Common Securitization Solutions

Senior Risk Associate – IT and AI/ML

Common Securitization Solutions

full-time

Posted on:

Origin:  • 🇺🇸 United States

Visit company website
AI Apply
Manual Apply

Salary

💰 $142,000 - $160,500 per year

Job Level

Senior

Tech Stack

AWSAzureCloudCyber SecurityGoogle Cloud Platform

About the role

  • Perform Artificial Intelligence, Machine Learning, Generative AI and Data Related Risk assessments, support the implementation of effective risk management practices to mitigate and/or remediate risk, and provide guidance to technology, operations, information security and other business partners/teams.
  • Provide effective review and challenge to help identify existing and emerging risks, and subsequent risk mitigation strategies, to ensure compliance with the organization’s policies, programs, standards, and related regulatory requirements.
  • Execute completion of comprehensive risk assessments, documentation, risk mitigation guidance, and related reporting for key enterprise initiatives across various technologies, platforms/environments (Cloud, AI, etc.).
  • Monitor and report on AI, GenAi and Data management related key and emerging risks impacting the enterprise, from a second line risk management perspective.
  • Support and oversee AI, GenAI and Data Technology, Operations, Data Governance functions and related environments.
  • Provide Second Line Risk guidance, assessment, and oversight of U.S. FinTech’s information security solutions.
  • Partner with key business stakeholders to identify and assess risks and controls across AI/ML, Business Resiliency, Information Security, and Technology.
  • Develop and improve Risk and Control Matrix (RCM) pursuing U.S. FinTech business objectives, regulatory requirements, NIST, SOC, COBIT and other frameworks.
  • Support quarterly Risk and Control Self-Assessments (RCSAs) and provide guidance related to remediation of inadequate controls through influence.
  • Conduct Assurance reviews of technology/information security and business resiliency related issues, prior to closure; and review/effective challenge to First-Line Management Control tests.
  • Identify tech, information security/management and/or business resiliency risk and control considerations for new business initiatives and/or existing process enhancements.
  • Work directly with front-line management to prioritize remediation and other activities related to effective and timely tech, information security, and business resiliency risk management.
  • Work directly with Internal Audit, Compliance, and Regulatory agencies to foster open communication and transparency.
  • Work with the business to develop plans to mitigate Ai, GenAI, Data technology, risks, and program performance issues.
  • Perform gap and data analysis to address program gaps or deficiencies related to AI, GenAI, Data based on industry standards/best practices, and related regulatory requirements as necessary.

Requirements

  • Bachelor’s degree in information technology, Computer Science, Engineering, or related discipline.
  • Minimum 5 years’ experience in technology, information security, business resiliency and operational risk management.
  • AI/GenAI/Machine fundamental knowledge preferred.
  • Demonstrated analytical skills and experience working in and/or with AI/GenAI, Technology, Data Management, Information Security.
  • Technical understanding of AI, GenAI, Machine learning solutions/technologies/products, Data loss prevention, vulnerability management tools.
  • Demonstrated experience with security best practices and risk management operating in cloud environments such as AWS (required), GCP and Azure (nice to have), and in other 3rd party SAAS platforms.
  • Strong written and verbal communication and negotiation skills.
  • Demonstrated ability to effectively communicate with various levels of the organization.
  • Demonstrated knowledge of and experience working with the NIST, NIST AI Risk Management Framework (RMF), SOC, COBIT 5 and other relevant industry standards and frameworks.
  • Certification(s) relative to technology platforms, industry standards, and environments, and in information security, data management and other risk management disciplines are nice to have (AI/ML, DCAM, AWS, CCAK, CISSP, CISM, CCSP, CRISC, CGEIT).
  • Applicants must be authorized to work in the US without requiring employer sponsorship currently or in the future. U.S. FinTech does not offer H-1B sponsorship for this position.