Primary Location: United States,Texas,Irving
Other Location: United States,Florida,Jacksonville
Education: Bachelor's Degree
Job Function: Risk Management
Shift: Day Job
Employee Status: Regular
Travel Time: Yes, 10 % of the Time
Job ID: 18058770
Citi, the leading global bank, has approximately 200 million customer accounts and does business in more than 160 countries and jurisdictions. Citi provides consumers, corporations, governments and institutions with a broad range of financial products and services, including consumer banking and credit, corporate and investment banking, securities brokerage, transaction services, and wealth management. Our core activities are safeguarding assets, lending money, making payments and accessing the capital markets on behalf of our clients.
Citi's Mission and Value Proposition explains what we do and Citi Leadership Standards explain how we do it. Our mission is to serve as a trusted partner to our clients by responsibly providing financial services that enable growth and economic progress. We strive to earn and maintain our clients' and the public's trust by constantly adhering to the highest ethical standards and making a positive impact on the communities we serve. Our Leadership Standards is a common set of skills and expected behaviors that illustrate how our employees should work every day to be successful and strengthens our ability to execute against our strategic priorities.
Diversity is a key business imperative and a source of strength at Citi. We serve clients from every walk of life, every background and every origin. Our goal is to have our workforce reflect this same diversity at all levels. Citi has made it a priority to foster a culture where the best people want to work, where individuals are promoted based on merit, where we value and demand respect for others and where opportunities to develop are widely available to all.
Consumer Business Operational Risk and Control O&T
This Risk Manager role will be part of the Consumer Business Operational Risk & Control - Tech Organization reporting to the Global CBORC-Tech Head and will matrix report to the GCT Chief Technology Office (CTO) CIO. The GCT CTO organization provides services including Architecture strategy, SDLC process definition and tooling, Production/Incident Management, and strategic platform roadmap definition and management.
This role will be a strategic role given the importance of managing the day-to-day, in-business activity across the GCT CTO organization and requires an in depth, hands-on understanding of system architecture principles and technology platforms, industry standard common design patterns, and model driven development, as well as a thorough understanding of industry and corporate technology standards for Risk Management. Activities include oversight of the Risk Control resources monitoring processes and procedures needed to achieve Risk & Control management across the GCT CTO organization.
Specific responsibilities include:
identifying risk by analyzing emerging security threats and potential impact to the business and partnering on the development of solutions to mitigate business exposure by leveraging expert analytical and technical skills;
management of the IT Risk Control Program for GCT CTO, including the development and measurement of key risk indicators;
oversight of the corrective action program for GCT CTO;
management of all activities related to external/internal audits and reviews affecting GCT CTO;
oversight of the Quality Assurance/Process Validation and Manager Control Assessment (MCA) programs within GCT CTO;
advises and provides direction to senior business and IT leaders on risk management decisions;
resolves the highest impact, highest profile problems/projects with significant business impact through in-depth evaluation of complex business processes, system processes, and industry standards;
directly impacts the business through contribution to technical direction and strategic decisions related to GCT CTO risk management;
influences and negotiates with senior leaders (across functions) to deliver risk management capabilities;
and oversight of the operational risk program for GCT CTO. The candidate will also be responsible for the management of a staff of 6 or more exempt officers as well as coordination with and participation in cross-functional teams associated with GCT Risk Control and other Technology initiatives.
Responsibilities include, but may not be limited to:
In depth knowledge of Technology risk and control tools and techniques and an ability to coach and manage others in using them;
Establish governance with first, second and third line of defense for identifying and managing risks for consumer technology. Engage in regional risk forums, BRCC, Internal & External Audit Exams for GCT CTO.
Perform targeted assessments to evaluate operational risk of new strategic initiatives.
Perform targeted reviews of entity tech processes and execution maturity
Perform risk maturity reviews of product suite of applications.
Management of the IT Risk Control Program for GCT CTO, including the development and measurement of key risk indicators.
Provide thought leadership and drive proactive engagement /forward looking risk management by analyzing emerging security threats and potential impact to the business and partnering on the development of solutions to mitigate business exposure by leveraging expert analytical and technical skills.
Partner on process definition and influence policy changes for SDLC lifecycle activities, architecture policy, production/incident management, etc.
Ensure there is a strong Escalation culture throughout Global Consumer Technology;
Build strong relationships with stakeholders, including Technology leaders and second and third lines of defense;
Work with Technology teams (directly) as well as business teams to ensure adequate preparation for upcoming audits and exams;
Orchestrate and drive the successful & timely completion of regulatory and Audit commitments working in partnership with all relevant stakeholders;
Communicate to all stakeholders (including Senior Management) on a timely basis in a clear way
Draft correspondence related to governance matters.
Draft and present decks and assist in the preparation of Committee meeting agendas and minutes.
Assist in responding to requests for information and documents from the company's internal and external auditors, regulators, and other stakeholders.
Strong People Management skills. Ability to lead, coach and develop direct reports across the organization. Focus on leading a productive work environment and drive employee engagement efforts across the organization in order to drive the culture with the team.
Assesses the spectrum of risks and how those risks arise from all new product offerings for respective coverage groups.
Identifies key risk indicators and works with the business on development and challenging to ensure appropriate risk monitoring.
Identifies reputational risk and its operational/financial cause/effects. Manages situations that create risk and legal liabilities for Citi.
Knowledgeable about risk systems infrastructure including key processes, coverage and data flows in order to identify risk effectively.
10 years' experience in a dynamic Technology Risk and Control, audit, or Technical environment;
Demonstrated knowledge of system architecture principles and technology platforms, industry standard common design patterns, and model driven development
Demonstrated track record in bringing value to the CIO through being an effective Partner and Challenger in the right circumstances;
Demonstrated ability to execute risk assessments and deliver actionable mitigation recommendations;
Demonstrated ability to define and implement effective control monitoring metrics and thresholds;
Demonstrated ability to independently operate in a complex, cross Line of business environment;
Exemplary written and oral communication skills which can be leveraged to consistently succeed at all levels of the organization;
Minimum education at a Bachelor's Degree level;
Experience in working with Risk and Control tools which are relevant to a dynamic Operations environment e.g. Change Management, Agile, MCA, KRI's, CitiRisk etc.;
Experience and ease in interfacing with Senior Management and Regulators;
Individual should be analytical, flexible, team-oriented, have good interpersonal, communication, and follow-up skills with strong attention to detail and ability to multi-task
Governance experience essential.