIST COBIT and ITIL.
ABOUT GOLDMAN SACHS
At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs.
Contact Detail:
Goldman Sachs, Inc. Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Engineering - Tech Risk DRA - Monitoring & Testing - Analyst - London | London, UK
✨Tip Number 1
Familiarise yourself with the specific risk management frameworks mentioned in the job description, such as NIST, COBIT, and ITIL. Understanding these frameworks will not only help you in interviews but also demonstrate your commitment to the role.
✨Tip Number 2
Network with professionals already working in technology risk or related fields. Attend industry events or webinars to connect with potential colleagues and learn more about the current trends and challenges in the sector.
✨Tip Number 3
Brush up on your data analysis skills, particularly with tools like Excel, Tableau, or SQL. Being able to showcase your ability to analyse and visualise data effectively can set you apart from other candidates.
✨Tip Number 4
Prepare to discuss real-world examples of how you've identified and mitigated risks in previous roles or projects. This practical experience will resonate well with interviewers and highlight your problem-solving abilities.
We think you need these skills to ace Engineering - Tech Risk DRA - Monitoring & Testing - Analyst - London | London, UK
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights relevant experience in risk management, control assessment, and IT audit methodologies. Use keywords from the job description to demonstrate your fit for the role.
Craft a Strong Cover Letter: In your cover letter, express your enthusiasm for the position and the company. Discuss how your background aligns with the responsibilities of the role, particularly in governance and controls assurance.
Showcase Technical Skills: Emphasise your familiarity with data analysis tools like Excel or SQL, as well as your understanding of risk management frameworks. Provide specific examples of how you've used these skills in previous roles.
Highlight Communication Abilities: Since clear communication is essential for this role, include examples of how you've effectively communicated complex information in past experiences. This could be through reports, presentations, or team collaborations.
How to prepare for a job interview at Goldman Sachs, Inc.
✨Understand the Role
Make sure you have a solid grasp of what the Engineering - Tech Risk DRA role entails. Familiarise yourself with the responsibilities, especially around control evaluation and risk management. This will help you articulate how your skills align with the job.
✨Showcase Relevant Experience
Prepare to discuss your previous experience in risk management, audits, or control assessments. Be ready to provide specific examples of how you've identified risks and implemented improvements in past roles.
✨Familiarise with Frameworks
Brush up on IT audit methodologies and control frameworks like NIST, COBIT, and ITIL. Being able to discuss these frameworks confidently will demonstrate your knowledge and readiness for the role.
✨Ask Insightful Questions
Prepare thoughtful questions about the team’s current projects or challenges they face. This shows your genuine interest in the position and helps you understand how you can contribute effectively.
