Technology Risk Specialist

About The Position

Requirements

• Bachelor's Degree or an equivalent combination of education and experience.
• 5+ years of banking, technology, operations or risk management experience.
• Strong business acumen / knowledge, problem solving, critical thinking and decision-making skills.
• Excellent interpersonal and communication skills demonstrating the ability to establish credibility with all levels of management effectively. Demonstrated effective influencing skills.
• Demonstrated consistent execution and delivery of high-quality work products
• Comfort with data and applying analysis to derive value-add insights
• Adept with Microsoft Office products.

Nice To Haves

• Cloud Risk Management Expertise (AWS‑Centric, Financial Services)
• Deep experience overseeing cloud risk within a regulated banking or financial services environment, with strong command of AWS services, cloud shared responsibility models, and key risk domains (IAM, data security, resiliency, availability, third‑party risk, and regulatory compliance).
• Demonstrated ability to assess whether cloud risks are identified, understood, and appropriately managed as cloud adoption scales.
• Second Line of Defense Leadership & Independent Challenge
• ​Proven success operating in a second line of defense role, providing independent oversight, credible challenge, and risk transparency related to cloud technologies.
• Strong understanding of regulatory expectations, enterprise risk frameworks, and risk appetite, with the ability to evaluate first line cloud strategies, designs, and control environments for alignment with sound risk management practices.
• Cloud Architecture Acumen & Executive Advisory Capability
• ​Solid understanding of cloud architecture patterns and enterprise cloud transformation initiatives, enabling effective risk-based guidance and challenge.
• Demonstrated ability to partner with and support first line Technology executives by advising on cloud risk implications, control design considerations, and risk-informed decision-making—while maintaining appropriate independence.
• Familiarity with enterprise Governance Risk and Compliance (eGRC) platforms and tools (e.g., RSA Archer)

Responsibilities

• Provides independent risk oversight (i.e. second line of defense/LOD2) for Truist Technology and related consult to Truist Business Units through the effective identification, mitigation, monitoring and reporting of technology risk and other related risks (e.g., operational, compliance) within Enterprise Technology.
• Serve as a subject matter expert and steward of the Technology Risk Framework to identify, report and mitigate technology risks.
• Execute independent assessment and oversight of the maturity of technology and adequacy of technology controls to achieve business outcomes for performance, stability, security and service availability.
• Strengthen and sustains proactive risk culture through conducting effective risk focused management and partnership routines with technology teams and internal partners.
• Review and challenge outcomes of first-line-of-defense risk program execution.
• Monitor legal, regulatory, compliance and audit matters for assigned Technology oversight area and ensures timely action.
• Contribute to complex projects which may have both technology and enterprise wide impact beyond risk management.
• Comfortable and has demonstrated effectiveness in interdisciplinary, matrix environments.

Benefits

• All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position.
• Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates.
• Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays.
• Depending on the position and division, this job may also be eligible for Truist’s defined benefit pension plan, restricted stock units, and/or a deferred compensation plan.
• As you advance through the hiring process, you will also learn more about the specific benefits available for any non-temporary position for which you apply, based on full-time or part-time status, position, and division of work.