Director, IT Risk Management

Job Title: Director, IT Regulatory Risk

Introduction: We are actively searching for a Director of IT Regulatory Risk who will function as a strategic leader and subject matter expert within our technology organization. This pivotal role demands not only a profound understanding of regulatory processes but also extensive direct experience working with regulatory bodies. The ideal candidate will be an individual contributor adept in establishing and leading regulatory programs, with substantial technological and regulatory expertise.

Key Responsibilities:

• Strategic Regulatory Program Leadership: Develop and manage the regulatory audit program tailored to the technology sector, encompassing pre-exam preparation, during-exam strategies, and post-exam remediation and response.
• Direct Regulatory Engagement: Act as the principal liaison for the organization during regulatory audits and examinations. Strategize and manage direct interactions with regulators, ensuring effective communication and negotiation before, during, and after regulatory assessments.
• Expertise in Technology and Regulation: Apply a deep understanding of technology principles in guiding the organization's compliance with regulatory demands. Strategically enhance and revamp systems and processes to meet and exceed regulatory standards.
• Risk Management Oversight: Take full ownership of risk management activities within the technology framework, demonstrating proactive risk assessment, mitigation, and management strategies. Establish and maintain robust internal controls.
• Organizational Development: Build or significantly improve the risk management infrastructure if none currently exists, ensuring it aligns with broader enterprise risk management practices.

Qualifications:

• Bachelor’s degree in Business Administration, IT, Security, or related field; advanced degree preferred.
• Minimum of 10 years’ experience in risk management within the financial services sector, with substantial and direct involvement in regulatory engagements and audit processes.
• Demonstrated heavy experience working directly with financial regulators, including extensive involvement in the planning and execution of regulatory examinations.
• Strong strategic leadership skills, with the ability to communicate authoritatively and confidently with senior management.
• Profound knowledge of technological principles essential for effective IT risk management.
• Risk management, internal control, or internal audit certifications are highly desirable.

Preferred Qualifications:

• Proven track record in initiating and leading a risk management department, particularly within a technology-driven environment.
• Demonstrated success in change management and effective problem-solving in regulated industries.