Cyber Risk Controls Officer
About the role
You will be responsible for strengthening cyber risk governance and control execution across your assigned portfolio. You will partner with Risk, Audit, Security, and technology teams to assess control effectiveness, identify compliance gaps, drive remediation plans, and provide transparent reporting on cyber risk posture and progress against Fiserv standards.
Responsibilities
- Serve as the First Line of Defense Controls Lead for the Business Unit, partnering with Risk Office, Audit, Information Security, and technology teams to ensure cyber risk requirements and standards are met.
- Proactively assess Applications and processes for compliance to and alignment with Fiserv cyber policies, standards, and control requirements by identifying gaps and coordinating remediation with control owners and technical teams.
- Provide subject matter expertise on Fiserv Policies and Standards and guide app dev teams in implementing risk mitigation and reduction strategies.
- Govern, track, and report on the status of control deficiencies, risk issues, and remediation efforts through to closure.
- Provide executive-level reporting on cyber risk posture, key control metrics, remediation progress, and emerging issues, including timely escalation where needed.
- Work closely with risk assessment owners, application owners, and control stakeholders to manage issues, action plans, and evidence in accordance with firm standards.
- Support control testing readiness, audit responses, and regulatory examination activities by ensuring documentation, evidence, and remediation artifacts are complete and current.
- Promote sustainable control execution by driving consistency in governance routines, issue management, and risk treatment processes across the portfolio.
Requirements
- 10+ years of experience in cyber, risk, controls, or information security risk management, including assessing control effectiveness and managing remediation
- 10+ years of experience in technology risk, compliance, controls governance, or related roles within a complex enterprise environment
- 5+ years of experience partnering with server (distributed, mainframe, cloud) and network infrastructure technology
- 5+ years of experience coordinating risk reviews, control assessments, issue management, and cross-functional remediation activities with technical and non-technical stakeholders
Qualifications
- Well versed in all aspects of Software Development Lifecycle (SDLC) and best practices
- Strong organizational and analytical skills with the ability to collaborate and communicate with stakeholders to identify, evaluate, and recommend practical mitigation strategies in a fast-paced environment
- Experience with cyber control frameworks and industry standards such as NIST Cybersecurity Framework, ISO 27001, COBIT, PCI DSS, and ITIL
- Experience with governance, risk, and compliance tools and practices for tracking issues, evidence, and remediation activities
- Experience in the financial services industry
Skills
- Software Development Lifecycle (SDLC)
- Organizational and Analytical Skills
- Collaboration and Communication
- Cyber Control Frameworks (NIST Cybersecurity Framework, ISO 27001, COBIT, PCI DSS, ITIL)
- Governance, Risk, and Compliance Tools
- Financial Services Industry Experience
Benefits
Not specified
Pay
$146,000.00 - $244,800.00
Schedule
On-site Monday through Friday
How You’ll Work
- Fiserv emphasizes in-person collaboration to help you grow your career while shaping the future of fintech
- This role is on-site Monday through Friday
- Travel Approximately 5% travel off-site or to other office locations is expected
How to Apply
To be considered, you must be legally authorized to work in the U.S. without need for visa sponsorship now or in the future. Please apply using your legal name and attach your resume (either is acceptable, both are preferable).
Our Commitment to Equal Opportunity
Fiserv is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, age, disability, protected veteran status, or any other category protected by law. If you have a disability and require a reasonable accommodation in completing a job application or otherwise participating in the overall hiring process, please contact AskHR.US@fiserv.com. Please note our AskHR representatives do not have visibility to your application status. Current associates who require a workplace accommodation should refer to Fiserv’s Disability Accommodation Policy for additional information. Note To Agencies Fiserv does not accept resume submissions from agencies outside of existing agreements. Please do not send resumes to Fiserv associates. Fiserv is not responsible for any fees associated with unsolicited resume submissions. Warning About Fake Job Posts Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from a Fiserv representative will come from a legitimate Fiserv email address.