AI Risk Program Manager

About The Position

Requirements

• Bachelor’s degree, or equivalent work experience
• Typically 10+ years of applicable experience in risk management, compliance, audit, technology risk, or operational risk

Nice To Haves

• Experience with AI/ML, emerging technologies, or advanced analytics governance
• Familiarity with AI regulatory frameworks and guidance (e.g., NIST AI RMF, SR 11‑7, EU AI Act concepts)
• Experience managing or supporting centralized registries, inventories, or governance tools (e.g., ServiceNow, SharePoint, GRC platforms)
• Experience designing dashboards and developing self-service reporting using Microsoft Power Platform.
• Experience building, implementing, or leveraging artificial intelligence solutions to optimize business processes, improve efficiency, or enhance decision‑making
• Demonstrated experience operating in a First Line of Defense risk role with accountability for execution and outcomes
• Strong understanding of enterprise risk management concepts and the Three Lines of Defense model
• Experience overseeing or supporting AI, emerging technology, or advanced analytics risk within financial services
• Experience partnering closely with 2LOD risk functions while retaining 1FLOD ownership
• Proven ability to lead complex, ambiguous risk topics and influence senior stakeholders
• Experience with risk tooling and workflows (e.g., ServiceNow or similar platforms)
• Applicable professional certifications a plus (e.g., CRCM, CRISC, CISA, PMP)
• Strong analytical, problem-solving, and judgment skills in complex risk scenarios
• Clear, executive-ready written and verbal communication
• Ability to translate technical emerging technology concepts into actionable business risk decisions
• Proven leadership of teams, processes, and cross-functional initiatives
• Strong collaboration skills
• Highly self-directed with the ability to build subject-matter expertise rapidly in emerging risk areas

Responsibilities

• Serve as the central intake point (“front door”) for AI use cases, pilots, proofs of concept (POCs), and material changes across Corporate Functions
• Provide consultative guidance to stakeholders on AI policy requirements, risk considerations, and governance expectations
• Perform intake quality control (QC) to ensure completeness, proper classification, and readiness for downstream risk and governance processes
• Coordinate routing of AI use cases to appropriate partners (CFR Technology Risk, Law Division, ISS, RM&C, etc.)
• Support the end‑end management of the AI Use Case Registry for CFR, ensuring all AI-use cases and technologies are accurately documented and maintained throughout their lifecycle
• Validate completeness and accuracy of key registry attributes, including: AI category, risk tier, and autonomy level, Data classification and system dependencies, Use case purpose, ownership, and lifecycle status
• Coordinate updates to the registry for material changes, enhancements, and decommissioning events
• Contribute to development and refinement of registry standards, data requirements, and governance workflows
• Establish and support risk‑based performance monitoring for AI use cases outside Model Risk Management (MRM) scope, including definition of metrics, thresholds, and escalation triggers to detect performance degradation, unintended outcomes, or emerging risk post‑deployment
• Support execution of AI risk tiering processes, including identification of triggers requiring reassessment (e.g., scope expansion, connector additions, customer impact)
• Translate AI Technology Policy requirements into practical intake standards, guidance, and job aids for business stakeholders
• Partner with cross‑functional risk teams to ensure alignment with Model Risk Management, Third Party Risk Management, Enterprise Data Governance, and other enterprise policies and programs to drive simplicity and speed to market
• Assist in identification and escalation of unregistered or unauthorized use case

Benefits

• Healthcare (medical, dental, vision)
• Basic term and optional term life insurance
• Short-term and long-term disability
• Pregnancy disability and parental leave
• 401(k) and employer-funded retirement plan
• Paid vacation (from two to five weeks depending on salary grade and tenure)
• Up to 11 paid holiday opportunities
• Adoption assistance
• Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law