Language Fluency: English (Required)

Work Shift:

Please review the following job description:

The Security Operations Risk Advisor is responsible for providing first line of defense endtoend risk management for the Security Operations team within Corporate Cybersecurity. The risk management services provided include identifying existing and emerging risks evaluating the magnitude of such risks and related business ramifications participation in managing the mitigation or acceptance of the identified risks and development and implementation of suitable monitoring processes related to identified risks. The Security Operations Risk Advisor works with the team to document Risk and Controls as part of Process Risk and Control (PRC) and Risk and Control SelfAssessment processes. Additionally this position ensures effective coordination occurs between assigned areas various risk programs and other lines of defense.

Partner with Security Operations senior leaders to:

• Influence advise and challenge theactionsaffairspoliciesfunctions related to the risk posture

• Risk Identification challenge verification and reporting of enterprise risk processes (e.g. issue management etc.) and assessments for the responsible technology organization

• Develop risks and controls as part of the Process Risk and Control (PRC) process

• Attend review participate and advocate during committee and working group meetings (Enterprise Technology Risk Committee Regulatory Continuous Monitoring etc.)

• Prepare for and coordinate/participate in regulatory exams and audits and associated responses

• Promote influence and challenge risk management expectations clarity on risk appetite

• Provide appropriate training and awareness to promote positive risk culture

• Confirm business activities operate within risk appetite and expectations

• Provide regular reporting to drive awareness of holistic risk exposure across Wholesale Technology

Required Qualifications:

The requirements listed below are representative of the knowledge skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Bachelors degree in Accounting Business Finance or related field or equivalent education and related training.

• Twelve years of experience in a financial institution with emphasis on risk management or equivalent work experience and training.

• Experience in compliance and operational risk mitigation and remediation.

• Strong communication interpersonal presentation and negotiation skill.

• Proven leadership and management skills.

• Strong analytical problem solving and decision making skills in complex environments and with senior leadership.

• Strong time management and organizational skills adaptable to a dynamic and complex work environment; Capable of handling multiple projects concurrently.

• Demonstrated proficiency in basic computer applications such as Microsoft Office software products.

• Ability to travel occasionally overnight

Preferred Qualifications:

• Previous Cyber Security Operations experience

• Cyber Security certifications (e.g. CISM CISSP)

• Riskrelated internal or industry certifications (e.g. GRCP)

• Demonstrated Cybersecurity experience

• Fifteen years of banking or relevant experience

• Experience in Risk related roles (e.g. Business Unit Risk Management Technology Risk Oversight Audit)