New York, NY, USA
17 days ago
Tech Risk Engagement Lead - Regulatory Exam Management - Cybersecurity and Technology

Step into the role of Tech Risk Engagement Lead and lead the forefront of technological innovation and security. This pivotal position offers the unique opportunity to influence and shape our approach to cyber threats and compliance, balancing progressive digital transformation with robust risk management. Your leadership will be instrumental in navigating the complexities of technology risks, setting the standard for a resilient and forward-thinking tech environment.

As a Tech Risk Engagement Manager in our Cybersecurity and Technology Controls team, you will expertly navigate the dynamic landscape of cyber threats, technology advancements, and regulatory requirements. Leading proactive identification and evaluation of technology risks, you'll collaborate with internal and external stakeholders to help develop and implement robust risk management strategies. Your role is pivotal in maintaining compliance with industry standards and best practices, leveraging your subject matter expertise to provide leaders with insights and recommendations for digital transformation within the firm's risk appetite. You will manage a diverse team, coordinate cross-functional efforts, and influence decision-making, ensuring top-quality service delivery. Your expertise shapes the firm's approach to technology risk and services, fostering a secure and compliant environment.

 Job responsibilities

Coordinate onsite examinations, reviews, and requests by regulators covering Global Technology, including Cybersecurity & Technology Controls, Line of Business Technology, and Firmwide Platforms and Products Technology. Provide strategic advice and regular updates to Global Technology senior management regarding the matters being handled, including, but not limited to, the timely escalation and resolution of potential issues. Communicate extensively (orally and in writing) with senior management and develop effective relationships with regulators. Establish and develop effective relationships within Global Technology, including Cybersecurity & Technology Controls, Line of Business Technology, and Firmwide Platforms and Products Technology.  With respect to technology matters, establish and develop effective relationships with Compliance, Conduct and Operational Risk (CCOR); Internal Audit; Control Management; Business Resiliency; Third Party Oversight; Risk; Business; Operations; and Legal.   Work with the relevant personnel in Global Technology and other Corporate Functions to obtain information/documentation to respond to regulatory requests. Review, analyze, and summarize information/documentation responsive to regulatory requests.  Provide feedback and strategic advice regarding responses to regulatory requests. Prepare personnel (and senior management) for meetings with regulators, including drafting written documents and leading internal prep meetings. Coordinate and lead meetings with regulators. Prepare timely meeting summaries and manage follow up requests. Identify mitigating facts and circumstances (as applicable) to respond to issues identified during examinations or other engagements. Prepare substantive written responses to regulatory requests and examination reports. Communicate with the relevant Global Technology personnel regarding regulatory issues, findings by the regulators, and remediation related to those findings.

 Required qualifications, capabilities, and skills

5+ years of experience or equivalent expertise in technology risk management, cybersecurity, or a related field, with a focus on regulatory compliance and risk mitigation Experience working with senior management at a large, global financial institution or similar organization is required. Strong organizational skills and an ability to manage multiple demands and changing priorities.  Detail oriented, self-starter with solid prioritization, planning, and time management skills. Sound judgment and an ability to make decisions quickly.  Strong analytical skills to conduct independent research, reach conclusions, and solve problems. Excellent relationship management, influencing, negotiating, and interpersonal skills.  Ability to work effectively with all levels of the organization and balance the needs of multiple functions.  Experience working across Lines of Business, countries, and regions.  Experience working with senior management. Strong oral and written communication skills with an ability to convey information in a clear and concise manner that is comprehensive, accurate, and tailored to the audience, including senior management.

 Preferred qualifications, capabilities, and skills

Knowledge of regulatory requirements and technology risk management processes and related controls. Sound understanding of risk assessment methodologies, internal controls, and industry technology risk management frameworks such as the Cyber Risk Institute (CRI) Profile, NIST Cybersecurity Framework, ITIL, COBIT, and ISO 2700 desirable, but not required Experience with applying principles outlined in regulatory guidance, including but not limited to, U.S. Regulatory Guidance in the Federal Financial Institutions Examination Council (FFIEC) Technology Handbooks Bachelor's Degree, or a similar degree.  Experience in technology and cybersecurity at a large, global financial institution desirable but not required.
Confirm your E-mail: Send Email