Technology Risk Manager Jobs in Boston, MA (NOW HIRING)

Together we fight for everyone's opportunity for a better financial future.

We will do this together - with customers, partners and colleagues. We will fight for others, not against: We will stand up for and champion everyone's access to opportunities. The status quo is not good enough ... we believe every individual and every community deserves access to financial opportunities. We are determined to support both individuals and communities in reaching a better financial future. We know that reaching this future depends on our actions today.

Like our Purpose Statement, Voya believes in being bold and committed to action. We are committed to a work environment where the differences that we are born with - and those we acquire throughout our lives - are understood, valued and intentionally pursued. We believe that our employees own our culture and have a responsibility to foster an environment where we all feel comfortable bringing our whole selves to work. Purposefully bringing our differences together to positively influence our culture, serve our clients and enrich our communities is essential to our vision.

Are you ready to join a company with a strong purpose and a winning culture? Start your Voyage - Apply Now

Profile Summary:

The Senior IT Risk Manager reports to the head of IT Risk Management (ITRM) within the firm's Operational Risk Management (ORM) function. The mission of ORM is to support Voya leadership in risk-based decision making and to assist with the management of operational risks of the enterprise, through the application of a comprehensive framework, processes, and tools for identifying, measuring, and monitoring operational risks. The ITRM functionprovides risk oversight for Voya's enterprise Information Technology (IT) function and technologies supporting Voya's Investment Management, Retirement Benefits, and Employee Benefits businesses by facilitating processes to identify, monitor, and mitigate IT related operational risks.

We are seeking a motivated and self-driven Senior IT Risk Managerto join our dynamic and fast-paced team, where collaboration with IT stakeholders and senior leadership is paramount. This role involves comprehensive oversight of IT risks across all technology layers and processes, with a special emphasis on AI risk management.The successful candidate will employ business, IT, and operational process knowledge to perform independent review and challenge, and to advise stakeholders on solving complex and time-sensitive risk related matters.

Profile Description:

The Senior IT Risk Manager will focus on the communication, implementation, and execution of operational risk policies and procedures, in support of managing IT risks within Voya's enterprise IT function and Investment Management, Retirement Benefits, and Employee Benefits business technologies.

Responsibilities include, but are not limited to the following:

• Forge Strong Partnerships:Actively engage with IT stakeholders and senior leadership to foster a robust risk culture. This includes regular interaction and collaboration at various organizational levels.
• AI Risk Management Expertise:Serve as a subject matter expert in AI risk management, playing a pivotal role in the identification, assessment, and mitigation of AI-related risks as well as supporting the enterprise AI governance program in line with risk principles and regulatory requirements.
• Real-Time Risk Advisory:Provide subject matter expertise and advise on IT related risks and remediation/mitigation of risk exposures. Real-time risk advisory and risk measurement are key elements of this role.
• Risk and Control Framework:Define and maintain IT risk and control standards, ensuring a comprehensive and up-to-date framework is in place.
• Risk Identification and Assessment:Lead IT risk identification and assessment activities that include IT process reviews, top-down risk assessments, targeted risk and control assessments, development of key risk indicators (KRI), risk event management, trend analysis, and controls compliance.
• Incident Analysis and Optimization:Monitor the IT risk and control environment including root cause analysis of issues and incidents to identify process improvement, control optimization, and risk reduction opportunities.
• Risk Reporting:Develop Board and senior leadership risk reporting and risk committee materials.
• Regulatory Compliance:Assist with assessments concerning compliance with applicable laws and regulations impacting IT.
• Business Impact Assessments: Work closely with line of business ORM teams to characterize potential IT risks and trends, assessing business impact and articulating criticality and implications to business stakeholders.
• Strategic Development:Assist with ongoing development and maintenance of IT Risk Management strategy and framework, and education of stakeholders.
• Travel: Occasional travel to Voya office locations for collaboration purposes.

