Citizens
Technology Risk Manager- Security, Monitoring and Testing
Citizens, Providence, Rhode Island, United States,
Technology Risk Manager- Security, Monitoring and Testing
Return To Work Program For Parents and VeteransAbout This WorkplaceCitizens is one of the nation’s oldest and largest financial institutions, offering a broad range of retail and commercial banking products and services to individuals, small businesses, middle-market companies, large corporations and institutions.As a part of our team, you’re made ready for a fulfilling career with exciting new challenges and opportunities to stretch yourself! As an Enterprise Technology & Security, Monitoring and Testing Risk Manager, you will partner with the First Line Risk Managers, whom directly support the Technology and Cybersecurity Organizations, and you will be responsible for executing the control monitoring and testing program for multiple complex lines of business and/or products throughout. You will be responsible for keeping the First Line Risk Manager apprised of testing progress and providing your opinion on control effectiveness results including analysis of themes and findings. As the Risk Manager, you will assist in the training and development of the Monitoring and Testing colleagues. Most importantly, at Citizens we’re more than a bank and here you’ll experience new things, create new opportunities, think beyond your role and make an impact.Key Responsibilities:Partner with the First Line Risk Managers, execute the control monitoring program for multiple complex lines of business and/or products.Work within established timelines to deliver control self testing and key risk indicator monitoring, which are critical to determining control environment effectiveness.Through workshops, identify and implement continuous monitoring and risk-adjusted control testing. Increase the use of Key Risk Indicators (KRIs) / Key Control Indicators (KCIs), automated testing and data analytics to provide value and insight to key stakeholders.Conduct testing and determine if enhanced controls are effective to support issue closure.Execute control testing to ensure compliance with regulations and applicable frameworks.Provide detailed analysis explaining drivers in control trends over time and recommendations to the assessment method. Present analysis of testing and monitoring outcomes to key stakeholders.Maintain up-to-date understanding of business processes along with regulatory, statutory and legislative requirements for risk management and controls.Assess material controls, monitor and evaluate proper escalation procedures are in place to ensure compliance with key rules and regulations. Input control monitoring results into the system of record. Keep the Risk Manager apprised of testing progress, provide an opinion on control effectiveness results including analysis of themes and findings.Provide recommendations to First Line Risk Managers on control inventory enhancements.Collect the outputs of control monitoring results for management’s use.Analyze results that summarize key issues and recommended actions to present findings for business line management.Participate in Quarterly Control Assessment Forecasting.Participate in the Risk and Control Self Assessment (RCSA) process, creation and validation of process maps which reflect key business line processes and related controls. Based on RCSA output, partner with subject matter experts to create new tests, refresh existing tests, retire tests and develop key risk indicators (KRIs) based on areas of material risk.Role will act as a technical expert in support of critical business processes and will be the primary point of contact for the topic and responsible for providing knowledge, expertise, and support to the Technology and Cybersecurity Organizations.Establishes and cultivates a strong working relationship with the respective Business Unit Risk Management teams to advance the culture and effectiveness of a synchronized approach to risk management in respect of current, new or emerging applicable banking law and regulation as well as internal corporate compliance policy and procedures.Desired Profile:5-7 years experience in Risk Management.Demonstrated experience in systems architecture, cybersecurity, infrastructure, technology operations, development life cycle and methodologies, cloud operations, information security and/or DevSecOps.Strong understanding of technology as a service (IaaS, SaaS, PaaS).Demonstrated experience supporting and/or leading risk projects across multiple business lines offering a wide variety of financial services products and services.Understanding of the regulatory environment, requirements and how the risks of the products and services the bank offers are viewed by the Second Line of Defense and regulators.Ability to constructively work both independently and in collaborative environments involving all levels of management and employees.Ability to use data and metrics to back up assumptions, recommendations and drive actions.Experience in business domains such as risk management, human resources, supply chain management.Effective project management and analytical skills.Strong interpersonal and team building skills.Ability to build and expand trusting relationships and partnerships.Ability to work independently.Results oriented with proven track record of delivering high quality results within strict deadlines.Highly-organized and able to manage concurrent projects while meeting or exceeding deadline requirements.Experience delivering under tight deadlines while maintaining quality standards.Proficient use of MS Word, MS Excel and PowerPoint and Visio.Excellent business writing skills.Experience in Alteryx and Python preferred.Experience in an organization that is under strong regulatory oversight and scrutiny.Qualification:Bachelor's Degree OR at least 5 years of work experience. Bachelor’s Degree: Accounting, Business, Statistics, Risk Management, Information Systems, Finance, Economics or equivalent field or equivalent work experience.Certifications Preferred: Certified Internal Auditor, Certified Regulatory Compliance Manager, Certified Fraud Examiner, Certified Public Accountant, Project Management Professional, Certified in Risk and Information System Controls, or other relevant risk certification.
