Language Fluency: English (Required)

Work Shift:

Please review the following job description:

Essential Duties and Responsibilities

Following is a summary of the essential functions for this job. Other duties may be performed both major and minor which are not mentioned below. Specific activities may change from time to time.

1. Provide independent risk oversight (i.e. second line of defense/LOD2) for Truist Technology and related consult to Truist Business Units through the effective identification mitigation monitoring and reporting of operational technology and compliance related risks within Enterprise Technology.

2. Communicate and drive the Information Risk Framework and associated Risk Program Office activities in alignment with Truist corporate risk framework and enterprise risk reduction activities.

3. Provide independent assessment and oversight of the maturity of technology and adequacy of technology controls to achieve business outcomes for performance stability security and service availability.

4. Strengthen and sustain proactive risk culture through leadership and influence with teammates and business partners and through conducting effective risk focused management and partnership routines.

5. Review and attest to/challenge adequacy of risk assessments of Technology produced by first-line-of-defense Business Unit Risk Management and other risk partners.

6. Ensure effectiveness and structure in regulatory engagement practices including responses out of Enterprise Technology.

7. Develop and maintain effective channels of communication with Enterprise Technology partners other risk and control functions Business Unit (BU) management as well as regulatory agencies.

8. Drive improved risk measurement and performance monitoring for all Cyber Security Risk domains and Enterprise Technology teams and leverage to monitor and challenge Truist Technology Risk appetite.

9. Recruit develop and retain high-performing teams and teammates. Develop the knowledge skills and abilities of teammates directly & indirectly.

Qualifications

Required Qualifications:

The requirements listed below are representative of the knowledge skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

1. Bachelors Degree or an equivalent combination of education and experience.

2. Twelve years of banking technology operations or risk management experience including experience working within one or more Cyber Risk oversight domains such VPM DLP encryption IAM network security security operations.

3. Strong business knowledge management experience problem solving and decision-making skills.

4. Excellent interpersonal and communication skills demonstrating the ability to establish credibility with all levels of management effectively.

with Microsoft Office products.

Preferred Qualifications:

1. Masters degree in Business Administration (MBA) or advanced degree in Business Management Technology or Finance.

2. Familiarity with financial services technology-related laws rules regulations and risk management standards (e.g. Federal Financial Institutions Examination Council (FFIEC) NIST (National Institute of Standards and Technology) Control Objectives for Information and Related Technology (COBIT) Information Technology Infrastructure Library (ITIL)).

3. Familiarity with risk measurement approaches including development of Key Risk Indicators and thresholds and associated reporting and analytics tools (e.g. Tableau RSA Archer).

4. Professional risk management designations such as Certified Information Systems Auditor (CISA) Certified in Risk and Information Systems Control (Information Systems Audit and Control Association) and/or Project Management certification.