Technology Risk Manager

at  US Bank National Association

At U.S. Bank, we’re on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at—all from Day One.

TOP SKILLS:

• Technology Risk Management
• IT Service Management (ITSM)
• Database Management
• ServiceNow
• Logging and Monitoring Management

BASIC QUALIFICATIONS

• Bachelor’s degree, or equivalent work experience
• Typically, more than eight years of applicable experience

PREFERRED SKILLS/EXPERIENCE

• BA or BS in information technology, or equivalent work experience
• Minimum 7 years of working experience in IT risk and compliance
• General ITIL and COBIT methods and concepts, NIST, FFIEC
• Knowledge of applicable laws and regulations including PCI, SOX, and Privacy
• Ability to effectively prioritize and execute tasks in a fast-paced environment
• Strong critical thinking skills
• CISSP, CRSC, CISA, CCSP Certifications
• Considerable knowledge of applicable laws, regulations, financial services, and regulatory trends that impact their assigned line of business
• Considerable knowledge of the business line’s operations, products/services, systems, and associated risks/controls
• Advanced knowledge of Risk/Compliance/Audit competencies
• Strong leadership and management skills of processes, projects and people
• Excellent written and verbal communication skills
• Strong analytical, problem-solving and negotiation skills
• Proficient computer skills, especially Microsoft Office applications
  If there’s anything we can do to accommodate a disability during any portion of the application or hiring process, please refer to our disability accommodations for applicants.

THIS ROLE OFFERS A HYBRID/FLEXIBLE SCHEDULE, WHICH MEANS THERE’S AN IN-OFFICE EXPECTATION OF 3 OR MORE DAYS PER WEEK AND THE FLEXIBILITY TO WORK OUTSIDE THE OFFICE LOCATION FOR THE OTHER DAYS.

The Technology Risk and Compliance Management team (#TechRCM) provides support to our business partners to maintain an agile, well-controlled environment that can rapidly and reliably deliver services across the enterprise. To achieve this, the Technology Risk Manager must develop a deep understanding of the aligned leader’s area and partner to:

• Consult control owners and leaders about the risk profile of their portfolios of processes and applications
• Serve as a trusted risk advisor to aligned Technology leaders.
• Identify and address risks before they impact objectives
• Oversee and enable the aligned Technology team’s compliance with existing and new requirements
• Evaluate and consult on the risks associated with strategic priorities or major programs and projects
• Provide actionable information to help prioritize risk-mitigation actions across the portfolio of platforms/applications managed by the leader
• Design and enhance effective control environments for technology products and services
• Simplify the existing control environment using process/control re-engineering and automation
• Respond to unexpected events and findings

TOP RESPONSIBILITIES:

• Identify, monitor, and report on processes, risks, and controls within risk appetite
• Influence risk-based outcomes within the Technology group’s portfolios
• Consult on strategic technology infrastructure initiatives that are defined by the product area owner; ensure risks are appropriately documented, reported, and escalated

ROLE RESPONSIBILITIES INCLUDE:

• Collaborate to drive strategic outcomes for the good of the overall team
• Provide advisory and implementation support in the development of management responses to manage associated risk
• Perform risk assessments to evaluate compliance with existing policies and procedures and to accurately identify risks and drive remediation processes to ensure that compliance and security gaps are addressed
• Use data analysis to help aligned Program Leaders develop proactive and anticipatory approaches to risk management
• Provide guidance on how to effectively achieve and sustain compliance with regulatory, industry and contractual obligations, as well as information security policies and practices
• Support aligned Technology team in demonstrating evidence of control effectiveness and identify and escalate control gaps in a timely manner
• Deliver targeted and actionable risk reporting across various leadership levels
• Serve as a functional liaison between the Business Line and second and third lines of defense

Our approach to benefits and total rewards considers our team members’ whole selves and what may be needed to thrive in and outside work. That’s why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following (some may vary based on role, location or hours):

• Healthcare (medical, dental, vision)
• Basic term and optional term life insurance
• Short-term and long-term disability
• Pregnancy disability and parental leave
• 401(k) and employer-funded retirement plan
• Paid vacation (from two to five weeks depending on salary grade and tenure)
• Up to 11 paid holiday opportunities
• Adoption assistance
• Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by la