Business Controls Jobs (NOW HIRING)

Make banking a Fifth Third better®
We connect great people to great opportunities. Are you ready to take the next step? Discover a career in banking at Fifth Third Bank.
Why Fifth Third?

• Be part of a purpose-driven bank that puts customers, communities, and employees first
• Play a key role in the Bank's cloud adoption, digital transformation, and platform modernization
• Work in a culture that values collaboration, inclusion, integrity, and continuous improvement
• Grow your career while helping modernize banking in a well-governed, responsible way

Fifth Third Bank is on an exciting digital modernization journey, transforming how millions of customers bank through innovative digital channels, cloud-native platforms, and modern engineering practices. We are looking for a Manager-level risk leader to support our Digital Channels and cloud-based platforms, including AWS-powered customer-facing and enabling services.
This role sits at the intersection of digital product delivery, cloud technology, and enterprise risk management, partnering closely with product and technology teams to ensure innovation happens securely, responsibly, and within risk appetite.
GENERAL FUNCTION:
As first line of defense, provides business leadership related to identifying, assessing, mitigating, and managing risk and ensures the existence of appropriate digital product, platform, and cloud supervisory controls. This position is primarily focused on Digital Channels and supporting cloud-based platforms, including customer-facing web, mobile, API, and enabling services.
This highly visible position works as part of a team across the line of business and technology functions to ensure transparency and understanding of digital operating issues, cloud risk, technology dependencies, and opportunities, including the sound governance, administration, and oversight of business activities. Evaluates the technology, cloud service provider, cybersecurity, regulatory, and market environment to anticipate changes and ensure appropriate alignment with evolving business scenarios.
Responsible and accountable for risk by openly exchanging ideas and opinions, elevating concerns, and personally following policies and procedures as defined. Accountable for always doing the right thing for customers and colleagues, ensuring that actions and behaviors drive a secure, resilient, and positive digital customer experience. While operating within the Bank's and LOB's risk appetites, achieves results by consistently identifying, assessing, managing, monitoring, and reporting risks of all types.
ESSENTIAL DUTIES AND RESPONSIBILITIES:

• Establishes processes that include first line of defense risk limits, with policies ensuring that risks associated with digital channels, cloud platforms, and AWS-based solutions are effectively identified, measured, monitored, and controlled, consistent with the Bank's and LOB's risk appetite statements and concentration risk limits.
• Helps define digital and cloud risk strategies and implements controls, policies, and procedures to increase effectiveness and efficiency across cloud development, platform operations, and digital product delivery.
• Influences senior business, product, and technology leaders to ensure enforcement of strong risk and governance practices while balancing digital strategy and innovation.
• Implements and communicates the organization's mission, goals, and strategies regarding business controls within the Enterprise Risk Management (ERM) framework, with particular emphasis on technology, platform, and product risk.
• Proactively manages relationships with other internal business control groups and the Second and Third Lines of Defense (including Compliance, Legal, Enterprise Risk, Cybersecurity, and Audit), and represents the LOB or function on appropriate Bancorp Risk and Technology Governance committees.
• Highlights control breakdowns related to cloud architecture, AWS configurations, SDLC, DevOps pipelines, resiliency, and data protection, and implements corrective actions to remediate deficiencies.
• Quickly and efficiently resolves issues raised by the Second and Third Lines of Defense and external auditors, particularly those related to cloud, digital, third-party, and technology risks.
• Leverages strong regulatory knowledge to ensure compliance with all applicable laws, regulations, standards, and requirements, including but not limited to OCC Heightened Standards, as applied to digital and cloud-based delivery models.
• Executes organizational design and effectiveness to establish a structure that maximizes governance and productivity across digital platforms and cloud technologies, with appropriately skilled talent.
• Manages and provides comprehensive reporting that captures and prioritizes key digital, cloud, and platform issues resulting from the business, control functions, audit, or other internal and external sources.
• Provides guidance and training on effective implementation and monitoring of Enterprise Risk Management frameworks for digital products, cloud services, and AWS environments.
• Reviews policies for completeness and adherence to Bancorp and LOB risk appetites, including policies related to digital delivery, cloud usage, and technology governance, and ensures policies are maintained centrally in the Policy Center.
• Leads execution of regulatory change management programs impacting digital banking, cloud computing, data, cybersecurity, and technology operations.
• Reviews self-identified issues to determine alignment to the LOB or function, assigns issue ownership, provides credible challenge and approval on severity, and actively participates in issue remediation.
• Builds and oversees testing for processes applicable to digital platforms, cloud services, and AWS environments.
• Manages and identifies operational and technology risks in accordance with ERM, ensuring adequate internal controls over cloud infrastructure, application development, third-party services, and platform operations.
• Partners with business, product, and technology leaders to implement RCSA standards and procedures, ensuring quality, consistency, and sufficiency of implementation.
• Coordinates the development and reporting of risk dashboards, combining Enterprise-level data such as Key Risk Indicators with technology, cloud, and digital risk insights.
• Provides guidance to line managers in identifying and monitoring KRIs that serve as early indicators of digital platform, product, and cloud risk.
• Works with reporting teams to ensure data quality, including reconciliation issue resolution, root cause analysis, and action plan evaluation.
• Associates loss events with applicable digital and cloud risks/processes and reports operational loss trends to management.
• Provides oversight to the LOB supplier and outsourcing strategy, particularly related to cloud service providers (including AWS), SaaS platforms, and technology vendors.
• Reviews and challenges LOB business cases for outsourcing and cloud services.
• Maintains a complete and current inventory of all material digital products, cloud platforms, services, and supporting processes, with associated key risks and thresholds.
• Works with the LOB to evaluate risks associated with new digital products, cloud migrations, and strategic technology initiatives, coordinating BCRA and ERM risk reviews and ensuring completion of required documentation.
• Executes ERM Scenario Analysis with an emphasis on technology failure, cyber events, cloud outages, and third-party disruption scenarios.
• Advises on and approves Risk Acceptances identified in the LOB or function.
• Develops and manages digital product inventory and executes ERM product risk review programs.
• Performs additional responsibilities as assigned, including leadership of special projects, implementation of new regulatory or ERM programs, and participation in acquisition or strategic investment activities.

