At Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together.
This position is part of the Technology Risk Management (TRM) organization and reports to the Director of Availability, Capacity & Technology Operations Risk (ACTOR).In this individual contributor role, you will provide leadership for a team of technology risk oversight professionals responsible for providing independent oversight of the Firm’s IT Operations, Systems Monitoring and Alerting, Capacity Management, Batch Processing, and Backup and Recovery.
The successful candidate understands how risk management enables the business, is a decisive and strategic leader, and will have demonstrated the ability to conduct effective risk management governance and management (both strategically and tactically). They will be a team player, comfortable working across a wide range of Business entities and Corporate functions including Technology, Compliance, Legal, Operational Risk teams, Privacy, and many other partners to promote risk management practices throughout the enterprise.
Responsibilities include:
Support leadership in the second line of defense (2LOD) team responsible for overseeing the Availability, Capacity & Technology Operations Risk (ACTOR) and related functions and providing effective challenge to the design and execution of technical and procedural controlsDirect, mentor, and develop a team of technology, security, and risk oversight professionalsPartner with internal SMEs to conduct data-driven, thematic risk assessments and partner with 2LOD discipline teams to conduct cross-functional risk assessments and thematic testsEstablish influential relationships with key stakeholders; influence innovative solutions in response to constraints; and conduct challenges in a professional mannerOversee the evaluation of and proposed updates to existing Firm policies to reflect system availability, capacity and technology operations strategy and requirements, as appropriateReview, oversee and propose modification or addition as required to RCSA controls applicable to ACTORConduct industry benchmarking, regulatory requirement gathering and peer-based analysis of available controls, risk assessment methodologies and risk mitigation practices to assess for coverage gapsCollaborate with the first line of defense (1LOD) to manage and develop risk metrics (e.g., KRAMs and RAMMs) to continuously monitor and oversee program level risksProvide periodic updates, reports, and recommendations to management regarding best practices, inclusive of information security and information technology controls, risk assessments and risk remediation strategiesSupport interfaces with regulators through updates on ACTOR activitiesApply creative problem-solving skills to broadly defined and occasionally nebulous problems What you have At least 10 years of experience as an Information Security or Risk Management practitioner, with increasing leadership responsibility for both people and projectsProven ability to coordinate with geographically disbursed teams to drive resultsRisk management leadership and people development / mentorship experienceHands-on risk management and oversight experience, particularly in a financial services or highly regulated environment Familiarity with NIST, COBIT and related Frameworks and FFIEC IT Exam Handbook Understanding of applicable regulatory requirements/laws such as GDPR, PCI, FFIEC, GLBA, SOX, etc.Proven ability to effectively communicate with technical and executive audiences, both oral and writtenExperience interfacing with auditors in support of audits and external regulatory exam processes Experience in gathering requirements, documenting and assessing information for implementing controlsStrong interpersonal, analytical, problem-solving, influencing, prioritization, decision-making and conflict resolution skillsStrong initiative; self-starter; self-directed; ability to multi-taskExperience in project planning, meeting facilitation for multiple groups and projectsAbility and confidence to exercise influence over a wide range of individuals at all levels of technical & business leadershipSuperior problem-solving, strong analytical skill, strong learning agility and willingness to embrace new challenges Thought leadership and ability to influence business partnersAttention to details with strong strategic viewProficiency in information and data analysis to identify actionable risk and provide recommendationsProfessional certification is preferred (e.g., CISSP, CISA, CISM, CRISC, CPCB, etc.) Options Apply for this jobApplyShareRefer a friendRefer Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeed Why work for us?
Own Your Tomorrow embodies everything we do! We are committed to helping our employees ignite their potential and achieve their dreams. Our employees get to play a central role in reinventing a multi-trillion-dollar industry, creating a better, more modern way to build and manage wealth.
Benefits: A competitive and flexible package designed to empower you for today and tomorrow. We offer a competitive and flexible package designed to help you make the most of your life at work and at home—today and in the future. Application FAQs
Software Powered by iCIMS
www.icims.com