- Lead IT process and gap assessments against industry standards and technology regulatory requirements to evaluate control design and operating effectiveness
Design, review and validate processes and configurations across technology systems, including cloud environments, operating systems, databases, and network infrastructure, to ensure alignment with established standards, compliance requirements, and best practices
- Assist in maintaining and providing oversight over the technology controls inventory to mitigate technology risks and meet regulatory requirements, technology policies, and frameworks
- Collaborate with stakeholder teams including Security, Engineering, Technology Governance, IT, and Operational Risk to support technology requirements and ensure control ownership
- Developing technology requirements for new products, updating existing controls, and providing subject matter expertise to product teams
- Support Security Compliance, Information Security, Platform, and Engineering stakeholders in identifying and executing on continuous control monitoring opportunities
- Provide guidance and leverage technical expertise to determine effectiveness of change management processes, i.e. unit testing, CI/CD, etc
- Define, draft and communicate identified issues and technology process improvement opportunities and assist in developing creative solutions to mitigate risks and address regulatory challenges
- Provide reporting to stakeholders and management on progress, escalations, and control initiatives
- Drive the creation of procedural documentation, including training materials that support first line of defense risk management, in the form of runbooks and narratives
- Validate remediation efforts for identified gaps and issues to ensure resolution effectively aligns with regulatory requirements, industry standards, and internal policies
Drive creation of clear and concise technical documentation for control monitoring
