Technology Director – Platform Services & Risk Management

About The Position

Requirements

• 10+ years of Technology Strategic Leadership experience, or equivalent demonstrated through a combination of work experience, training, military experience, or education
• 4+ years of management or leadership experience

Nice To Haves

• Deep experience with: Vulnerability management at scale (enterprise or program-level), EOL / lifecycle governance, BCP / operational resiliency programs
• Familiarity with enterprise risk frameworks, audit and regulatory processes, and technology control environments
• Strong executive communication skills with the ability to translate technical risk into business impact and drive decision-making
• Ability to operate in a highly matrixed environment and influence across multiple stakeholder groups
• Strong governance, risk management, and execution discipline
• Ability to present effectively to senior leadership and executive audiences
• A deep understanding of the business and strong influencing skills, ability to mediate conflicts, streamline processes, and fostering a collaborative culture across WFT

Responsibilities

• Build and lead a high-performing risk team (Risk Leads, Analysts, and SMEs) aligned to the four priority domains
• Define and execute a COO Technology risk strategy aligned to enterprise risk appetite and regulatory expectations
• Establish clear ownership models, roles and responsibilities, and accountability mechanisms across platforms and application teams
• Analyze key organizational and operational metrics and providing data-driven insights to the executive team to inform strategic decision-making
• Own enterprise-scale execution for vulnerability risk management, including aged vulnerabilities, emergency vulnerabilities, and exception governance
• Drive remediation outcomes with clear accountability for past-due reduction, SLA adherence, and execution discipline
• Lead governance for exceptions and extension approvals, ensuring consistency, documentation, sustainability statements, and executive visibility
• Oversee implementation of rapid response processes for major vulnerability events (e.g., zero-day, cyber events) to accelerate assessment and remediation
• Own COO Technology’s risk management framework execution, including: Control management (design, execution, and evidence), Certifications and attestations, Issue and remediation tracking
• Ensure audit readiness across all domains, including coordination for regulatory exams, internal audit, and independent testing
• Deliver executive-ready risk reporting with actionable insights, highlighting exposure, trends, and required decisions
• Identify and remediate systemic control gaps, process breakdowns, and ownership ambiguity
• Lead governance across hardware and software lifecycle risk, including EOL identification, remediation strategy, and tracking
• Ensure all EOL assets have a defined path (upgrade, migrate, decommission, or exception) with timelines and ownership
• Drive reduction in non-current technology risk exposure, minimizing reliance on exceptions
• Provide portfolio-level visibility into EOL posture, risks, and remediation progress
• Own COO Technology resiliency posture, including: BCP plan completeness and quality, Recovery strategies (RTO/RPO alignment), Execution of enterprise resiliency exercises and validation activities
• Lead coordination across business, technology, and third parties to ensure recovery strategies are viable and executable
• Ensure compliance with enterprise resiliency policies, timelines, and documentation standards
• Drive improvements to resiliency maturity, including third-party dependency risk and recovery readiness
• Establish and run a structured governance model, including: Intake and prioritization processes, Weekly and monthly governance forums, Risk escalation and decision frameworks, Closure validation and tracking
• Define and enforce a single source of truth for risk reporting across vulnerabilities, EOL, and resiliency
• Standardize metrics, KPIs, and reporting aligned to executive, regulatory, and audit expectations
• Partner with Cybersecurity, Platform Leaders, Resiliency teams, and Independent Risk to drive execution and alignment

Benefits

• Health benefits
• 401(k) Plan
• Paid time off
• Disability benefits
• Life insurance, critical illness insurance, and accident insurance
• Parental leave
• Critical caregiving leave
• Discounts and savings
• Commuter benefits
• Tuition reimbursement
• Scholarships for dependent children
• Adoption reimbursement