#J-18808-Ljbffr
Return To Work Program For Parents and VeteransAbout This WorkplaceCitizens is one of the nation’s oldest and largest financial institutions, offering a broad range of retail and commercial banking products and services to individuals, small businesses, middle-market companies, large corporations and institutions.As a part of our team, you’re made ready for a fulfilling career with exciting new challenges and opportunities to stretch yourself! As an Enterprise Technology & Security, Monitoring and Testing Risk Manager, you will partner with the First Line Risk Managers, whom directly support the Technology and Cybersecurity Organizations, and you will be responsible for executing the control monitoring and testing program for multiple complex lines of business and/or products throughout. You will be responsible for keeping the First Line Risk Manager apprised of testing progress and providing your opinion on control effectiveness results including analysis of themes and findings. As the Risk Manager, you will assist in the training and development of the Monitoring and Testing colleagues. Most importantly, at Citizens we’re more than a bank and here you’ll experience new things, create new opportunities, think beyond your role and make an impact.Key Responsibilities:Partner with the First Line Risk Managers, execute the control monitoring program for multiple complex lines of business and/or products.Work within established timelines to deliver control self testing and key risk indicator monitoring, which are critical to determining control environment effectiveness.Through workshops, identify and implement continuous monitoring and risk-adjusted control testing. Increase the use of Key Risk Indicators (KRIs) / Key Control Indicators (KCIs), automated testing and data analytics to provide value and insight to key stakeholders.Conduct testing and determine if enhanced controls are effective to support issue closure.Execute control testing to ensure compliance with regulations and applicable frameworks.Provide detailed analysis explaining drivers in control trends over time and recommendations to the assessment method. Present analysis of testing and monitoring outcomes to key stakeholders.Maintain up-to-date understanding of business processes along with regulatory, statutory and legislative requirements for risk management and controls.Assess material controls, monitor and evaluate proper escalation procedures are in place to ensure compliance with key rules and regulations. Input control monitoring results into the system of record. Keep the Risk Manager apprised of testing progress, provide an opinion on control effectiveness results including analysis of themes and findings.Provide recommendations to First Line Risk Managers on control inventory enhancements.Collect the outputs of control monitoring results for management’s use.Analyze results that summarize key issues and recommended actions to present findings for business line management.Participate in Quarterly Control Assessment Forecasting.Participate in the Risk and Control Self Assessment (RCSA) process, creation and validation of process maps which reflect key business line processes and related controls. Based on RCSA output, partner with subject matter experts to create new tests, refresh existing tests, retire tests and develop key risk indicators (KRIs) based on areas of material risk.Role will act as a technical expert in support of critical business processes and will be the primary point of contact for the topic and responsible for providing knowledge, expertise, and support to the Technology and Cybersecurity Organizations.Establishes and cultivates a strong working relationship with the respective Business Unit Risk Management teams to advance the culture and effectiveness of a synchronized approach to risk management in respect of current, new or emerging applicable banking law and regulation as well as internal corporate compliance policy and procedures.Desired Profile:5-7 years experience in Risk Management.Demonstrated experience in systems architecture, cybersecurity, infrastructure, technology operations, development life cycle and methodologies, cloud operations, information security and/or DevSecOps.Strong understanding of technology as a service (IaaS, SaaS, PaaS).Demonstrated experience supporting and/or leading risk projects across multiple business lines offering a wide variety of financial services products and services.Understanding of the regulatory environment, requirements and how the risks of the products and services the bank offers are viewed by the Second Line of Defense and regulators.Ability to constructively work both independently and in collaborative environments involving all levels of management and employees.Ability to use data and metrics to back up assumptions, recommendations and drive actions.Experience in business domains such as risk management, human resources, supply chain management.Effective project management and analytical skills.Strong interpersonal and team building skills.Ability to build and expand trusting relationships and partnerships.Ability to work independently.Results oriented with proven track record of delivering high quality results within strict deadlines.Highly-organized and able to manage concurrent projects while meeting or exceeding deadline requirements.Experience delivering under tight deadlines while maintaining quality standards.Proficient use of MS Word, MS Excel and PowerPoint and Visio.Excellent business writing skills.Experience in Alteryx and Python preferred.Experience in an organization that is under strong regulatory oversight and scrutiny.Qualification:Bachelor's Degree OR at least 5 years of work experience. Bachelor’s Degree: Accounting, Business, Statistics, Risk Management, Information Systems, Finance, Economics or equivalent field or equivalent work experience.Certifications Preferred: Certified Internal Auditor, Certified Regulatory Compliance Manager, Certified Fraud Examiner, Certified Public Accountant, Project Management Professional, Certified in Risk and Information System Controls, or other relevant risk certification.
#J-18808-Ljbffr