Enterprise Change Risk & Audit Manager - 6351946

Accenture•Charlotte, NC

3d•Onsite

About The Position

This role is responsible for leading enterprise-wide technology issue, risk, and regulatory remediation execution within a banking environment, with a strong focus on technology change management, system lifecycle governance, and control effectiveness. The role owns the end‑to‑end coordination, prioritization, and closure of audit, regulatory, and operational risk findings impacting developer platforms, infrastructure services, and SDLC/DevSecOps processes. The individual will design and operationalize structured workflows to intake, assess, prioritize, track, and close technology-related compliance issues arising from internal audits, regulatory examinations, risk assessments, and control testing. This includes ensuring remediation activities align with banking regulations, supervisory expectations, internal policies, and enterprise risk appetite, particularly in areas such as SDLC governance, change control, access management, vulnerability management, and technology asset lifecycle. The role partners closely with Engineering, Cybersecurity, Technology Risk, Compliance, Internal Audit, Enterprise Change, and external regulators to drive timely, evidence‑based, and sustainable remediation. The individual is accountable for translation of regulatory findings into executable remediation plans, monitoring execution progress, validating control design and operating effectiveness, and confirming audit‑ready closure. A core responsibility is maintaining high-quality governance and executive reporting, providing senior leadership with clear visibility into risk posture, remediation progress, closure velocity, and recurring control weaknesses. The role is also expected to embed automation and AI-assisted tooling (e.g., Copilot) to improve issue analysis, documentation quality, management reporting, and audit response efficiency, while operating within enterprise governance guardrails. This position is highly visible and requires strong judgment, banking regulatory fluency, and the ability to influence across complex, matrixed technology organizations to ensure remediation actions reduce risk in practice—not just on paper. This role requires working onsite with the client 3 days per week in Charlotte, NC

Requirements

Minimum 5 years experience in banking or financial services, supporting technology organizations subject to regulatory supervision and examinations
Minimum 3 years experience in proven leadership of technology audit, regulatory, and risk remediation, including handling MRAs/MRIAs, regulatory inquiries, or consent‑order‑driven work
Minimum 3 years experience of strong expertise in technology change management and system lifecycle controls, including SDLC, DevSecOps, access, release, end‑of‑life, and vulnerability management
Minimum 3 years experience of demonstrated ability to convert audit and regulatory findings into executable remediation plans with sustainable control outcomes
Minimum 3 years hands-on experience managing multiple concurrent remediation workstreams across complex, matrixed technology teams
Minimum 3 years experience of deep understanding of bank technology risk frameworks and control standards (e.g., ITGC, SOX, NIST, ISO 27001, COBIT)
Strong executive communication skills, including risk narratives, dashboards, and regulatory‑ready status reporting
Practical experience with Jira, BCM Remedy, ServiceNow (IRM/GRC/Change) and data-driven reporting
High School Diploma or GED

Responsibilities

Leading enterprise-wide technology issue, risk, and regulatory remediation execution within a banking environment.
Owning the end‑to‑end coordination, prioritization, and closure of audit, regulatory, and operational risk findings impacting developer platforms, infrastructure services, and SDLC/DevSecOps processes.
Designing and operationalizing structured workflows to intake, assess, prioritize, track, and close technology-related compliance issues.
Ensuring remediation activities align with banking regulations, supervisory expectations, internal policies, and enterprise risk appetite.
Partnering closely with Engineering, Cybersecurity, Technology Risk, Compliance, Internal Audit, Enterprise Change, and external regulators to drive timely, evidence‑based, and sustainable remediation.
Translating regulatory findings into executable remediation plans, monitoring execution progress, validating control design and operating effectiveness, and confirming audit‑ready closure.
Maintaining high-quality governance and executive reporting, providing senior leadership with clear visibility into risk posture, remediation progress, closure velocity, and recurring control weaknesses.
Embedding automation and AI-assisted tooling (e.g., Copilot) to improve issue analysis, documentation quality, management reporting, and audit response efficiency.