Sr. Manager, Technology Governance

If interested, please email Ian Ostberg @iostberg@alexandertg.com with a current resume and upcoming availability.

Sr. Manager, Technology Governance

Boston, MA (Hybrid - MUST be local to Greater Boston)

This position will report to the Director of Technology Governance and partner with the technology teams as well as Audit, Risk and Human Resources functions. This individual will engage regularly with the CTO and technology leadership team as well as other members of the leadership team and investment teams across the firm to drive successful outcomes.

This is a hybrid work environment opportunity located in Boston, Massachusetts with a weekly in office schedule of Tuesdays, Wednesdays and Thursdays and remote work availability on Mondays and Fridays.

Baseline Requirements

• Cloud security experience
• Understanding of cloud control matrix framework
• Access control
• SSDLC – Gitlab Github
• Audit Findings

Primary Responsibilities

• Develop/implement policies, procedures and standards (PSP) that are related to Change Management, System Development Life Cycle, Access Controls, and other key IT related areas. On a periodic basis, facilitate with the Standard Review Board to ensure all PSPs are renewed and changes are reflected.
• Work closely with the Director of Technology Governance as a team of two for the design and implementation of the central Identity Access Management (IAM) process and systems.
• Identity/Create Cloud security framework and processes for the Technology Team and implement periodic assessment as part of the 1st line of defense to identify control gaps and assist with remediation prior to the 2nd and 3rd line of defense exam.
• Support and work with key stakeholders to bring the technology environment into a central access provisioning process and streamline the approval workflows.
• Liaise with audit, technology area leaders to identify key areas of improvement, draft audit management response/action plan.
• Assist the technology team to implement those key action plans to remediate any audit related findings.
• Identity IT control gaps and create/implement key controls for the technology organization.
• Provide key project support, include but not limited to support implementation progress, issues and resolve them in a timely manner.
• Support and lead special technology governance projects as needed.
• Identify potential need and provide project support including monitoring implementation progress and helping to manage and resolve risks and issues.
• Manage/Support periodic user access review.
  
  

Skills You Bring

• Minimum of 10 years of work experience in governance, audit, compliance, risk, and / or security.
• Bachelor’s or Master’s degree in computer science or related field; CISA, CISM or similar certification required.
• High-level knowledge of IT risk across applications, infrastructure and data.
• Extensive knowledge of technology controls in various IT environments, especially in the cloud environment.
• Experience implementing review and approval processes within a Secure Software Development Lifecycle (SSDLC), including use of modern fully integrated and automated processes within the CI/CD pipeline.
• Ability to effectively communicate and obtain buy-in at all levels of the organization and with internal stakeholders across the business.
• Working familiarity with Agile product management methodologies such as Scrum/Kanban.
• High attention to detail and quality, while balancing both practicality and value-creation.
• Excellent verbal and written communication skills.
• Strong understanding of Legal, Risk, Compliance, and Cybersecurity concerns.
• Previous experience of working with Internal Audit on drafting management response and close audit findings.
• Strong relationship building, organization, and critical thinking skills.
  
  

If interested, please email Ian Ostberg @iostberg@alexandertg.com with a current resume and upcoming availability.ATG456

*MONATG*