Senior Vice President, Technology Control Management
BNY Mellon
- Lake Mary, FL
- Permanent
- Full-time
- Lead high-impact and complex projects that involve working with Wealth Management Business, Operations and Engineering (Technology) and collaborating with cross-functional partners (e.g., Core Engineering, Legal, Compliance) to build a strong technology risk and control environment
- Define and communicate risk and control related requirements to engineering in clearly written documentation using standard tools like MS PowerPoint, MS Excel and MS Word
- Work closely with developers and testers to ensure risk and control related requirements and functional designs are translated accurately into working technical designs, test plans and scripts
- Participate in internal and external audit examinations, ensuring that corrective actions are implemented to address findings and recommendations
- Identify, analyze, monitor and minimize the most complex areas of risk that pertain to information technology.
- Perform independent quantitative and qualitative risk analysis across multiple information and technology risk domains and deliver results, root cause analysis and recommendations to senior technology managers and key stakeholders
- Perform moderately complex data mining, trend analysis, metric and report production, process maturity and compliance assessment, process flow charting, and iterative process activities (e.g. validity checks, change reviews, data quality checks, and process reviews).
- Work closely with the analytics team to track metrics and create risk reporting to key stakeholders
- Develop and deliver risk reporting to senior business stakeholders and Engineering (IT) managers.
- Must have a thorough understanding of detective and preventative controls for trade order management, and payments processing, as well as strong verbal communication skills
- The ideal candidate has experience working directly with banking services (trade order management, payments, lending) product and development teams on a day-to-day basis, while also being able to provide effective oversight and governance of key engineering controls
- Ability to work independently or with a team. Experience in the securities or financial services industry required. CISA, CISSP or CRISC and ISACA certifications preferred. Contributes to the achievement of related teams' objectives.
- Experience defining, implementing and monitoring IT risk management programs, including cyber security related risks
- 10+ years of related experience in the securities or financial services industry required - mixed experience in application development, computer architecture, and technology/information risk, assurance or advisory required.
- Communication skills must range from participation in detailed technical discussions to business-oriented presentations to working closely with senior management.
- Experience understanding design and operating effectiveness of IT controls and industry related frameworks.
- Bachelor's degree or equivalent combination of education and work experience required.5-7 years of total work experience preferred.