SUPERVISORY RESPONSIBILITIES:
Responsible for providing employees timely, candid and constructive performance feedback; developing employees to their fullest potential and providing challenging opportunities that enhance employee career growth; developing the appropriate talent pool to ensure adequate bench strength and succession planning; recognizing and rewarding employees for accomplishments. Typically supervises individual contributors.
MINIMUM KNOWLEDGE AND SKILLS REQUIRED:

• Bachelor's Degree in Computer Science, Cyber Security, Software Engineering, management, finance, economics, or a related field, or equivalent experience; Master's Degree preferred.
• 5-10 years of financial services industry experience in risk, business controls, technology risk, or compliance.
• Strong understanding of digital banking platforms, cloud computing, and AWS-based architectures.
• Experience partnering with or supporting cloud development, digital engineering, or product management teams.
• Ability to identify, assess, and challenge risks related to cloud security, resiliency, SDLC, DevOps, APIs, and third-party services.
• Strong leadership, critical thinking, and collaboration skills.
• Ability to influence peers and leaders across business, technology, and product organizations on complex, technical, or sensitive topics.
• Strong analytical skills with the ability to interpret and apply policies and regulations across a large, complex, technology-driven organization.
• Broad working knowledge of banking products, operations, and digital delivery models.
• Excellent presentation, communication, and interpersonal skills.
• Working knowledge of Microsoft products and experience with risk reporting tools preferred.

• Preferred certifications include one or more of the following:
  
  • AWS Certified Solutions Architect or AWS Certified Security - Specialty
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)
  • Certified Cloud Security Professional (CCSP)
  • Certified in Risk and Information Systems Control (CRISC)
  • ITIL, COBIT, or other technology risk or governance-related certifications

IT Business Controls Manager - Digital Channels
At Fifth Third, we understand the importance of recognizing our employees for the role they play in improving the lives of our customers, communities and each other. Our Total Rewards include comprehensive benefits and differentiated compensation offerings to give each employee the opportunity to be their best every day.
The base salary for this position is reflective of the range of salary levels for all roles within this pay grade across the U.S. Individual salaries within this range will vary based on factors such as role, relevant skillset, relevant experience, education and geographic location. In addition to the base salary, this role is eligible to participate in an incentive compensation plan, with any such payment based upon company, line of business and/or individual performance.
Our extensive benefits programs are designed to support the individual needs of our employees and their families, encompassing physical, financial, emotional and social well-being. You can learn more about those programs on our 53.com Careers page at: https://www.53.com/content/fifth-third/en/careers/benefits.html or by consulting with your talent acquisition partner.
LOCATION -- Cincinnati, Ohio 45227
Attention search firms and staffing agencies: do not submit unsolicited resumes for this posting. Fifth Third does not accept resumes from any agency that does not have an active agreement with Fifth Third. Any unsolicited resumes - no matter how they are submitted - will be considered the property of Fifth Third and Fifth Third will not be responsible for any associated fee.
Fifth Third Bank, National Association is proud to have an engaged and inclusive culture and to promote and ensure equal employment opportunity in all employment decisions regardless of race, color, gender, national origin, religion, age, disability, sexual orientation, gender identity, military status, veteran status or any other legally protected status.