DIRECTOR, EMERGING TECHNOLOGY RISK
Company: Santander Holdings USA Inc
Location: New York
Posted on: October 8, 2024
Job Description:
Director, Emerging Technology RiskCountry: United States of
AmericaJob Description: The Director of Emerging Technology Risk
within the Technology and Information Risk Management organization
at Santander US and Santander Bank NA is responsible for ongoing
oversight, assessment, management and reporting of technology and
cybersecurity risks associated with the adoption and implementation
of Cloud, AI and Digital Assets (e.g. Blockchain, Crypto etc.)
across all operating entities. This role is established in the
second line of defense and requires collaboration across both IT,
CISO, Data Office, Operational Risk, Internal Audit and other
relevant functional stakeholders within the organization in the
management of Emerging Technology risks. An excellent understanding
of the evolving regulatory landscape in the US and EU are vital for
success in this role.The day-to-day focus may vary depending on the
requirements of the overall second line of defense program
priorities directed by the Head of Technology Risk and may include:
planned or ad-hoc technical risk reviews, review of IT or Business
initiatives, Review and challenge activities, Risk reporting,
development of technical risk framework and methodologies.This
position is hybrid in office 2-3 days per week. Locations can
include: Dallas, TX; Boston, MA; Florham Park, NJ; NYC, NYEssential
Functions/Responsibility Statements:
- Establish themselves as the second line of defense subject
matter expert for key stakeholders in the management of emerging
technology risks across all operating entities
- Prepare information to enable governance committees / working
groups in the management oversight of emerging technology
risks
- Participate in relevant governance committees and working
groups as a delegate of the Head of Technology
- Initiate timely escalations to the Head of Technology and to
the leadership team
- Identify and assess technology and cybersecurity risks
associated with emerging technologies including Cloud, AI, IoT,
Blockchain and others and counsel business units managers, CISO
and/or IT GRC stakeholders on risk management issues to ensure
awareness and accountability for emerging technology risks
- Develop and implement a technical risk management governance,
framework to enable the strategic business direction of the
organization
- Ensure updates of existing policies and framework or develop
new ones that steer the safe and sound adoption of emerging
technologies across the organization
- Participate in the independent and ongoing risk oversight of
key technology components of the firm's digital transformation
initiatives. Additionally, coordinate oversight of key emerging
technology risks
- Work across the lines of defense to recommend strategies that
effectively treat risks within the risk appetite
- Monitor emerging technology trends and evaluate potential
impacts to business strategy; provide documented analytical
insights of the risk horizon, while ensuring a sound operational
and compliance control environment through establishment of a
system of effective and sustainable internal controls
- Participate in evaluation of new products / Business changes /
projects and assess related emerging technology risks and impact to
the technology risk profile
- Participate in the evaluation and management of risks related
to third-party suppliers involved in technology projects related to
the deployment of emerging technology or where emerging
technologies introduced by third parties are a key component of the
business activities
- Advises on remediation of regulatory findings, correction of
any inconsistencies and monitors resolution.
- Manage, oversee and contribute to targeted risk reviews
designed to evaluate emerging technology risks and their effective
and sustainable mitigation
- Perform review and challenge of first line of defense risk
management processes, data and outcomes (e.g. risk assessments,
control evaluations, risk metrics, mitigation plans, risk
acceptances etc.) and communicate risk opinions at various levels
of management
- Analyze risk data from various sources (e.g. external events,
control deficiencies, risk register etc.) to identify and measure
levels of risk, concentration, trends and patterns
- Support process for constructive engagement across the Lines of
Defense regarding differences or conflicts in risk appetite, risk
metric determination or evaluation, issue severity or other areas
of dispute
- Manage delivery timelines and develop materials to ensure
second line of defense independent opinion appropriately
represented during committee meetings, external exams and internal
audits.
- Ensure all activities and deliverables achieve their
timeliness, quality and accuracy service levels.
