Senior Technology Risk Analyst

First Hawaiian Bank is currently seeking a Senior Technology Risk Analyst to join the Risk Management Group.

Compensation:

The pay range for the role is $70,000 - $90,000/yr; commensurate with experience.

Work Schedule:

Monday - Friday 8:00AM - 5:00PM (hours may vary)

The ideal candidate will have:

• Bachelor’s degree in finance, accounting, business administration, computer science, cybersecurity, information security, or equivalent work experience required
• 3+ years in Information Technology required
• 2+ years project or program management experience with at least 3 years of managing and leading technical projects
• 2+ years experience in IT compliance, regulatory, audits, cybersecurity or related domains required
• Familiarity with control frameworks such as NIST, COBIT and regulatory requirements for financial institutions (FFIEC) required
• 3+ years in Financial Services industry preferred
• Project Management, project coordination or process improvement experience preferred
• Technical Change Management experience preferred
• Excellent interpersonal skills and ability to interact effectively with management and end-users
• Ability to implement process improvements through automation
• Demonstrated ability to successfully manage projects
• Effective written and verbal communication skills
• Demonstrates strong organizational, analytical and problem-solving skills
• Ability to work both independently and collaboratively across teams
• Demonstrated initiative when identifying needs or issues
• Sound judgement in handling sensitive information and issues
• Ability to manage multiple tasks and deadlines in a dynamic environment

In this role, the Senior Technology Risk Analyst supports the execution and advancement of the Bank's Technology Risk Management Program. This position plays a key role in identifying, assessing, monitoring and reporting on technology risks related to IT system, infrastructure, applications, third-party providers, and business continuity. Working under the guidance of the Technology Risk Manager, the Senior Technology Risk Analyst will engage in cross-functional coordination, risk assessments, risk exception tracking, and reporting to ensure effective risk oversight in alignment with regulatory requirements and organizational objectives.

Key responsibilities include:

• Support the implementation and maintenance of the Technology Risk Management (TRM) framework, including control inventories, taxonomy and risk assessment templates
• Conduct and support periodic technology risk assessments, control testing, and risk mitigation planning across systems and processes
• Develop and maintain risk documentation, including risk registers, procedures, and dashboards for leadership and board reporting
• Monitor compliance with internal policies and external regulatory standards (e.g. NIST, FFIEC, GLBA, SOX)
• Assist with technology-related incident reviews, including root cause analysis and response documentation
• Support third-party risk management activities, including vendor onboarding, performance monitoring (SLAs/KPIs) and high-risk vendor reviews
• Track operational oversight areas such as business continuity planning (BCP), system access reviews, and change management
• Contribute to continuous improvement by identifying process enhancements, supporting policy updates, and fostering collaboration across IT, Legal, Compliance and Audit teams

In this role, the Senior Technology Risk Analyst supports the execution and advancement of the Bank's Technology Risk Management Program. This position plays a key role in identifying, assessing, monitoring and reporting on technology risks related to IT system, infrastructure, applications, third-party providers, and business continuity. Working under the guidance of the Technology Risk Manager, the Senior Technology Risk Analyst will engage in cross-functional coordination, risk assessments, risk exception tracking, and reporting to ensure effective risk oversight in alignment with regulatory requirements and organizational objectives.

Key responsibilities include:

• Support the implementation and maintenance of the Technology Risk Management (TRM) framework, including control inventories, taxonomy and risk assessment templates
• Conduct and support periodic technology risk assessments, control testing, and risk mitigation planning across systems and processes
• Develop and maintain risk documentation, including risk registers, procedures, and dashboards for leadership and board reporting
• Monitor compliance with internal policies and external regulatory standards (e.g. NIST, FFIEC, GLBA, SOX)
• Assist with technology-related incident reviews, including root cause analysis and response documentation
• Support third-party risk management activities, including vendor onboarding, performance monitoring (SLAs/KPIs) and high-risk vendor reviews
• Track operational oversight areas such as business continuity planning (BCP), system access reviews, and change management
• Contribute to continuous improvement by identifying process enhancements, supporting policy updates, and fostering collaboration across IT, Legal, Compliance and Audit teams