Senior IT Risk Manager - Operational Risk Management
Voya Financial · Boston, MA · 1 wk ago
Information Technology$130k–$165k/yrFull-time
Responsibilities
- Forge Strong Partnerships: Actively engage with IT stakeholders and senior leadership to foster a robust risk culture. This includes regular interaction and collaboration at various organizational levels.
- Serve as a subject matter expert in AI risk management, playing a pivotal role in the identification, assessment, and mitigation of AI-related risks as well as supporting the enterprise AI governance program in line with risk principles and regulatory requirements.
- Provide subject matter expertise and advise on IT related risks and remediation/mitigation of risk exposures. Real-time risk advisory and risk measurement are key elements of this role.
- Define and maintain IT risk and control standards, ensuring a comprehensive and up-to-date framework is in place.
- Lead IT risk identification and assessment activities that include IT process reviews, top-down risk assessments, targeted risk and control assessments, development of key risk indicators (KRI), risk event management, trend analysis, and controls compliance.
- Monitor the IT risk and control environment including root cause analysis of issues and incidents to identify process improvement, control optimization, and risk reduction opportunities.
- Develop Board and senior leadership risk reporting and risk committee materials.
- Assist with assessments concerning compliance with applicable laws and regulations impacting IT.
- Work closely with line of business ORM teams to characterize potential IT risks and trends, assessing business impact and articulating criticality and implications to business stakeholders.
- Assist with ongoing development and maintenance of IT Risk Management strategy and framework, and education of stakeholders.
- Occasional travel to Voya office locations for collaboration purposes.
Requirements
- Bachelor’s degree in Computer Science, MIS or related field; or equivalent work experience.
- Minimum 8-15 years of relevant experience with a strong background in IT, IT audit, and/or IT risk management and including minimum 4 years of financial services experience, preferably in Asset, Wealth, Investment Management, Retirement Benefits and Employee Benefits lines of business.
- In depth knowledge of IT technical and operational processes, and associated risks and controls, IT risk management with a strong emphasis on AI risk management.
- CISA, CISSP, CISM, CRISC or other related IT risk certification is preferred including security, cloud platform, and AI certifications.
- Familiarity and experience using eGRC solutions.
- Ability to communicate complex information technology risks and issues to non-technical business stakeholders to ensure a clear understanding of criticality and implications.
- Ability to discern and measure business relevant risk from IT risks and issues, and to identify the corresponding remediation which is adequate, balanced, and cost effective to mitigate business impact.
- Critical thinker and ability to express risk themes from data that will serve to inform and guide leadership decisions and actions.
- Ability to operate independently with limited supervision and thrive in a dynamic, fast-paced setting.
- Ability to collaborate within ITRM and ORM as well as across functions in partnership with IT, business teams and other risk functions.
- Strong problem solving, decision making, communication, and facilitation skills.
- Proficient with Microsoft Office suite of products and automated reporting tools. Ability to produce professional documents ready for presentation to executive “C-Level” management.
Qualifications
- Master’s degree desirable.
Skills
- Customer Focused: Passionate drive to delight our customers and offer unique solutions that deliver on their expectations.
- Critical Thinking: Thoughtful process of analyzing data and problem solving data to reach a well-reasoned solution.
- Team Mentality: Partnering effectively to drive our culture and execute on our common goals.
- Business Acumen: Appreciation and understanding of the financial services industry in order to make sound business decisions.
- Learning Agility: Openness to new ways of thinking and acquiring new skills to retain a competitive advantage.
Benefits
- Health, dental, vision and life insurance plans.
- 401(k) Savings plan – with generous company matching contributions (up to 6%).
- Voya Retirement Plan – employer paid cash balance retirement plan (4%).
- Tuition reimbursement up to $5,250/year.
- Paid time off – including 20 days paid time off, nine paid company holidays and a flexible Diversity Celebration Day.
- Paid volunteer time — 40 hours per calendar year.
- Misuse of Voya's name in fraud schemes.