Technology Risk Manager- Security, Monitoring And Testing

Description

As a part of our team, you're made ready for a fulfilling career with exciting new challenges and opportunities to stretch yourself! As an Enterprise Technology & Security, Monitoring and Testing Risk Manager, you will partner with the First Line Risk Managers, whom directly support the Technology and Cybersecurity Organizations, and you will be responsible for executing the control monitoring and testing program for multiple complex lines of business and/or products throughout. You will be expected to work within established timelines to deliver control self testing and automated key control indicators, which are critical to determining control environment effectiveness. You will be responsible for assessing material controls, as well as monitoring and evaluating proper escalation procedures in place to ensure compliance with key rules and regulations. You will work closely with the First Line Risk Managers to organize and initiate investigations into control failures and related issues. Additionally, you should maintain up to date knowledge of regulatory, statutory, and legislative requirements for risk management and controls to ensure compliance with all applicable requirements. You will be responsible for keeping the First Line Risk Manager apprised of testing progress and providing your opinion on control effectiveness results including analysis of themes and findings. As the Risk Manager, you will assist in the training and development of the Monitoring and Testing colleagues. Most importantly, at Citizens we're more than a bank and here you'll experience new things, create new opportunities, think beyond your role and make an impact!

Primary responsibilities include

• Partner with the First Line Risk Managers, execute the control monitoring program for multiple complex lines of business and/or products.

• Work within established timelines to deliver control self testing and key risk indicator monitoring, which are critical to determining control environment effectiveness.

• Through workshops, identify and implement continuous monitoring and risk-adjusted control testing. Increase the use of Key Risk Indicators (KRIs) / Key Control Indicators (KCIs), automated testing and data analytics to provide value and insight to key stakeholders.

• Conduct testing and determine if enhanced controls are effective to support issue closure.

• Execute control testing to ensure compliance with regulations and applicable frameworks.

• Provide detailed analysis explaining drivers in control trends over time and recommendations to the assessment method. Present analysis of testing and monitoring outcomes to key stakeholders.

• Maintain up-to-date understanding of business processes along with regulatory, statutory and legislative requirements for risk management and controls.

• Assess material controls, monitor and evaluate proper escalation procedures are in place to ensure compliance with key rules and regulations. Input control monitoring results into the system of record. Keep the Risk Manager apprised of testing progress, provide an opinion on control effectiveness results including analysis of themes and findings

• Provide recommendations First Line Risk Managers on control inventory enhancements

• Collect the outputs of control monitoring results for management's use.

• Analyze results that summarizes key issues and recommended actions to present findings for business line management.

• Participate in Quarterly Control Assessment Forecasting

• Participate in the Risk and Control Self Assessment (RCSA) process, creation and validation of process maps which reflect key business line processes and related controls. Based on RCSA output, partner with subject matter experts to create new tests, refresh existing tests, retire tests and develop key risk indicators (KRIs) based on areas of material risk.

• Role will act as a technical expert in support of critical business processes and will be the primary point of contact for the topic and responsible for providing knowledge, expertise, and support to the Technology and Cybersecurity Organizations.

• Establishes and cultivates a strong working relationship with the respective Business Unit Risk Management teams to advance the culture and effectiveness of a synchronized approach to risk management in respect of current, new or emerging applicable banking law and regulation as well as internal corporate compliance policy and procedures.

Qualifications

• 5-7 years experience Risk Management Experience

• Demonstrated experience in systems architecture, cybersecurity, infrastructure, technology operations, development life cycle and methodologies, cloud operations, information security and/or DevSecOps

• Strong understanding of technology as a service (Iaas, SaaS, PaaS)

• Demonstrated experience supporting and/or leading risk projects across multiple business lines offering a wide variety of financial services products and services.

• Understanding of the regulatory environment, requirements and how the risks of the products and services the bank offers are viewed by the Second Line of Defense and regulators.

• Ability to constructively work both independently and in collaborative environments involving all levels of management and employees

• Ability to use data and metrics to back up assumptions, recommendations and drive actions

• Experience in business domains such as risk management, human resources, supply chain management

• Effective project management and analytical skills

• Strong interpersonal and team building skills

• Ability to build and expand trusting relationships and partnerships

• Ability to work independently

• Results oriented with proven track record of delivering high quality results within strict deadlines

• Highly-organized and able to manage concurrent projects while meeting or exceeding deadline requirements

• Experience delivering under tight deadlines while maintaining quality standards

• Proficient use of MS Word, MS Excel and PowerPoint and Visio

• Excellent business writing skills

• Experience in Alteryx and Python preferred

• Experience in an organization that is under strong regulatory oversight and scrutiny

Education, Certifications and/or Other Professional Credentials

• Bachelor's Degree OR at least 5 years of work experience. Bachelor's Degree: Accounting, Business, Statistics, Risk Management, Information Systems, Finance, Economics or equivalent field or equivalent work experience.

• Certifications Preferred: Certified Internal Auditor, Certified Regulatory Compliance Manager, Certified Fraud Examiner, Certified Public Accountant, Project Management Professional, Certified in Risk and Information System Controls, or other relevant risk certification

Hours & Work Schedule

• Hours per Week: 40
• Work Schedule: M-F

#LI-Sourcer3

Some job boards have started using jobseeker-reported data to estimate salary ranges for roles. If you apply and qualify for this role, a recruiter will discuss accurate pay guidance.

Equal Employment Opportunity

At Citizens we value diversity, equity and inclusion, and treat everyone with respect and professionalism. Employment decisions are based solely on experience, performance, and ability. Citizens, its parent, subsidiaries, and related companies (Citizens) provide equal employment and advancement opportunities to all colleagues and applicants for employment without regard to age, ancestry, color, citizenship, physical or mental disability, perceived disability or history or record of a disability, ethnicity, gender, gender identity or expression (including transgender individuals who are transitioning, have transitioned, or are perceived to be transitioning to the gender with which they identify), genetic information, genetic characteristic, marital or domestic partner status, victim of domestic violence, family status/parenthood, medical condition, military or veteran status, national origin, pregnancy/childbirth/lactation, colleague's or a dependent's reproductive health decision making, race, religion, sex, sexual orientation, or any other category protected by federal, state and/or local laws.

Equal Employment and Opportunity Employer

Citizens is a brand name of Citizens Bank, N.A. and each of its respective affiliates.

Background Check

Any offer of employment is conditioned upon the candidate successfully passing a background check, which may include initial credit, motor vehicle record, public record, prior employment verification, and criminal background checks. Results of the background check are individually reviewed based upon legal requirements imposed by our regulators and with consideration of the nature and gravity of the background history and the job offered. Any offer of employment will include further information.

Benefits

We offer competitive pay, comprehensive medical, dental and vision coverage, retirement benefits, maternity/paternity leave, flexible work arrangements, education reimbursement, wellness programs and more.

View Benefits

Awards We've Received

FORTUNE's World's Most Admired Companies

Human Rights Campaign Corporate Equality Index 100 Award

Military Friendly Employer

Age-Friendly Institute's Certified Age-Friendly Employer

Bloomberg Gender Equality Index, Standout

Dave Thomas Foundation's Best Adoption-Friendly Workplace

DiversityInc

Top Regional Company for Diversity

Forbes America's Best Large Employers

National Organization on Disability's Leading Disability Employer