TECH RISK & CONTROLS Vice President: Regulatory and Risk Assessment Lead

Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management.

As a Tech Risk & Controls Lead in Cybersecurity and Technology Controls, you will be responsible for identifying and mitigating compliance and operational risks in line with the firm's standards. You will also provide subject matter expertise and technical guidance to technology-aligned process owners, ensuring that controls are operating effectively and in compliance with regulatory, legal, and industry standards. By partnering with stakeholders such as Product Owners, Business Control Managers, and Regulators, you will contribute to reporting a comprehensive view of the technology risk posture and its impact on the business. Your advanced knowledge of risk management principles will enable you to drive innovative solutions and manage a diverse team in a dynamic risk landscape.

We are seeking a Regulatory and Industry Risk Assessment Lead with a deep background in audit, regulatory, and industry risk assessments to join our growing Technology Risk and Controls organization. This role will serve as the primary assessment lead, interfacing with internal and external auditors, compliance and risk teams, and internal stakeholders including product and platform teams. The role involves advising on complex audits and ensuring continuous compliance with key regulatory frameworks such as SOX, PCI, GLBA, Swift, CHAPS, and other standards. The successful candidate will provide strategic direction and leadership in audit readiness, assessment practices, and control optimization.

1. Drive efficient and effective execution of assessments, ensuring alignment with organizational objectives, risk appetite, and regulatory requirements. Lead governance of issues raised, track concerns, and ensure timely closure of control deficiencies.
2. Provide expertise in regulatory assessments, ensuring adherence to frameworks like Swift and other standards.
3. Ensure effective identification, quantification, communication, and management of technology risks, focusing on root cause analysis and resolution recommendations.
4. Develop and maintain relationships with LOB technologists, assessment teams, and data officers to facilitate collaboration and shared goals.
5. Execute reporting and governance of controls, policies, issues, and measurements, providing insights into control effectiveness for senior management.
6. Proactively monitor control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and compliance.

• Proven experience in technology risk management, information security, or related fields, emphasizing risk identification, assessment, and mitigation.
• Familiarity with risk management frameworks, industry standards, and financial regulatory requirements (e.g., Swift, CHAPS).
• Expertise in data security, risk assessment & reporting, control evaluation, and governance, with a record of effective risk mitigation strategies.
• Ability to influence executive decision-making and translate technology insights into business strategies.

Certifications such as CISM, CRISC, CISSP, or similar are preferred.

Our professionals in Corporate Functions cover areas from finance and risk to human resources and marketing. Our corporate teams are essential for setting our businesses, clients, customers, and employees up for success.