Technology Risk Manager Jobs in Baltimore, MD (NOW HIRING)

Role Summary

We are looking for a seasoned Technology Risk Analyst with more than 5 years' experience in financial services and/or technology industry. The qualified candidate should be well versed in identifying, managing and monitoring technology risks across Technology Resiliency, Technology Change Management, Obsolescence, IT Asset Management, Cybersecurity, and Technology Risks related to Third parties. The position interacts with all levels of management and senior level executives in IT (ie. CTO, CIO, Chief Architect); therefore, exceptional interpersonal and communication skills are essential.

The successful candidate will report into the Global Head of ERM, who reports directly into the Chief Risk Officer and provide Second Line of Defense (SLoD) services to Global Technology Services First Line Organization. Experience with Cyber and Information Security, Cloud Risk Management (AWS, Azure), Enterprise Architecture is a plus.

Responsibilities

• Risk Identification: Collaborate with IT leaders, Enterprise Process Owners, and First Line of Defense (FLOD) teams to proactively identify, assess, and monitor technology risks-including resiliency, change management, obsolescence, asset management, cybersecurity, and third-party risks-that may impact the organization's strategic objectives.
• Oversight and Effective Challenge: Provide independent oversight and challenge of FLOD technology risk management activities, ensuring risks and non-compliance with internal and external standards are prudently managed. Advise on the prioritization of risks, mitigation alternatives, and compensating controls.
• Assessment and Governance: Participate in risk governance forums, monitor technology risk appetite, escalate exceptions, and report breaches. Evaluate the adequacy and effectiveness of risk control and mitigation actions, recommending improvements to strengthen governance and enhance policies, routines, and interaction models.
• Advisory and Strategic Leadership: Act as a trusted advisor to IT and FLOD leaders, providing expert guidance on technology risk posture, regulatory requirements, and best practices. Support regulatory exams and findings and foster integrated relationships between FLOD and Second Line of Defense (SLOD).
• Framework Implementation: Drive the adoption and effective implementation of Enterprise Technology Risk Management (ETRM) policies, frameworks, tools, guidelines, and standards across the business, ensuring technology risks are identified and managed in alignment with industry and regulatory expectations.
• Reporting and Communication: Draft regular updates to executive management and the Board Risk Committee on changes to the company's technology risk profile. Communicate risk management policies and outcomes to stakeholders at all levels.
• Continuous Monitoring: Utilize enterprise risk and operational risk management tools (MRI, RCSA, KRIs, incident data, loss event data) to monitor the technology control environment, identify potential weaknesses, and address gaps in a timely manner.
• Subject Matter Expertise: Serve as a subject matter expert in technology risk, controls, compliance, and best practices. Stay abreast of emerging technologies and their impact on the organization's risk profile.

Qualifications

Required

• Bachelor's degree or the equivalent combination of education and relevant experience
• 5+ years of relevant experience in risk management, financial services, or related field

Preferred:

• 8+ years of experience in the financial, and or technology industries
• This position requires interacting with "C" level suite, so superior communication, interpersonal, negotiation, presentation and intergroup skills are critical for success
• Ability to translate technical issues into risk terms that business can understand is absolutely necessary
• Strong understanding of how the use of Artificial Intelligence both introduces risks across a variety of risk categories, as well as provides opportunities for improved monitoring and reporting
• Experience with regulatory exams and responses is strongly desired
• Undergraduate in technology disciple or equivalent
• Thought leadership around technology risks a must
• Experience in risk management, compliance or audit, including but not limited to experience in design & implementation of control frameworks
• Working knowledge of industry and regulatory risk and control standards and frameworks - FFIEC, DORA, NIST-CSF, 800-53, COBIT, CCM etc.
• Collaborative, team player with the ability to navigate a complex organization and influence outcomes
• Strong analytical, problem solving and critical thinking skills
• High attention to detail and strong organizational skills

FINRA Requirements

FINRA licenses are not required and will not be supported for this role.

Work Flexibility

This role is eligible for hybrid work, with up to one day per week from home.