Director, Tech Risk Management (Hybrid)

Job Classification:
Technology - Risk & Governance

At Prudential, we believe talent is key to achieving our vision. When you join Prudential, you'll unlock a motivating and impactful career - all while growing your skills and advancing your profession at one of the world's leading financial services institutions!

Prudential's Operational Risk Management (ORM) team supports the execution of Prudential's strategy by ensuring risks are well understood and managed. Joining ORM provides a tremendous opportunity to see across Prudential and work with senior management, Audit, Law, Compliance, and other Risk Management teams to help drive business outcomes.
We are seeking a Director of ORM, Technology Risk Partner who will be responsible for providing expertise, independent oversight and monitoring, and effective challenge supporting the Global Technology and Operations organization with a focus on the Chief Technology Office. We do this by promoting effective execution of the company's ORM framework, providing cross-functional leadership, and through independent analysis and reporting.

This position requires strong critical thinking skills, good judgment, and the ability to turn large amounts of information into intelligence. This position also requires strong communication skills, resourcefulness, and the ability to influence others. A strong candidate will be a strategic thinker who also enjoys getting tactical and digging into and solving challenging problems while working with others.

The ideal candidate will be a seasoned risk manager with expertise in information technology, particularly within financial services. This Director-level role requires a proven track record of leading comprehensive risk management initiatives at a strategic level.

The current employee work arrangement for this position is Hybrid and requires your on-site presence on a reoccurring basis as determined by your business. Your manager will provide additional details relative to the specific number of days you are expected to be on-site.

The Director of Operational Risk Management, Technology Risk Partner, plays a critical role in safeguarding Prudential's technology landscape by overseeing the identification, assessment, and mitigation of technology-related risks across the global enterprise. This position is instrumental in ensuring rigorous compliance with industry standards and regulatory requirements, while fostering a culture of proactive risk management across business functions. Through collaboration with key stakeholders and continuous enhancement of risk management frameworks, the Director drives the organization's ability to anticipate, address, and communicate technology risks effectively, supporting the achievement of strategic objectives and operational resiliency.

What you can expect:

• Risk Identification and Assessment: Identify and assess technology-related risks including (but not limited to) Identity and Access Management, Vulnerability Management, Resilience, etc. to ensure the organization's risk profile is accurately captured.
• Risk Mitigation and Control Implementation: Develop and implement risk mitigation strategies and controls to address identified technology risks, ensuring the organization's risk appetite and tolerance levels are maintained.
• Regulatory Compliance: Work with control partners and the business to ensure compliance with relevant regulatory requirements and industry standards, such as NIST, ISO 27001, and COBIT, by staying current on changes and advising the organization accordingly.
• Risk and Control Self-Assessments (RCSAs): Conduct and review RCSAs to evaluate the effectiveness of existing controls and processes and identify areas for improvement.
• Issue Management and Response: Oversee the management and remediation of technology-related issues, ensuring timely resolution, escalation, and effective communication with stakeholders.
• Risk Reporting and Communication: Prepare and present risk reports to senior management and governance forums, clearly communicating the organization's risk posture and mitigation plans.
• Collaboration and Stakeholder Engagement: Collaborate with cross-functional teams and key stakeholders to ensure alignment on risk management strategies and initiatives.
• Continuous Improvement: Continuously monitor and improve the organization's technology risk management framework, incorporating best practices and lessons learned from past incidents. This also includes monitoring emerging technology risks to help prepare Prudential for the future.

• Extensive Experience in Technology Risk Management: At least 10 years of progressive experience in operational risk management, internal audit, or compliance within the financial services industry focused on information technology.
• In-depth Knowledge of IT Risk Frameworks and Regulations: Familiarity with regulatory requirements and risk management frameworks such as NIST, ISO 27001, and DORA.
• Proven Leadership and Team Collaboration Skills: Demonstrated ability to lead and collaborate with cross-functional teams, providing guidance and support on technology risk management initiatives.
• Strong Analytical and Problem-Solving Abilities: Expertise in analyzing and interpreting risk data, conducting risk assessments, and developing risk mitigation strategies.
• Experience producing Risk and Control Self-Assessments (RCSAs) and managing Issues: Proficiency in conducting RCSAs or process-level assessments, managing and driving remediation of issues, developing key risk indicators, and monitoring risk appetite and tolerance.
• Excellent Communication and Reporting Skills: Ability to prepare and present risk reports to senior management and governance forums, ensuring clear communication of risk posture and mitigation plans.
• Certifications are a plus: CRISC, CISSP, or SANS certifications.

• Market competitive base salaries, with a yearly bonus potential at every level.
• Medical, dental, vision, life insurance, disability insurance, Paid Time Off (PTO), and leave of absences, such as parental and military leave.
• 401(k) plan with company match (up to 4%).
• Company-funded pension plan.
• Wellness Programsincluding up to $1,600 a year for reimbursement of items purchased to support personal wellbeing needs.
• Work/Life Resources to help support topics such as parenting, housing, senior care, finances, pets, legal matters, education, emotional and mental health, and career development.
• Education Benefit to help finance traditional college enrollment toward obtaining an approved degree and many accredited certificate programs.
• Employee Stock Purchase Plan: Shares can be purchased at 85% of the lower of two prices (Beginning or End of the purchase period), after one year of service.