Technology Risk & Regulatory Compliance

About The Position

Requirements

• Bachelor's degree in IT/Engineering field (relevant experience may be substituted for formal education or advanced degree)
• Experience in the banking industry or commercial financial services consulting in following areas: Ownership of Enterprise IT functions, processes and tools
• RCSA, operational risk, or technology risk roles-preferably within financial services or banking technology environments
• Operational risk and/or big bank compliance (first or second line of defense)
• Banking regulations, compliance, and risk management requirements
• Risk and controls current state assessments (including process mapping)
• Compliance and risk assessment processes (1LOD, 2LOD, Control Management) for financial institutions, ensuring adherence to international regulatory standards
• Experience working with commercial banks / financial institutions, ideally Global Systemically Important Banks (GSIBs)
• Experience with Enterprise Operating model and IT risk frameworks (e.g. NIST and CSA)
• Willingness and ability to travel to NYC (if not local); must work onsite approximately 3 days/week
• Ability to thrive in a fast-paced challenging client focused. environment where priorities and scope may change quickly.
• Excellent presentation, facilitation, verbal and written. communication skills, tailoring communications to both clients and coworker's with proficiency in MS office products.
• Proven ability to successfully lead client service delivery teams that deliver the highest quality work.

Nice To Haves

• Prior management consulting leading teams in enterprise IT Management (infrastructure, data, security etc.), IT Operations and Risk Management experience
• Knowledge of Enterprise IT domains and cloud platforms (AWS, Azure, GCP) and associated risk controls
• Relevant certifications: CRISC, Lean Six Sigma, PMP-RMP
• MBA or MA/MS degree in a related field
• RCSA experience
• Experience working with one or more GSIBs
• Experience with GRC tools (e.g., Archer, MetricStream, ServiceNow)

Responsibilities

• Perform 1st and 2nd line of defense tasks including identifying, assessing, measuring, monitoring, reporting, and remediating operational risk and controls
• Support and execute Risk and Control Self-Assessments (RCSA) planning to execution, specifically for the technology stack within financial institutions
• Identify, assess, mitigate and report risks associated with Technology functions supporting financial systems and core banking platforms
• Collaborate with technology services, business units and process owners to map processes, define inherent risks, and evaluate existing controls
• Use tools, workshops, and interviews to uncover risk exposures
• Evaluate whether controls are well-designed and operating effectively to mitigate risks
• Test operating effectiveness of controls
• Identify control gaps and deficiencies
• Help develop or improve operational risk management frameworks, guidelines, and policies
• Ensure alignment with regulatory requirements
• Communicate risk and control findings and influence change

Benefits

• Medical, Rx, Dental & Vision Insurance
• Personal and Family Sick Time & Company Paid Holidays
• Position may be eligible for a discretionary variable incentive bonus
• Parental Leave and Adoption Assistance
• 401(k) Retirement Plan
• Basic Life & Supplemental Life
• Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts
• Short-Term & Long-Term Disability
• Student Loan PayDown
• Tuition Reimbursement, Personal Development & Learning Opportunities
• Skills Development & Certifications
• Employee Referral Program
• Corporate Sponsored Events & Community Outreach
• Emergency Back-Up Childcare Program
• Mobility Stipend