Principal Enterprise Risk Consultant (Remote)

Overview

This is a remote role that may be hired in several markets across the United States. This position is senior second line of defense individual contributor role responsible for strengthening IT risk governance across the enterprise. Using expert knowledge, the role provides independent oversight of technology risk, designs and operationalizes IT risk oversight methodologies, and partners with business and first line teams to ensure risks are identified, assessed, and mitigated. The position combines deep understanding of technical risk expertise with leadership: influencing decisions, mentoring colleagues, and shaping how the organization monitors and reports IT Risk.

Responsibilities

• Risk Oversight & Monitoring - Provides expert oversight of risks through effective challenge using defined methodologies and subject matter expertise. Provides leadership, consultation, and support for risk management. Fosters business unit relationships and implements training to promote engagement in risk management programs, including compliance with all risk policies and standards. May assist with presentations, workshops, and other materials as necessary to communicate risk management tactics. Provides guidance to less experienced associates in the department.
• Business Support - Acts as the second line advisor to business and technology leaders on IT risk decisions, control design, and remediation strategies. Provides guidance to first line to ensure pragmatic, prioritized action plans, are achievable to mitigate risk within defined risk appetite. Provides subject matter expertise during project life cycles, major changes, and incidents to ensure risk is considered early and consistently.
• Collaboration - Leads cross functional initiatives by convening stakeholders, influencing outcomes, and driving consensus. Builds and maintains strong and effective relationships with stakeholders across the Bank cross-functionally and collaboratively, to develop common and effective risk identification, quantification, and remediation plans. Partners with business units and stakeholders on developing, implementing, and maintaining a business resilience framework that elevates existing business continuity processes and activities throughout the enterprise.
• Reporting - Develop and maintain standardized reporting templates and playbooks to ensure consistent timely communication of risk issues. Use data driven narratives to surface root cause and systemic issues that require attention. Compiles clear, accurate and timely reports and metrics for senior management.

Qualifications

• Bachelor's Degree and 8 years of experience in Enterprise Risk, or Operational Risk including project management OR High School Diploma or GED and 12 years of experience in Enterprise Risk, or Operational Risk including project management Preferred Qualifications
• Domain knowledge: Strong understanding of IT risk domains including application security, data loss prevention, infrastructure, cloud, identity and access management, change management and third-party risk.
• Leadership and influence: Demonstrated leadership and ability to influence senior stakeholders across business and technology.
• Analytics and technical skills: Comfort with data analytics, risk dashboards, and tools used for continuous monitoring.
• Certifications: CRISC, CISSP, CGEIT, CISA and/or GSEC. This job posting is expected to remain active for 5 days from the initial posting date listed above. If it is necessary to extend this deadline, the posting will remain active as appropriate. Job postings may come down early due to business need or a high volume of applicants. The base pay for this position is generally between $133,000 and $200,000. Actual starting base pay will be determined based on skills, experience, location, and other non-discriminatory factors permitted by law. For some roles, total compensation may also include variable incentives, bonuses, benefits, and/or other awards as outlined in the offer of employment. First Citizens benefits programs are designed to meet our associates where they are in life. Full-time associates (20+ hours) are offered a comprehensive benefits program, with customized offerings, including those designed to support families, however defined. More information regarding our benefits offerings can be found here:

Apply tot his job Apply To this Job