VP, IT Operational Risk
New York, NY, USA | Apple Bank
Industry:Banking / Investment Banking
IT / Information Technology
Job Description:74 people have viewed this job
This position reports to the Head of Operational Risk, and provides second line of defense oversight and effective challenge for all non-financial risks.The individual will support the Head of Operational Risk to execute the operational risk framework including but not limited to the risk and control self-assessment (RCSAs) process, control testing, key risk indicators, incident loss data reporting, etc.The individual will support the execution of risk management activities by identifying, quantifying, reviewing, evaluating, and measuring risk to ensure all risk categories are identified and managed or mitigated in accordance with regulatory compliance and audit requirements.
Essential Job Functions:
Manage relationships with Technology, Third Party Vendor Management, Business Continuity/Disaster Recovery, etc.
Assist leadership in the implementation of ORM initiatives (new and ongoing) in various stages to business as usual (BAU), including Incident Reporting, Control Testing, Issue Management, Scenario Analysis, New Product Committee, etc.
Identify, evaluate and monitor IT risks across the project life cycle through collaboration with key stakeholders and service delivery organizations to ensure project and operational risks are appropriately assessed and addressed.
Provide subject matter expertise in the areas of information security, cyber security, business resiliency and IT project risk management and develop related risk analysis for management
Execute the RCSAs including facilitating workshops and documenting key risks and controls, and action plans to remediate control gaps.
Manage Incident Loss Data and post incident reviews (internal and external), including root cause analysis of significant fraud and other risk events.
Monitor and manage the Control Testing program, and perform control testing validation and oversight as it relates to IT and third party vendors.
Partner with management to identify applicable Key Risk Indicators and to coordinate root cause analysis, action plan development and implementation of needed updates.
Perform ongoing monitoring of risks and controls and partners with the business to self-identify issues for tracking of issues and remediation plans.
Facilitate, coordinate, and review risk documentation such as policies, procedures, etc.
Prepare presentation materials for the firm’s various risk governance committees, new product committee, working groups, and internal meetings.
Assist leadership to manage and communicate progress internally and externally.
Team player in an involving operational risk management environment, incorporating a positive and flexible approach.
Skills and Qualifications:
Bachelor’s degree required; Master’s degree preferred.
Minimum of 8-10 years of experience in information technology, business resiliency, risk management, operations, project management, audit, compliance, or a related role, preferably in the commercial banking or financial services industry.
Applicable certifications in risk management related to IT risk and/or third party vendor risk.
Strong project management skills, with the ability to manage several projects at once.
Strong communication and interpersonal skills.
Strong analytical skills and ability to develop solutions to complex problems.
Strong knowledge of compliance laws, rules, regulations, risks and controls (BSA/AML, etc.).
Must have strong knowledge of Microsoft Office suite of products.
Experience with Incident Reporting and/or GRC tools a plus.
Alrdeady a member? Sign In