Tech Risk and Controls Lead
As a Tech Risk & Controls Lead in Cloud Foundational Services (CFS) function, you will be a part of a team that supports the regulatory engagement and response management , implementation of risk identification and assessment, mitigation strategies, controls and action plans for the firm. You will support process owners by testing the controls and assessing the risks based on an established risk assessment framework , and respond to internal and external audit and help with the controls management. As a valued member of the team, you will have the opportunity to learn and grow in a dynamic and fast-paced environment, making a tangible impact on technology risk and controls at the firm.
Job responsibilities:
Perform control reviews and risk assessment for the processes owned by CFS
Proactively identify risks and periodic reporting of the same
Supports process owners in managing operational risk and provides transparency to stakeholders
Assist in monitoring technology risks, ensuring compliance with firm standards, regulatory requirements, and industry best practices
Monitor and evaluate the effectiveness of implemented controls, contribute to the recommendations for improvements and addressing gaps in risk management
Communicate risk-related findings and updates to relevant stakeholders, ensuring alignment with organizational objectives and risk appetite
Manage regulatory engagements and review regulations related to Public cloud that may impact the firm .
Required qualifications, capabilities and skills
Formal experience or equivalent expertise in technology risk management, information security, or a related field
Proficient in risk identification, assessment, and control evaluation, with a strong understanding of industry standards
Demonstrate ability to analyze complex issues, develop risk mitigation strategies, and communicate effectively with stakeholders
Exposure to risk management frameworks, regulations, and industry best practices
Preferred qualifications, capabilities, and skills
- CISM, CRISC, CISSP, or other industry-recognized risk certifications