, maintenance of workpapers, identification of findings, and reporting results to risk committees · Manage day-to-day risk issues... cyber and non-cyber risk controls, evaluate their design and operational effectiveness, determine exposure to risk...