What you'd actually do

Ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations

Develop and maintain robust relationships, becoming a trusted partner with LOB technologists, assessments teams, and data officers to facilitate cross-functional collaboration and progress toward shared goals

Execute reporting and governance of controls, policies, issue management, and measurements, offering senior management insights into control effectiveness and inform governance work

Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance

Skills

Required

Strong understanding of cybersecurity principles and technology control domains
Capability to design, build, and deploy AI agents/assistants to automate risk analysis and support Technology stakeholders on their priorities.
Collaborate with cross-functional teams (Business, Technology, Compliance, Controls) to embed risk and control practices into technology solutions.
Stay current with emerging threats, vulnerabilities, and advancements in AI-driven cybersecurity.
Ability to translate complex technical risks into actionable business insights.
Applied expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation
Familiarity with risk management frameworks, industry standards, and financial industry regulatory requirements
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies
Demonstrated ability to influence executive-level strategic decision-making and translating technology insights into business strategies for senior executives

Nice to have

CISM, CRISC, CISSP, or similar industry-recognized risk and risk certifications are preferred
Exposure to hands-on software engineering

Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management.

As a Tech Risk & Controls Lead within Asset and Wealth Management, you will identify and mitigate compliance and operational risks in alignment with the firm’s standards. You will provide subject matter expertise and technical guidance to technology-aligned process owners, ensuring that implemented controls operate effectively and comply with regulatory, legal, and industry requirements. By partnering with key stakeholders including Product Owners, Business Control Managers, and Regulators you will help deliver a comprehensive view of the technology risk posture and its impact on the business. Leveraging your advanced knowledge of risk management principles, practices, and theories, you will promote innovative risk solutions and lead a diverse team in a dynamic and evolving risk environment.

Job responsibilities

Ensure effective identification, quantification, communication, and management of technology risk, focusing on root cause analysis and resolution recommendations
Develop and maintain robust relationships, becoming a trusted partner with LOB technologists, assessments teams, and data officers to facilitate cross-functional collaboration and progress toward shared goals
Execute reporting and governance of controls, policies, issue management, and measurements, offering senior management insights into control effectiveness and inform governance work
Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance

Required qualifications, capabilities, and skills

Strong understanding of cybersecurity principles and technology control domains
Capability to design, build, and deploy AI agents/assistants to automate risk analysis and support Technology stakeholders on their priorities.
Collaborate with cross-functional teams (Business, Technology, Compliance, Controls) to embed risk and control practices into technology solutions.
Stay current with emerging threats, vulnerabilities, and advancements in AI-driven cybersecurity.
Ability to translate complex technical risks into actionable business insights.
Applied expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation
Familiarity with risk management frameworks, industry standards, and financial industry regulatory requirements
Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies
Demonstrated ability to influence executive-level strategic decision-making and translating technology insights into business strategies for senior executives

Preferred qualifications, capabilities, and skills

CISM, CRISC, CISSP, or similar industry-recognized risk and risk certifications are preferred
Exposure to hands-on software engineering