Tech Risk Controls Lead

As a Tech Risk Assurance Lead in the Cybersecurity & Tech Controls team, you will have the opportunity to shape the risk culture and ensure technological safeguards in a dynamic and collaborative environment. Your role involves identifying and influencing the design of technology controls to enhance the firm's ability to manage compliance and operational risk exposure. You will provide subject matter expertise and technical guidance to technology-aligned product and process owners, ensuring that controls are integrated and adhered to throughout the Global Technology organization in alignment with regulatory, legal, and industry standards. Collaboration with stakeholders such as Product Owners, Business Control Managers, and Regulators will be essential to provide a comprehensive view of the technology risk posture and its impact on the business. Your advanced understanding of risk management principles, practices, and theories will enable you to drive innovative solutions and effectively lead a diverse team in a dynamic and evolving risk environment. This position offers personal growth opportunities in supply chain risk, software development lifecycle, and emerging technologies like blockchain and AI/ML. Your responsibilities will include effectively identifying, quantifying, communicating, and managing technology risks with an emphasis on root cause analysis and resolution recommendations. Building and sustaining strong relationships to become a trusted partner with line of business technologists, assessment teams, and product owners will be crucial for supporting cross-functional collaboration. You will facilitate progress toward shared goals through robust partnerships and collaboration, execute reporting and governance of controls, policies, issue management, and measurements, and provide senior management with insights into control effectiveness and risk posture for proper prioritization. Proactively monitoring and evaluating control effectiveness, identifying gaps, and recommending enhancements to strengthen risk posture and regulatory compliance will also be part of your role. Required qualifications, capabilities, and skills include formal training or certification on Tech Risk & Control concepts and a minimum of 5 years of applied experience in technology risk management, information security, or a related field. Expertise in risk identification, assessment, and mitigation, familiarity with risk management frameworks and industry standards, knowledge of financial industry regulatory requirements, proficiency in supply chain risk, software development lifecycle, and control evaluation, and the ability to influence executive-level decision-making and translate technology insights into business strategies are essential. Preferred qualifications, capabilities, and skills include certifications such as CISM, CRISC, CISSP, or similar industry-recognized risk certifications.,