Knowledge & Experience:

• Bachelor's degree in Computer Science, MIS or related field; or equivalent work experience. Master's degree desirable.
• Minimum 8-15 years of relevant experience with a strong background in IT, IT audit, and/or IT risk management and including minimum 4 years of financial services experience, preferably in Asset, Wealth, Investment Management, Retirement Benefits and Employee Benefits lines of business
• In depth knowledge of IT technical and operational processes, and associated risks and controls, IT risk management with a strong emphasis on AI risk management.
• CISA, CISSP, CISM, CRISC or other related IT risk certification is preferred including security, cloud platform, and AI certifications.
• Technical knowledge of risk management frameworks, applicable standards, and regulatory requirements including, NIST, COBIT, ITIL, ISO27000, and other relevant IT governance frameworks.
• Familiarity and experience using eGRC solutions.
• Ability to communicate complex information technology risks and issues to non-technical business stakeholders to ensure a clear understanding of criticality and implications.
• Ability to discern and measure business relevant risk from IT risks and issues, and to identify the corresponding remediation which is adequate, balanced, and cost effective to mitigate business impact.
• Critical thinker and ability to express risk themes from data that will serve to inform and guide leadership decisions and actions.
• Ability to operate independently with limited supervision and thrive in a dynamic, fast-paced setting.
• Ability to collaborate within ITRM and ORM as well as across functions in partnership with IT, business teams and other risk functions.
• Strong problem solving, decision making, communication, and facilitation skills.
• Proficient with Microsoft Office suite of products and automated reporting tools. Ability to produce professional documents ready for presentation to executive "C-Level" management.

#LI-KD1

Compensation Pay Disclosure:

Voya is committed to pay that's fair and equitable, which means comparable pay for comparable roles and responsibilities.

The below annual base salary range reflects the expected hiring range(s) for this position in the location(s) listed. In addition to base salary, Voya offers incentive opportunities (i.e., annual cash incentives, sales incentives, and/or long-term incentives) based on the role to reward the achievement of annual performance objectives. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Voya Financial is willing to pay at the time of this posting.

Actual compensation offered may vary from the posted salary range based upon the candidate's geographic location, work experience, education, licensure requirements and/or skill level and will be finalized at the time of offer. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked.

Be Well. Stay Well.

Voya provides the resources that can make a difference in your lives. To us, this means thriving physically, financially, socially and emotionally. Voya benefits are designed to help you do just that. That's why we offer an array of plans, programs, tools and resources with one goal in mind: To help you and your family be well and stay well.

What We Offer

• Health, dental, vision and life insurance plans
• 401(k) Savings plan - with generous company matching contributions (up to 6%)
• Voya Retirement Plan - employer paid cash balance retirement plan (4%)
• Tuition reimbursement up to $5,250/year
• Paid time off - including 20 days paid time off, nine paid company holidays and a flexible Diversity Celebration Day.
• Paid volunteer time - 40 hours per calendar year

Learn more about Voya benefits (download PDF)

Critical Skills

At Voya, we have identified the following critical skills which are key to success in our culture:

• Customer Focused: Passionate drive to delight our customers and offer unique solutions that deliver on their expectations.
• Critical Thinking: Thoughtful process of analyzing data and problem solving data to reach a well-reasoned solution.
• Team Mentality: Partnering effectively to drive our culture and execute on our common goals.
• Business Acumen: Appreciation and understanding of the financial services industry in order to make sound business decisions.
• Learning Agility: Openness to new ways of thinking and acquiring new skills to retain a competitive advantage.

Learn more about Critical Skills

Equal Employment Opportunity

Voya Financial is an equal-opportunity employer. Voya Financial provides equal opportunity to qualified individuals regardless of race, color, sex, national origin, citizenship status, religion, age, disability, veteran status, creed, marital status, sexual orientation, gender identity, genetic information, or any other status protected by state or local law.