DescriptionJoin our dynamic team to navigate complex risk landscapes and fortify technology governance, making a pivotal impact in our firm's robust risk strategy.
As a Tech Risk & Controls Senior Associate in Compute Platforms & Network Services (CPNS), you will contribute to the successful management of technology-aligned aspects of Governance, Risk, and Compliance in line with the firm's standards. Leverage your broad knowledge in risk management principles and practices to assess and monitor risks and implement effective controls. Your role in risk identification, control evaluation, and security governance is crucial in advising on complex situations and enhancing the firm’s risk posture. Through collaboration and analytical skills, you will contribute to the overall success of the Technology Risk & Services team and ensure compliance with regulatory obligations and industry standards. The Tech Risk & Controls Resiliency Senior Associate is responsible for coordinating and tracking the operational execution of the Business and Technology Resiliency activities of CPNS. The Tech Risk & Controls Senior Associate will work across the organization to identify, socialize and mitigate resiliency related risks and provide analysis (data based and thematic) across the product line application portfolio. The role requires building strong working relationships with Application Owners, operate teams, clients and businesses to effectively provide end-to-end infrastructure services related to the recovery of the production applications, services and/or products, business functions and staff.
Job responsibilities
- Perform qualitative and quantitative analysis to determine thematic trends and areas of improvement and engagement across the portfolio
- Engage with product lines to drive remediation during post-analysis
- Create presentations capturing trends and issues of interest
- Facilitate communication, document and execute follow up actions, capture test results, and publish key reports
- Partner with product leads to create and maintain resiliency documentation
- Be a point of contact for CPNS for resiliency initiatives and associated incidents
- Support and document application recovery and/or failover processes
- Assess and monitor technology risks, ensuring compliance with firm standards, regulatory requirements, and industry best practices
- Support implementation of effective controls in collaboration with cross-functional teams and stakeholders
- Evaluate the effectiveness of existing controls, identify gaps, and recommend improvements to mitigate risks and enhance the firm's risk posture
- Analyze complex situations, provide advice on risk management strategies, and support the implementation of risk mitigation measures
Required qualifications, capabilities, and skills
- 3+ years of experience or equivalent expertise in technology risk management, information security, or a related field, with a focus on risk identification, assessment, and mitigation
- Experience or expertise in business resiliency
- Basic understanding of different database/ structures
- Data Analytical Skills using a selection of Excel, Qlik View, and familiarity with using JIRA
- Good written and verbal communication
- Strong team player
- Experience in risk identification, assessment, and control evaluation, with a strong understanding of industry standards
- Demonstrated ability to analyze complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders
- Proficient knowledge of risk management frameworks, regulations, and industry best practices
Preferred qualifications, capabilities, and skills
- CISM, CRISC, CISSP, or other industry-recognized risk certifications
- Resiliency-related certification
- Technology experience within investment banking or other financial institutions