Job Description:
• Responsible for leading the identification, assessment, and proactive management of technology risk across the enterprise.
• Drives a forward-looking, data-driven risk management approach across cloud, cybersecurity, AI, and third-party ecosystems.
• Leads execution of the Technology Risk Management framework, aligned to industry standards.
• Oversees enterprise-wide identification and assessment of technology risks across various domains.
• Delivers data-driven risk insights and reporting to senior leadership.
• Drives continuous improvement of control maturity to meet regulatory expectations.
• Oversees end-to-end issue management lifecycle, ensuring systemic fixes.
• Leads adoption of automation and tooling to enhance risk identification and reporting.
• Establishes governance and risk oversight for AI and emerging technologies.
Requirements:
• Minimum 10 years of experience in Technology Risk, Cybersecurity, IT Audit or related disciplines within financial services or regulated environments.
• Proven experience operating in or alongside first line technology functions, with strong business partnership orientation.
• Demonstrated success in evolving risk programs to strategic, insight-driven functions.
• Deep understanding of technology risk domains, including: Cloud and infrastructure risk, Cybersecurity and data protection, Third-party/vendor risk, and AI/emerging technology risk.
• Strong knowledge of regulatory frameworks (FFIEC, NIST CSF, SOX ITGC).
• Ability to translate complex technical risks into clear, concise executive-level reporting.
• Strong judgement, with the ability to balance risk management with business enablement.
• Proven ability to lead and develop high-performing teams.
• Strong stakeholder management skills, with experience engaging senior leadership and regulators.
Benefits:
• health, dental, vision, life insurance
• paid time-off benefits
• flexible spending account
• 401(k) with employer match
• ESPP