Director, Client Service Risk – Global Digital and AI Risk

You are someone who thrives in a high-performance environment, bringing a growth mindset and entrepreneurial spirit to tackle meaningful challenges that have a real impact.

In return for your drive, determination, and curiosity, we’ll provide the resources, mentorship, and opportunities to help you quickly broaden your expertise, grow into a well-rounded professional, and contribute to work that truly makes a difference.

When you join us, you will have :

• Continuous learning : Our learning and apprenticeship culture, backed by structured programs, is all about helping you grow while creating an environment where feedback is clear, actionable, and focused on your development. The real magic happens when you take the input from others to heart and embrace the fast-paced learning experience, owning your journey.
• A voice that matters : From day one, we value your ideas and contributions. You’ll make a tangible impact by offering innovative ideas and practical solutions. We not only encourage diverse perspectives, but they are critical in driving us toward the best possible outcomes.
• Global community : With colleagues across 65+ countries and over 100 different nationalities, our firm’s diversity fuels creativity and helps us come up with the best solutions. Plus, you’ll have the opportunity to learn from exceptional colleagues with diverse backgrounds and experiences.
• Exceptional benefits : In addition to a competitive salary (based on your location, experience, and skills), we offer a comprehensive benefits package, including medical, dental, mental health, and vision coverage for you, your spouse / partner, and children.

You will be part of McKinsey’s Client Service Risk (CSR) function, whose mission is to enable McKinsey’s client impact and innovation, while managing risks to our clients, our firm, and our people.

As Global Head of Digital and AI (DnA) Risk, you will take ownership of the firm’s DnA Practices’ (QuantumBlack, MTech, and Leap) risk framework (includes governance, awareness, advice and assurance) for client engagements. The role requires subject matter expertise on technology topics (e.g., AI, Software Development, Privacy, Cyber, etc.), rooted in risk management principles. This knowledge expertise will be applied to provide outstanding judgment as a peer counselor to Partners, the DnA Risk Committee, the firm’s Global Client Service Risk Committee, and DnA leaders on complex, high risk issues, and leading key risk initiatives as part of an integrated global risk function. You will collaborate closely with the DnA Practices Risk leader on risk questions and initiatives.

You will oversee a global team of 7 DnA Practices Risk professionals and partner closely with the Legal team, which together represent "CORE" the Center for Risk Excellence on Tech and AI questions. You will report to the CSR Senior Director of Global Capabilities.

You will provide strategic advice to the leaders of global and regional DnA practices, Partners and colleagues on how McKinsey serves its clients on DnA engagements in respect to overall risks faced by the firm. As a thought-leader, you will provide leading edge thinking on governance and controls required to appropriately manage DnA related current and emerging risks (e.g. adoption of innovative technologies, dual-use technologies etc.).

You will also take global ownership of the firm’s risk framework as it relates to DnA Practices’ engagements and proactively identify opportunities to drive operational excellence and improve processes. You will oversee the design and delivery of high impact global awareness programs for DnA risk and shape DnA-risk related policies and protocols. Additionally, you will lead and contribute on select strategic initiatives and risk domains – from setting our risk strategy to advising on specific engagements and ensuring awareness of risk requirements across DnA Practices (e.g., contributing to policy reviews, cell risk assessments, compacts, awareness and transparency initiatives, strengthening the 1st Line of Defense).

In this role, you will provide leadership, guidance, mentorship, and empowerment to the DnA Risk team members, sharing knowledge and growing skills. You will foster a collaborative and inclusive environment while empowering individuals to be innovative and performance-driven in their own tasks. You will mentor and apprentice junior colleagues, providing developmental support and guidance, and conduct the year-end evaluation process for direct reports.

Also, you will resolve higher-risk cases, including in meetings with the CSRC, by overseeing risk reviews and CSRC materials, and ensuring consistent policy application; act as a default thought leader for complex and novel DnA risk relating to specific client engagements.

• 10+ years of experience in strategy or advisory roles, overseeing complex (e.g., technology, information, cyber, etc.) programs and in leading and inspiring high-performing teams.
• Proven track record and expertise in developing policies and procedures (e.g., information security or data governance), successfully executing programs that meet the objectives of excellence in a dynamic environment as well as experience working with relevant (incl. senior) stakeholders.
• Demonstrated record of subject matter expertise in key risk issues (Digital, AI, Software Development, Privacy, Cyber, etc.)
• Significant experience managing complex global stakeholder relationships and cultivating trust-based, counselor relationships with senior firm leaders (including CSRC and Client Committee members); experience presenting to regulators and / or senior stakeholders.
• First line” technical or consulting experience in DnA or tech risk management.
• Strong people leader, with the ability to inspire a group of colleagues and build support around a shared mission and vision.
• Strong stakeholder management and leadership communication skills, with ability to engage productively with the firm’s senior-most stakeholders
• Strong critical reasoning and integrative problem-solving skills with the ability to absorb new information rapidly and grapple with a wide range of complex issues.
• Ability to influence stakeholders across all levels of seniority by cultivating trust-based relationships; has a reputation as a highly credible expert within the domain of shaping contribution and / or developing knowledge beyond the domain.
• Familiarity with technology delivery, agile methodology, digital transformations, and business building.
• Strong ability to structure and synthesize learnings and feedback into clear, effective written documents, mainly leadership updates.
• Solutions-oriented and resilient; experienced and comfortable engaging in challenging discussions with senior colleagues from diverse backgrounds, balancing robustness and persistence with diplomacy, flexibility, tact, and calm under pressure.
• Entrepreneurial and collaborative, with the demonstrated ability to work effectively as part of a global team; recognized people leader.
• Exceptional judgment, with strong personal presence and credibility.
• Excellent analytical skills; proven ability to juggle complex, sensitive, time-critical issues and quickly get up to speed on unfamiliar topics.
• Highly resilient and self-motivated, with an action-oriented style; demonstrated ability to work effectively as part of a global team.
• Professional certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Privacy Technologist (CIPT) are highly desirable.
• Relevant knowledge of relevant enterprise risk, AI, and security frameworks and regulation.