SSDLC IT/IS Risk Management & Governance Executive - Charlotte

United Services Automobile Association (USAA)Charlotte, NC
42dHybrid
Match Resume

About The Position

At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to be the #1 choice for the military community and their families. Embrace a fulfilling career at USAA, where our core values - honesty, integrity, loyalty and service - define how we treat each other and our members. Be part of what truly makes us special and impactful. The Opportunity USAA is seeking an IT/Info Security Risk Management & Governance Executive who needs to have "hands-on" expertise in SSDLC - Second Line of Defense. This role sits within the Chief Risk Office for Technology. We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in one of the following locations: Charlotte, NC, San Antonio, TX, Tampa, FL with a preference for Charlotte. Relocation assistance is available to Charlotte for this position The successful candidate will serve as a key advisor responsible for recognizing and reporting Information Technology (IT) and Information Security (IS) strategic and aggregate risks across the business while advancing the Enterprise Risk Management function for aggregation, quantification, and qualification of risks. Sets direction for risk management programs within IT/IS and leads all aspects of the delivery of those programs across the line of business. Provide risk management and governance leadership, operational direction and operational oversight of Information Security, Business Continuity, Data Center Security, AI and Corporate Investigations domains and establish a best-in-class Risk Management framework for the Enterprise Security Group (ESG) to ensure comprehensive oversight and management of risks across the full risk taxonomy. Ensures risks align within appetite tolerances and strategic goals, product plans, forecasts, and adjusts to variances. Responsible for the aggregation and reporting of risks to senior leadership and effectively assessing and influencing business decisions and direction. Contributes to the long-term strategy of how risk systems should be adapted and integrated to maximize the ability to manage risk in an environment shaped by regulatory change and disruptive, emerging technologies. Ensures effective and appropriate policies, procedures, and controls are in place supporting all risk processes, systems, strategies, and implementations.

Requirements

  • Bachelor's degree; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree.
  • 10+ years of risk management, regulatory or operations experience in a functional area such as insurance, banking, or financial services with 5+ years of this experience focused on Information Security, Business Continuity, Physical Security or Corporate Investigations.
  • 4+ years of people leadership experience in building, managing and/or developing high-performing teams.
  • Industry certification(s) in Information Security (e.g., CISSP, CISM) or Business Continuity (e.g., ABCP, CBCP) or Risk Management (e.g., CRISC) or Physical Security (e.g., CPP).
  • Demonstrated experience working with and applying Risk, Security or Audit frameworks (FFIEC, COBIT, COSO, ISO 27001/2, NIST 800-53, SSAE16).
  • Knowledge of applicable laws, rules, and regulations applicable to financial institutions.
  • Experience making data-driven decisions.
  • Experience working with external agencies and regulators.
  • Broad knowledge of information technology systems and general system development principles.

Nice To Haves

  • 7+ years of risk management and regulatory experience in a functional area such as insurance, banking, or financial services (Large size organizations 20k+)
  • 10+ years experience focused on Information Security, Data, Risk Management, evaluating the design and development of software.
  • Experience with artificial intelligence (AI) and machine learning principles, including responsible AI use case evaluations and deployment.
  • 10+ years "hands-on" experience integrating security throughout the Secure Software Development Lifecycle (SSDLC), including component analysis, static and dynamic scanning (SAST/DAST), penetration testing, and comprehensive application security testing across build, deploy, and maintenance phases.
  • Proven ability to develop high-impact materials and deliver concise, insight-driven presentations to executive leadership, translating complex concepts into actionable recommendations that influence strategic decision-making.

Responsibilities

  • Establishes trust and rapport with senior business leaders across the enterprise to sustain oversight of the second line risk role. Actively engages line of business leaders to ensure all risks are appropriately addressed consistent with policy and the Risk Appetite.
  • Partners with senior risk executives in managing overall risk appetite to include the identification and definition of key methods, metrics, and limits. Influences and sets strategy for advancement of the risk management framework.
  • Partners across Risk Management, Finance, and the business while effectively challenging variances to plan and strategies to mitigate. Provides advice to other key business partners and drive key decisions assessing risk and reward through effective challenge.
  • Liaises with Compliance and CLO on legal & regulatory considerations that impact business operations and product offerings in accordance with federal and state regulations. Influences sound governance structure for oversight of risks and business operations and interacts & engages with all product & channel leaders on complex, multi-product processes and procedures while factoring in all legal & regulatory requirements.
  • Assists in interactions and briefs on domain of responsibility with regulators from the OCC, FED, FDIC, and CFPB as well as prepare Board and Senior Management level reports related to IT/IS risk.
  • Builds and oversees a team of employees (~5 direct reports / 20-30 team size to start) for assigned functional area through ongoing execution of recruiting, development, retention, coaching and support, performance management, and managerial activities.

Benefits

  • At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Executive

Industry

Religious, Grantmaking, Civic, Professional, and Similar Organizations

Number of Employees

5,001-10,000 employees

Job Search Resources

Similar SSDLC IT/IS Risk Management & Governance Executive - Charlotte job opportunities

Risk Management Governance Specialist
Arcetyp LLC
Arcetyp LLC • Hampton, VA8d • Onsite
Sr IT GRC (governance, risk (management), and compliance) Consultant
S R International
S R International • Jackson, MS1d • Hybrid
SSDLC Risk and Compliance Advisor
USAA
USAA • Tampa, FL8d • Hybrid
SSDLC Risk and Compliance Advisor
USAA
USAA • Charlotte, NC7d • Hybrid
Principal Enterprise Risk Management Program Delivery & Governance
Truliant Federal Credit Union
Truliant Federal Credit Union • Greenville, SC8d
Principal Enterprise Risk Management Program Delivery & Governance
Truliant Federal Credit Union
Truliant Federal Credit Union • Greenville, SC6d
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service