Senior Manager, Technology Risk Management, Digital Asset Oversight
Charles Schwab · Phoenix, AZ · 2 wk ago
HybridInformation TechnologyFull-time
About the role
The Technology Risk Management (TRM) team within Corporate Risk Management provides independent risk oversight and effective challenge of first-line activities supporting Schwab’s digital asset strategy, products, and supporting technology ecosystem.
Responsibilities
- Partner closely with digital asset business leaders, technology engineering teams, cybersecurity architects, and risk partners to evaluate technology and information security risks associated with digital asset products and services.
- Use expertise in cybersecurity, blockchain technology, risk management, and regulatory compliance to assess emerging risks, evaluate control effectiveness, and influence decisions that strengthen Schwab’s risk posture.
- Drive risk and control assessments, thematic reviews, threat-informed evaluations, issue management activities, and reporting processes that provide leadership with meaningful insight into digital asset-related risk.
- Balance strategic thinking with analytical rigor, identify opportunities to strengthen controls, improve risk visibility, and build collaborative relationships across multiple stakeholder groups.
- Contribute to informed decision-making, support the maturity of first-line risk management practices, and safeguard Schwab clients while enabling innovation within the digital asset space.
Requirements
- Bachelor’s degree in Information Security, Computer Science, Engineering, or a related field
- 7+ years of experience in Cybersecurity, Technology Risk Management, Information Security, or related risk disciplines
- Experience supporting or assessing digital asset, blockchain, cryptocurrency, tokenization, or digital custody environments
- Knowledge of cybersecurity and risk management frameworks, including NIST Cybersecurity Framework (CSF), NIST 800-53, FFIEC, or similar standards
- Demonstrated experience conducting risk assessments, evaluating controls, and identifying technology or information security risks
- Strong Analytical Thinking skills with the ability to evaluate complex issues, identify emerging risks, and recommend practical solutions
- Strong Communication skills with the ability to present risk insights and influence stakeholders across technical and non-technical audiences
- Experience building collaborative partnerships across business, technology, cybersecurity, and risk management functions
- Ability to manage multiple priorities and adapt effectively within a fast-changing regulatory and technology environment
Preferred Qualifications
- Cybersecurity certifications such as CISSP, CISM, CRISC, CCSP, CISA, or similar credentials
- Experience with Blockchain Technology, Cryptocurrency platforms, digital asset custody solutions, or hardware security modules (HSMs)
- Knowledge of tokenization risks, decentralized finance (DeFi) vulnerabilities, smart contract risks, or digital asset security practices
- Experience with Regulatory Compliance frameworks applicable to digital assets, including SEC, OCC, NYDFS, or similar regulatory requirements
- Experience supporting Governance, Risk, and Compliance (GRC) platforms and technology risk reporting programs
- Experience developing risk metrics, oversight reporting, and executive-level risk communications
- Advanced understanding of emerging cybersecurity threats, vulnerability assessment methodologies, and technology risk trends within digital asset ecosystems
Benefits
- 401(k) with company match and Employee stock purchase plan
- Paid time off for vacation, volunteering, and 28-day sabbatical after every 5 years of service for eligible positions
- Paid parental leave and family building benefits
- Tuition reimbursement
- Health, dental, and vision insurance