This role involves providing guidance in creating risk-focused metrics across technology domains for managing interactive and App2App privileged accounts, internal and third-party system access, cloud data encryption services, and technology asset lifecycle management. The position requires conducting reviews of cyber and technology metrics, ensuring proper scoping, sourcing in-scope technology asset data, calculation logic, and threshold setting to maintain effectiveness. Analysis of metric data and breach patterns is crucial for calibrating thresholds to ensure effective technology risk management. The role also includes generating reports with breach commentary for technology control forums, developing and maintaining management guidance for metrics, and enhancing the service capability of the Metrics Program by streamlining operational procedures. Collaboration with risk pillars, process owners, risk & control managers, product partners, and the second line of defense is expected to implement a data-driven approach for cyber & technology control compliance and risk management. The position supports the enhancement of technology risk and controls management, aligning with strategic objectives, cybersecurity principles, and industry standards. This position requires up to 10% domestic travel.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Job Type
Full-time
Career Level
Senior