Welcome page Returning Candidate? Log in Senior Technology Risk Manager, Identity, Access, Authentication Risk Management (IAM) Job Locations US-TX-Westlake | US-CO-Lone Tree | US-AZ-Phoenix | US-NE-Omaha | US-TX-Southlake Requisition ID 2025-107211 Posted Date 14 hours ago(1/27/2025 10:30 AM) Category Risk & Regulatory Salary Range USD $103,500.00 - $230,000.00 / Year Application deadline 2/4/2025 Position Type Full time Your Opportunity

At Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together.

Technology Risk Management (TRM) is part of the Corporate Risk Management (CRM) department that forms the second line of defense at Charles Schwab. TRM provides challenge with partnership for the firm’s information technology, security, and resilience practices to manage risks to Confidentiality, Integrity, Availability, and Value Delivery within the Firm’s Risk Appetite. Within TRM, the Identity Access Risk Management team focuses on risks related to client authentication and internal workforce identity and access management.

 

The Technology Risk Manager Senior, Identity & Access Risk Management (IARM) is responsible for a) proactively identifying, measuring, assessing and reporting on risks associated with client authentication as well as internal workforce management of the identity lifecycle, access to information resources, and other authentication/authorization technology b) overseeing and assessing adherence to identity and access risk management policy and regulatory requirements, and reporting maturity progress to management, c) assessing ongoing adherence to security standards and best practices by conducting recurring and ad-hoc risk assessments on platforms and applications, both internal and cloud based, and d) providing consultation/guidance to our technology and business partners on policy and standard requirements and best practices to reduce risk. It is also the expectation that the individual will establish strong partnership with our stakeholders by building trust through their subject matter expertise and integrity of their work to influence call to action, as needed, to drive sustainable change.

 

Additional Responsibilities Include: 

Focus on client authentication programs and technologies to protect firm customers and firm reputation.Effectively challenge technology roadmaps to continuously improve responses to the changing risk landscape.Identification of emerging risks and in the field and how those apply the firm.Staying informed of technology advances and determining how those can be applied to manage risk within the firm.Sourcing and management (oversight) of issues as well as risk and control assessment utilizing GRC tools and internal processes.Maintain and evolve metrics to monitor risk reduction.Work with internal auditors and regulators to articulate our identity and access risk management framework, execution progress, and how these risks are managed at Schwab. What you have

Required Qualifications: 

Bachelor’s degree plus CISSP, CISM, CISA, or equivalent certification is preferred3+ years’ experience in the Information Security fieldExperience working with authentication and authorization mechanisms, multi-factor authentication tools and strategies, identity providers, and managing privileged access risks. Working knowledge of these technologies, potential flaws and risks, and best practices to implement solutions that reduce risk.Knowledge of risk control frameworks such as NIST, ISO as well as regulatory and industry requirements such as GLBA, PCI, FFIECExperience with data analysis and reportingAbility to effectively communicate with technical and executive audiences; both oral and written is requiredExperience interfacing with auditors in support of audits is requiredExperience with working with partners at all levels and across functional lines, bringing diverse points of view togetherThrive in a constantly evolving environment and meet critical commitments under pressureConduct metrics and status reportingExperience with GRC and Workflow tools such as IBM OpenPages or RSA Archer and Policy Tech or Policy Hub will be a plusAbility to work independently and proactively, with minimum guidanceAbility to work on multiple projects simultaneously while prioritizing based on risk/business needsEffective organizational and time management skillsExcellent interpersonal, written, and verbal communication skills; demonstrated presentation skillsSharp analytical skills and strong attention to detail and accuracyStrong interpersonal, analytical, problem-solving, influencing, prioritization and conflict resolution skills3+ years of experience in a risk, supervision/controls, compliance, or audit function2+ years of experience in financial servicesExperience analyzing data and preparing solutions based on sound facts and findingsSelf-starter with a can-do attitude who is capable of building relationships within a matrixed organization

Preferred Competencies: 

CISSP, CISA, CISM, CRISC, or equivalent certification Options Apply for this jobApplyShareRefer a friendRefer Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeed Why work for us?

Own Your Tomorrow embodies everything we do! We are committed to helping our employees ignite their potential and achieve their dreams. Our employees get to play a central role in reinventing a multi-trillion-dollar industry, creating a better, more modern way to build and manage wealth.

 

Benefits: A competitive and flexible package designed to empower you for today and tomorrow. We offer a competitive and flexible package designed to help you make the most of your life at work and at home—today and in the future.   Application FAQs

Software Powered by iCIMS
www.icims.com