Synchrony
AVP, Operational Risk – Information Technology Oversight
Synchrony, Costa Mesa, California, United States, 92626
Job Description:Role Summary/Purpose:The Operational Risk Management team is part of the 2nd Line of Defense (2LOD) within Synchrony. This role is responsible for performing independent operational risk oversight of information technology within Synchrony. This includes assessing and monitoring risks related to IT programs, adoption of emerging technologies and 3rd party risks specific to the IT function. The position reports to the VP, Information Technology Oversight.Essential ResponsibilitiesEngage the Information Technology organization in reviewing and assessing operational risks in the deployment and use of technologies.Monitor risks being accepted by the business and provide an independent assessment of the risk-taking activities.Perform formal assessments of technology risks using common processes within Risk Management, including Targeted Reviews, Concurrent Reviews and Continuous Monitoring.Independently investigate potential risks being taken by Information Technology teams and escalate through ORM processes.Understand risks of usage of public Cloud Service Providers (CSP’s) and monitor required and recommended risk mitigation strategies for Synchrony Application migrations to public Cloud.Understand risks of Generative Artificial Intelligence (GenAI) and monitor required and recommended risk mitigation strategies for use of GenAI in Synchrony. Escalate GenAI as needed for Model Governance review.Develop and implement new Risk Frameworks for Cloud, GenAI, and other emerging technologies leveraging available public best-in-class Frameworks to enable a consistent methodology for independent oversight and assessments of potential acquisitions and integrations made by Synchrony.Monitor new technology introduction processes for consistent risk-based execution.Contribute to and validate delivery on Alpha, Beta and General Availability requirements for Cloud and new technology certifications across IT teams (Applications and Infrastructure). Confirm evidence provided for each certification and ongoing sustainability of requirements for each phase. Escalate as needed where certification requirements are de-scoped or not maintained by 1LOD teams.Attend and represent 2LOD at multiple Technology Strategic planning sessions including but not limited to: Architecture Review Board (ARB), Artificial Intelligence Forum, and Program Increments (PI) sessions for various sprint teams (Cloud, Security, etc.).Perform concurrent reviews of IT programs related to the conversion or deconversion of partner/client portfolios.Review risks within IT third-party supplier base with consideration for unique risks based on the vendor relationship and services (e.g., purchased software, software as a service, service providers, staff augmentation, etc.).Design and implement new key risk indicators (KRI’s) and related thresholds to enhance the 2nd Line of Defense monitoring and business engagement.Manage risks and issues within Synchrony’s enterprise governance application (eGRC).Support annual SOX risk testing activities.Perform other duties and/or special projects as assigned.Qualifications/RequirementsBachelor’s degree with 5+ years of information technology or data analytics experience.Familiarity with information security and risk management concepts.Experience with Generative Artificial Intelligence and or end-usage.Experience with public Cloud technologies and use of Cloud Service Providers such as AWS.Desired CharacteristicsProven analytical skills with strong attention to detail and quality control of work product.Experience in financial services or banking industry with understanding of financial services regulatory environment.Experience in IT operations and/or application support.Experience with data sourcing and reporting processes with ability to design and implement new analytical capabilities.IT Project management experience.Proven experience working in an ambiguous environment with proven ability to explain complex concepts and support points of view.Strong presentation and communication skills with proven experience interacting with all levels of the organization.Proficiency in PC tools (Microsoft Suite, including: Word, Excel and PowerPoint).Excellent interpersonal skills - ability to foster relationships and create informal networks, both internal and external.Curiosity with the ability to learn new concepts.Grade/Level: 11The salary range for this position is
90,000.00 - 155,000.00
USD Annual and is eligible for an annual bonus based on individual and company performance.Legal authorization to work in the U.S. is required. We will not sponsor individuals for employment visas, now or in the future, for this job opening. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.Job Family Group:
Risk Management
#J-18808-Ljbffr
90,000.00 - 155,000.00
USD Annual and is eligible for an annual bonus based on individual and company performance.Legal authorization to work in the U.S. is required. We will not sponsor individuals for employment visas, now or in the future, for this job opening. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.Job Family Group:
Risk Management
#J-18808-Ljbffr