Tech Risk and Controls Lead

Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management.

As a Tech Risk and Controls Lead in our Cybersecurity & Tech Controls team you will be at the forefront of redefining our controls catalogue, aligning it with cutting-edge industry standards, and driving strategic innovation across the organization.

Leverage your extensive expertise in technology risk management and information security to identify control gaps and collaborate with thought leaders to reimagine our controls framework.

Your visionary approach to technology application within a multi-tiered organization will be crucial in navigating complex challenges and elevating the firm's risk posture.

Through strategic leadership and dynamic stakeholder engagement, you will propel the Technology Risk & Services team to new heights and ensure compliance with regulatory obligations and industry benchmarks.

The Global Technology Controls Governance team is tasked with pioneering the enhancement of the framework for technology controls.

This team is pivotal in the uplift and management of these controls.

Job responsibilities


* Lead the transformation of the controls catalogue by benchmarking against industry-leading standards and identifying control gaps.


* Collaborate with subject matter experts to reimagine existing controls and restructure them across Standards, Objectives, and Procedures.


* Engage with stakeholders in Global Technology, Risk, and Audit to optimize controls processes and frameworks.


* Align control practices with organizational policies, industry standards, and regulations, identifying game-changing enhancement opportunities.


* Present control framework updates and performance to senior management and risk committees, driving strategic insights.


* Champion strategic initiatives to enhance the firm's risk posture and technology governance.

Required qualifications, capabilities, and skills


* 5+ years of experience or equivalent expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation


* Extensive knowledge of application architecture, infrastructure, security principles, and technology risks/controls.


* Proven ability to lead transformative projects and initiatives, with strong organizational and leadership acumen.


* Exceptional communication and presentation skills to convey complex risk information to stakeholders at all levels.


* Ability to rapidly adapt to and articulate changes in technology risk landscapes and emerging technologies.


* Strong stakeholder management skills, with the ability to engage and influence diverse groups.

Preferred Qualifications, Capabilities, and Skills


* CISM, CRISC, CISSP, or other industry-recognized risk certifications.


* Experience in a multi-tiered organization, with a deep understanding of how techn...