Risk Supervision Officer

Charles Schwab Inc.Westlake, TX
$130,000 - $175,000Onsite

About The Position

As a Technology Risk Manager within the Software Security and Penetration Testing (SSPT) team, you will play a critical role in protecting Schwab’s clients, assets, and technology environment by providing independent oversight of application security and software development practices. This role offers the opportunity to influence how cybersecurity risks are identified, assessed, mitigated, and governed across a complex enterprise environment while partnering with leaders across technology, cybersecurity, business, risk, audit, and regulatory functions. You will evaluate technology and cybersecurity risks associated with application security programs and software development lifecycles, helping ensure alignment with internal policies, standards, controls, and industry best practices. Through risk assessments, thematic reviews, data-driven analysis, governance activities, and ongoing monitoring, you will help strengthen the firm's risk posture and support informed decision-making. Your work will directly contribute to reducing technology risk exposure, improving compliance outcomes, enhancing operational resilience, and driving continuous improvement across cybersecurity programs. Success in this role requires strong analytical thinking, sound judgment, and the ability to navigate complex and evolving environments. You will collaborate with stakeholders across all three lines of defense to assess risks, evaluate controls, develop risk mitigation strategies, and communicate insights to both technical and executive audiences. As regulations, threats, and technologies continue to evolve, you will have the opportunity to expand your expertise, influence strategic initiatives, and help shape the future of technology risk management at Schwab.

Requirements

  • 3+ years of experience in cybersecurity, technology audit, technology risk management, or related technology risk disciplines.
  • Demonstrated experience supporting application security programs and secure software development lifecycle (SDLC) practices.
  • Experience identifying, assessing, prioritizing, and monitoring technology and cybersecurity risks.
  • Knowledge of risk assessment methodologies, risk management frameworks, and governance practices.
  • Experience evaluating compliance with cybersecurity policies, standards, controls, and regulatory requirements.
  • Experience conducting risk assessments, thematic reviews, control evaluations, or oversight activities within technology or cybersecurity environments.
  • Experience analyzing data, metrics, trends, and reporting results to support risk-based decision-making.
  • Strong analytical thinking, problem-solving, prioritization, decision-making, and critical reasoning skills.
  • Demonstrated ability to collaborate effectively across technical, business, and risk functions.
  • Strong verbal and written communication skills with the ability to tailor messaging for technical and executive-level audiences.
  • Ability to manage multiple priorities, adapt to changing business needs, and perform effectively in a fast-paced environment.
  • Bachelor's degree or equivalent combination of education and relevant experience.

Nice To Haves

  • 5+ years of experience in cybersecurity, technology risk management, technology audit, or operational risk management.
  • Professional certification such as CISSP, CISM, CISA, CRISC, or equivalent industry-recognized credential.
  • Experience within the financial services industry or other highly regulated environments.
  • Experience working with application security testing, software security, penetration testing, or secure development practices.
  • Experience supporting regulatory examinations, internal audits, or external audit engagements.
  • Experience designing, enhancing, or implementing risk mitigation strategies and governance processes.
  • Knowledge of operational resilience, cybersecurity governance, and technology risk management frameworks.
  • Demonstrated ability to influence stakeholders and build alignment across cross-functional teams.
  • Experience supporting strategic initiatives, roadmap development, or risk transformation programs.

Responsibilities

  • Provide independent oversight of application security and software development practices.
  • Evaluate technology and cybersecurity risks associated with application security programs and software development lifecycles.
  • Ensure alignment with internal policies, standards, controls, and industry best practices.
  • Conduct risk assessments, thematic reviews, data-driven analysis, governance activities, and ongoing monitoring.
  • Strengthen the firm's risk posture and support informed decision-making.
  • Reduce technology risk exposure, improve compliance outcomes, enhance operational resilience, and drive continuous improvement across cybersecurity programs.
  • Collaborate with stakeholders across all three lines of defense to assess risks, evaluate controls, and develop risk mitigation strategies.
  • Communicate insights to both technical and executive audiences.
  • Expand expertise, influence strategic initiatives, and help shape the future of technology risk management.

Benefits

  • In addition to the salary range, this role is eligible for bonus or incentive opportunities.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service