Manager - IT Advisory Services

JOB DESCRIPTION

Why GMF Technology?

GM Financial is set to change the auto finance industry and is leading the path of embarking on tech modernization - we have a startup mindset, and preserve our small company culture, in a public company environment with financial stability and intense growth over a decade-plus history. We are data junkies and trust in data and insights to advance our business objectives. We take our goal of zero emission, zero collision, zero congestion, and zero friction very seriously. We believe as an auto finance market leader we are in the driver's seat to lead us in the GM EV mission to change the world. We are building global platforms, in LATAM, Europe, China, U.S. and Canada- and we are looking to grow our high-performing team. GMF is comprised of over 10,000 team members globally. Join our fintech culture within a Blue-Chip company where we are changing the way we use technology to support our customers, dealers and business.

• Review and approve governance, risk, and compliance frameworks across technology domains.
• Ensure policies and standards are effective, complete, and communicated clearly.
• Manage risk/control assessments and support resolution of cross-domain risk gaps.
• Oversee compliance collaboration, control monitoring, and audit remediation efforts.
• Advise 2+ practice leads and escalate concerns related to the health of GRC practices.
• Lead a team of three direct reports and balance 40% BAU / 60% initiative-based work.
• Deliver communications, briefs, and reports to influence senior leadership action.
• Partner with stakeholders to identify training gaps and improve awareness programs.
• Use metrics and dashboards to benchmark risk, data, and issue management maturity.
• Serve as an escalation point and strategic advisor to AVP and domain leadership.
• Manage multiple initiatives to successful implementation.
• Work through technical details with developers to adopt modern technologies & processes.
• Interpret results and communicate recommendations to management.
• Build partnerships, influence others, overcome barriers, and achieve results.
• Provide consultation and expert advice to management on scope and focus of IT compliance initiatives.
• Interpret data from multiple sources and summarize the information for management reporting.
• Evaluate, improve, and maintain GM Financials controls, policies, and IT Governance documentation.
• Conduct discovery, develop project teams, define objectives and scope, document current and future-state processes, document risks and assumptions and oversee implementation.
• Conduct meetings, communicate individual roles and expectations and serve as a single point of contact for IT initiatives.
• Develop and maintain productive, working relationships with IT, IT Audit, Security vendors and other stakeholders.
• Function as a liaison to internal and external audit personnel and the IT organization.
• Develop, present, and communicate regular status updates for Senior Management
• Evaluate major organizational changes, implementation of modern technologies and agreements with third-party service providers to ensure continual IT compliance with regulatory requirements.
• Manage the development and day-to-day activities of highly skilled team.

• Advanced knowledge of business processes for supported business groups
• Advanced knowledge of security methodologies, policies, standards, and best practices
• Advanced knowledge of cloud computing
• Advanced knowledgeable of best practices in information technology governance and regulatory landscape for financial institutions
• Knowledge of Sarbanes-Oxley (SOX) and other applicable government regulations
• Functional knowledge of Cloud computing, UNIX, Linux, Oracle, iSeries, Cisco, Windows, and general IT best practices
• Knowledge of project management methodologies, application development lifecycles, and organizational change management
• In-depth knowledge of security frameworks (e.g., COBIT, ISO 27000, NIST, FFIEC, etc.)
• Advanced knowledge of information technology systems, infrastructure, and operations
• Professional certifications such as ITIL, CISA, CISSP or other compliance/technology related certifications preferred.
• Advanced understanding of current and emerging technology risks including IT General Controls, SDLC, Cloud, Cyber, Robotics Process Automation, Business Continuity, Disaster Recovery, Data Governance, and Privacy
• Experience in a large and complex business environment
• Proficiency in Computer Assisted Audit Techniques (CAAT)
• Experienced in data query and extraction tools (i.e., Informatica, Rapid SQL, TOAD, Microsoft SQL Management Studio)
• Advanced in technology risk assessments and experience using frameworks such as NIST, PCI, COBIT, CCM, CIS, ISO, FFIEC or equivalent.
• Analytical skills required for interpreting risk metrics and developing dashboards.
• Ability to meet expected delivery dates and the tasks necessary to achieve objectives.
• The ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with abstract and concrete variables.
• Must be an initiative-taker and able to manage the investigations function with minimal supervision.
• Advance experience with data visualization concepts and tools
• Thorough knowledge of IT governance, risk management, compliance frameworks, and GRC processes.
• Ability to influence senior stakeholders and develop strategic plans.

• 10+ years of IT experience
• 3-5 years in a leadership or audit-related role preferred.
• Bachelor's Degree in related field or equivalent work or military experience
• Master's Degree in related field Preferred