Sr Director, Technology Risk (Hybrid)

Broadridge-posted 4 days ago
Full-time • Mid Level
Hybrid • Newark, NJ
5,001-10,000 employees
Resume
Match Score
Upload and Match ResumeTrack Jobs with Teal

At Broadridge, we've built a culture where the highest goal is to empower others to accomplish more. If you’re passionate about developing your career, while helping others along the way, come join the Broadridge team. Broadridge is hiring! We’re seeking a seasoned Technology Risk Leader to oversee enterprise-wide technology risk management. This role integrates IT audit, regulatory compliance, infrastructure and application risk oversight, AI/model risk governance, and M&A technology due diligence. The successful candidate will bring hands-on expertise across cloud and on-premise systems (including mainframe), distributed platforms, development, security, and operations, with strong familiarity with industry frameworks such as NIST, FFIEC, CIS, and COBIT.

  • Enterprise Technology Risk Management: Develop and lead the technology risk program, including risk assessments, risk appetite alignment, and remediation tracking.
  • IT Audit Leadership: Manage internal and external IT audits covering applications, infrastructure, access controls, change management, and vendor risk.
  • AI & Model Risk Governance: Establish and maintain model governance frameworks, ensuring model validation, monitoring, explainability, and fairness consistent with emerging regulatory expectations.
  • Regulatory Compliance: Interpret guidelines (FFIEC, NIST, OCC, and other regulators), translate them into actionable controls, and lead exam preparation and response activities.
  • Secure SDLC / DevSecOps: Integrate security controls into development pipelines, conduct threat modeling, and perform secure design reviews throughout the CI/CD lifecycle.
  • Cloud & Distributed Systems Oversight: Define and monitor cloud security posture; lead architecture reviews, identity and access management, encryption, and incident response across multi-cloud and microservices environments.
  • Mainframe & Legacy Systems: Assess and strengthen control environments for mainframe systems, batch processing, and change management.
  • M&A Technology Due Diligence: Conduct due diligence on security, architecture, and operations; lead post-acquisition integration risk mitigation activities.
  • Frameworks & Control Mapping: Maintain alignment of control frameworks with NIST CSF/800-53, FFIEC, CIS, and COBIT standards; produce governance metrics and executive dashboards.
  • Third-Party Risk: Evaluate vendor security controls, SLAs, and remediation progress for cloud and outsourced services.
  • Incident Response & Resilience: Participate in incident management, lessons-learned reviews, and disaster recovery/business continuity testing.
  • Leadership & Collaboration: Mentor team members and partner closely with security, engineering, legal, and compliance teams to embed a culture of secure design.
  • 8+ years in technology risk, IT audit, information security, or related functions (financial services experience strongly preferred).
  • Proven knowledge of NIST 2.0, FFIEC guidance, CIS Controls, and COBIT frameworks.
  • Hands-on understanding of AWS, Azure, and GCP architecture, security services, and shared responsibility models.
  • In-depth experience with distributed systems, containers, Kubernetes, and resilient architecture design.
  • Proficiency with secure SDLC and DevSecOps practices (SAST, DAST, dependency scanning, CI/CD).
  • Exposure to AI/ML risk management, model governance, and related regulatory requirements.
  • Familiarity with mainframe environments (e.g., z/OS) and associated control practices.
  • Experience conducting technical due diligence and integration planning for M&A.
  • Strong IT audit execution and remediation management capabilities.
  • Solid grasp of IAM, encryption, monitoring, vulnerability management, and incident response practices.
  • Exceptional communication and presentation skills with the ability to translate technical risk for executive audiences.
  • Bachelor’s degree in Computer Science, Information Systems, Engineering, or related discipline required; advanced degree preferred.
  • Bonus Eligible
  • Please visit www.broadridgebenefits.com for information on our comprehensive benefit offerings.
  • All Colorado employees receive paid sick leave in compliance with the Colorado Healthy Families and Workplaces Act and other legally required benefits, as applicable.
Track Jobs with Teal

Job Search Resources

Resume Builder
Resume Examples
Cover Letter Examples

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service