Head of Cloud Infrastructure and Resiliency Risk Management

TD Bank-posted 3 days ago
$200,000 - $280,000/Yr
Full-time • Executive
New York, NY
5,001-10,000 employees
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

Enterprise Technology provides independent operational risk management oversight and challenge to operational risk management activities executed by the Technology organization and business groups to the management of Cybersecurity and technology risks across the enterprise. They partner with the first line of defense (CIO & CISO organizations) in identifying, reporting, and mitigating Cybersecurity risk issues and provide subject matter expertise in the Cybersecurity risk management practices, operational risk framework and Cybersecurity risks/processes/controls. The group will execute 2A requirements in support of 3 lines of defense framework. Reporting into the VP, Head of Tech Risk Cloud Infrastructure Risk Management, the Head of Cloud Infrastructure and Resiliency Risk Management serves as a key member of the senior leadership team for the Enterprise Technology Risk function with deep subject matter expertise in Technology, Cyber Security, Resilience and Cloud.

  • Provides people management leadership by hiring the best talent, setting goals, developing staff, managing employee performance and compensation decisions, promoting teamwork and handling any/all disciplinary actions, as required
  • Advances TDBG's People Strategies to attract, retain, develop and engage a highly qualified and diverse human resource base to achieve business objectives and create a unique and inclusive employee experience
  • Leads the assessment, monitoring and reporting on technology risks inherent to technology activities, including cyber, resilience, security, and technology risk concepts
  • Oversees a team of senior risk managers as they lead second line challenge and examinations and tracks accountable parties' remediation activity
  • Maintains accountability for the integrity of the enterprise's adherence to the technology risk management framework challenging control partners
  • Interprets industry experience to determine appropriate key risk indicators and monitor best practices that drive technology risk and regulatory compliance
  • Designs appropriate risk appetite for cyber, resiliency and technology and establish key risk indicators and monitor effectiveness
  • Performs oversight and follow-up on non-compliant recovery and disaster preparedness controls at an application, deployment, and asset level
  • Awareness of emerging risks and evaluate the ongoing effectiveness of the technology/cyber/resilience risk appetite, taking into account changes in strategy, the operating environment, operations, regulatory requirements
  • Manages and builds a team of SMEs spanning cloud, tech security, cyber risk and ops continuity
  • Fosters awareness in information security domains, including policies and standards, risk and control assessments, access controls, regulatory compliance, technology resiliency, risk and control governance and metrics, incident management, secure systems development lifecycle, vulnerability management, and data protection
  • Partners with VP, TMO, Program Delivery Lead and Technology Owner to remove obstacles
  • Assists in providing periodic examination status updates and contribute to internal reporting and tracking related to examinations and regulatory findings
  • Provides long-term view in execution of solution standards across CTO to ensure alignment with overall business strategy and future state
  • Bachelor's Degree required; Master’s Degree is preferred
  • 10+ years of risk management and/or technology experience with at least five years of managing a large cross-functional team and influencing senior level management and key stakeholders
  • Excellent relationship management, influencing, negotiating, and interpersonal skills. Ability to work effectively with all levels of the organization and balance the needs of multiple functions
  • Demonstrated experience across domains (e.g., enterprise security architecture, compute services, storage, networking, virtualization, data center, integration architecture (API), orchestration technologies, application development lifecycle management, and service delivery
  • Uses relationships with senior stakeholders to coordinate technology risk management efforts and regional groups and drive execution of technology risk deliverables and issue resolution
  • Understanding of information security and risk management challenges, issues mitigations and remediation in a multi-national enterprise environment and able to articulate them
  • High level experience with modern technologies such as public and private cloud (AWS, Azure, etc.), containerization and orchestration (Kubernetes), & microservice architectures
  • Understands the foundation of the RCSA process and the identification of risks and controls.
  • Previous experience developing and executing on strategies and delivering superior results in both the short and long term
  • Previous experience as a Security Architect, DevOps Engineer, Cloud Security Engineer, ideally within a regulated financial services environment
  • Demonstrated ability to manipulate and leverage data sources to find meaningful risk dimensions through use of MS Excel skills to drive risk insight
  • Pervious team leadership experience, fostering a positive team environment and can-do culture with reports
  • Well versed in application and secure software design principles, common attack patterns, and frameworks, etc.
  • Proven ability in leveraging deep subject matter expertise to align teams to a central vision, while also listening and engaging others to provide input in the shaping of that vision
  • Expertise in working effectively in teams – requires a track record of working cross-organizationally and with multiple stakeholders at varying levels
  • Understands the business' history, pain points and culture
  • Can translate the program vision into the business "component parts", effectively translating complex into simple
  • Embraces what needs to change, and advocates this across the business
  • Total Rewards at TD includes base salary and variable compensation/incentive awards (e.g., eligibility for cash and/or equity incentive awards, generally through participation in an incentive plan) and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off (including Vacation PTO, Flex PTO, and Holiday PTO), banking benefits and discounts, career development, and reward and recognition.
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service