Manager, IT Risk

As part of the Global IT Risk Management team, this role will manage day-to-day activities in support of the Operational Risk Management (ORM) framework, as well as support of non-framework activities. The successful candidates will join a team of professionals who are responsible for:

◦Development and ongoing maintenance of IT risk inventories
◦Facilitation of risk and control self assessments
◦Creation and monitoring of key risk indicators
◦Monitoring and tracking risk events
◦Tracking issues and associated actions plans to closure
◦Reporting and tracking privacy events
◦Identification and analysis of emerging risks
◦Preparing management / executive reporting
◦Providing assurance and guidance over the general activities and concerns of the organization's information technology function including: governance, policy, control design, general operational effectiveness and internal controls.
◦Identifying and evaluating business and technology risks, internal controls which mitigate risks, and related opportunities for internal control improvement.

Joining the IT Risk Management team provides a tremendous opportunity to learn about IT from a business perspective. You will be responsible for resolving challenging issues and for managing multiple issues to completion. This position requires strong organizational skills, resourcefulness, good judgment, persistence and follow through, and the ability to influence and "effectively challenge" others. Typically someone in this position is responsible for a mixture of ongoing day-to-day Risk Management responsibilities, ad hoc requests and issues, and some long-term initiatives.

Position/Program Requirements:

Demonstrates proven success in a role that emphasizes the following: IT Risk Management, Governance and / or Information/Cyber Security.

Demonstrates domain knowledge of IT infrastructure, application development / SDLC and / or information security

Ability to effectively manage multiple competing priorities

Demonstrates an ability to work in a collaborative environment and influence others

Strong project management skillset

Detail oriented and strong communication skills

Industry experience in financial services

•3 years experience in information systems, preferably within a governance, risk, security or compliance role
•BA or BS Management Information Systems, Computer Science, or Engineering.
•Obtained or demonstrates an active pursuit of one or more of the following certifications: Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Auditor (CISA), or other related certification. Project Management Professional (PMP) is a plus.

Back to top