Ensures delivery of timely and high-quality risk management support to the Technology, Digital and Data and Analytics functions within TODD
Drives consistent execution of Risk Management programs, including frameworks, reporting, policies, and standards across Technology, Digital and Data and Analytics teams
Provides guidance and subject matter expertise to partners across TODD in the development of and adherence to IT and data policies and standards
Advises and ensures the effective implementation of controls and risk mitigation strategies across all aspects of Information Technology, including application development, cyber security, enterprise architecture, business resilience and change management
Assists partners across TODD in the development and ongoing management of business process maps, including the identification of key risks, controls and applicable regulations
Collaborates to ensure risks and controls across Technology, Digital and Data & Analytics domains are adequately documented in alignment with Enterprise Risk Management policies and standards
Identifies, monitors, and reports key and emerging operational and compliance risks through review and testing of controls within the IT and Data environment
Advises on strategic plans, prioritization, and the development and implementation of new and changing technology initiatives within TODD to ensure IT risk and control impacts are appropriately considered and evaluated
Conducts routine monitoring and oversight of IT and Data risk across TODD and provides recommendations and challenges as necessary
Develops Key Risk (KRIs) and Key Control (KCIs) Indicators and dashboards to support the monitoring of TODD’s risk profile across all Technology, Digital and Data and Analytics domains
Guides the design and execution of targeted risk assessments and root cause analyses as needed
Ensures a consistent and effective approach to managing risk and control issues through the issue management lifecycle, in alignment with Risk Management policies and standards
Partners with the Data and Analytics Office to ensure effective controls and monitoring are in place for data quality, integrity and privacy and supports the implementation of strong data governance practices
Serves as the primary liaison with the Information Technology Risk Management team (2LOD) within Operational Risk Management and Internal Audit to ensure clear accountability and alignment in risk activities
Provides regulatory exam and audit support for Technology, Digital and Data and Analytics partners
Provides project management of multiple initiatives while adhering to deadlines
Leads and develops a team of high performing and collaborative Technology and Data Risk associates
Builds a trusting and collaborative team culture that is equipped with knowledge and training to partner, advise and effectively manage risks within appetite
Creates a coaching environment that consists of regular informal and formal feedback
Obtains and maintains necessary training to keep current on the discipline of risk management
Solves a range of complex problems and consistently provides solutions
Partners across Technology, Operations, Digital, and Data (TODD) to ensure controls are designed, implemented, and monitored to strengthen risk management, compliance, and cyber security, effectively mitigating risk to levels within the company’s risk appetite
Ensures disciplined change management by evaluating risk and control impacts when designing or implementing changes to processes, systems, products, and/or services

Requirements

Bachelor’s degree in a related field and twelve (12) years of related experience
Or High School Diploma or GED and sixteen (16) years of related experience
Five (5) years of supervisory/management experience
Advanced understanding of risk management functions, including IT audit, cyber security, and compliance
Master’s degree in a related field (preferences)
Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC) or other applicable certifications (preferences)

Benefits

Paid Vacation/Sick Time
401K with Company Match
Medical, Dental and Vision Benefits
Disability Benefits
Health Savings Account
Flexible Spending Account
Life Insurance
Parental Leave
Employee Assistance Program
Associate Volunteer Program

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

risk managementIT auditcyber securitycompliancebusiness process mappingrisk assessmentroot cause analysischange managementdata governanceproject management

Soft Skills

leadershipcollaborationcoachingproblem solvingcommunicationtrust buildingteam culture developmentguidanceadvisory skillsfeedback provision

Certifications

Certified Information Systems Auditor (CISA)Certified Information Systems Security Professional (CISSP)Certified in Risk and Information Systems Control (CRISC)