- Collaborate with other second line of defense functions such as
Operational Risk, Model Risk, Compliance etc. on common priorities
and strategic initiatives
- Provides second line of defense leadership and subject matter
expertise during response to major technology or cyber incidents
and coordinate second line of defense engagement and response of
incident / crisis management
- Recruits, develops, and manages talent to create within the
organization a culture of leadership, performance, and
accountability.Qualifications: To perform this job successfully, an
individual must be able to perform each essential duty
satisfactorily. The requirements listed below are representative of
the knowledge, skill, and/or ability required. Reasonable
accommodations may be made to enable individuals with disabilities
to perform the essential functions.Education:
- Bachelor's Degree in a technical discipline or equivalent work
experience: Computer Science, Information Technology, Information
Systems, Information Security. Req
- Master's Degree in related technical disciplines. Pref
- Professional Certifications in Cloud Security. Req.
- Professional Certifications in one or more Emerging technology
areas. PrefWork Experience:
- Practitioner and management experience in one or more areas of
Emerging Technology Risks
- Overall professional experience of 10+ years or more in
emerging technology or cybersecurity risk management roles in a
matrix organization
- Experience within a highly regulated environment such as the
financial services industryTechnical Skills:
- Cloud Security Architecture Patterns
- Secure Application Development / DevSecOps /
Containerization
- Encryption / Tokenization
- Identity and Access Management
- Network / Firewall Management
- Vulnerability Management / Patching
- Artificial Intelligence
- Digital assetsCompetencies and Abilities:
- Demonstrated expertise and track record in technology risk
management segment, and ability to perform at an advanced level of
competence.
- Advanced knowledge of technical risk management best practices
and how to implement them.
- Ability to engage effectively with both senior management and
operational teams
- A keen sense of risk anticipation with attention to details and
an ingrained ability to connect the dots and challenge status
quo
- An execution and solution focus risk mindset with an ability to
push the needle forward even with ambiguous or incomplete
information
- Ability to direct, train and guide peers, subordinates and
management.
- A team player who can coordinate and drive consensus among
different teams and stakeholders having varying view points
- Ability to build relationships, influencing and negotiations
across diverse stakeholders across the lines of defense, handle
conflict resolution with other groups to ensure appropriate risk
management decisions are made.
- Ability to adjust to new developments/changing
circumstances.
- Ability to effectively communicate and build relationships with
multiple levels of the organizational structure, including senior
level management.
- Ability to collaborate with multidisciplinary teams.
- Ability to multi-task and adapt/adjust to multiple demands and
competing priorities.
- Ability to maintain and report on confidential information in
an appropriate manner.
- Ability to convey a sense of urgency and drive issues/projects
to closure.
- Ability to effectively interact with the executive management
and vendors.
- Ability to demonstrate sound judgement and critical
thinking
- Excellent written and oral communication skills.
- Excellent analytical, organizational and project management
skills.
- Strong leadership, supervisory, and customer service
skills.
- Strong risk, process, and control validation and/or assessment
skills.Diversity & EEO Statements: At Santander, we value and
respect differences in our workforce and strive to increase the
diversity of our teams. We actively encourage everyone to
apply.Santander is an equal opportunity employer. All qualified
applicants will receive consideration for employment without regard
to race, color, religion, sex, sexual orientation, gender identity,
national origin, genetics, disability, age, veteran status or any
other characteristic protected by law.Employer Rights: This job
description does not list all of the job duties of the job. You may
be asked by your supervisors or managers to perform other duties.
You may be evaluated in part based upon your performance of the
tasks listed in this job description. The employer has the right to
revise this job description at any time. This job description is
not a contract for employment and either you or the employer may
terminate at any time for any reason.The base pay range for this
position is posted below and represents the annualized salary
range. For hourly positions (non-exempt), the annual range is based
on a 40-hour work week. The exact compensation may vary based on
skills, experience, training, licensure and certifications and
location.Base Pay RangeMinimum:$120,000.00 USDMaximum:$215,000.00
USDPrimary Location: Boston, MA, BostonOther Locations:
Massachusetts-Boston,Texas-Dallas,New Jersey-Florham Park,New
York-New YorkOrganization: Santander Bank N.A.
Keywords: Santander Holdings USA Inc, Hamden , DIRECTOR, EMERGING TECHNOLOGY RISK, Executive , New York, Connecticut
Didn't find what you're looking for? Search again!
Loading more jobs...