Responsibilities
- Define and govern the end-to-end technology control assurance lifecycle (drivers, controls, measurement, and assessments)
- Map risks, regulatory obligations, and threat scenarios to control objectives and requirements
- Support control testing and assessments, evaluating both design and operating effectiveness
- Provide a clear, authoritative view of control health across the organization
- Integrate assurance outcomes into firmwide risk management and external assessment frameworks
- Monitor control performance, identify weaknesses, and highlight trends
- Drive standardization and automation initiatives to improve efficiency and coverage
- Contribute to GenAI-enabled enhancements in control assurance processes
- Collaborate with technology teams and business units across all levels
Requirements
- Strong verbal, written, and interpersonal communication skills
- Ability to work effectively with diverse stakeholders across technology and business teams
- Solid understanding of technology control frameworks and risk mitigation concepts
- Knowledge of control design vs. operating effectiveness
- Ability to interpret and apply regulatory requirements and industry standards
- Analytical mindset with strong problem-solving skills
- Proficiency in Microsoft Office tools (Excel, PowerPoint) and familiarity with GenAI tools
- Strong organizational skills with the ability to manage multiple priorities
Nice to Have
- Experience in IT auditing
- Familiarity with technology, information security, or cybersecurity frameworks
