Director, Technology Risk Management

Posted:
10/9/2024, 10:00:22 AM

Location(s):
Connecticut, United States ⋅ Stamford, Connecticut, United States

Experience Level(s):
Senior

Field(s):
IT & Security

If you’re looking for a meaningful career, you’ll find it here at Webster. Founded in 1935, our focus has always been to put people first--doing whatever we can to help individuals, families, businesses and our colleagues achieve their financial goals. As a leading commercial bank, we remain passionate about serving our clients and supporting our communities. Integrity, Collaboration, Accountability, Agility, Respect, Excellence are Webster’s values, these set us apart as a bank and as an employer.  

Come join our team where you can expand your career potential, benefit from our robust development opportunities, and enjoy meaningful work!

Director, Technology Risk Management

The Director, Tech Risk in the first line of defense (ITRM) team will report to the Managing Director (MD), Technology Risk and supports the MD with the development and execution of the technology risk program within Webster Financial Corporation. 

This colleague will take a leading role in the design, implementation, improvement, and management of technology risk functions for Webster.  The Director is expected to identify and mitigate all risks associated with Webster Technology and will be responsible for implementing risk management strategies and provide oversight to technology’s response to assurance activities.   

MAJOR DUTIES & RESPONSIBILITES

  • The Director, Tech Risk will support the Managing Director (DM) in the design, implementation, and execution of the Enterprise Risk Management framework within First Line.
  • In collaboration with IT process owners, lead the identification of material risks associated with Webster Technology activities, and the establishment of necessary operating procedures and technical standards to mitigate these risks and comply with policies and standards.
  • Coach process owners on control design, self-assessment processes (RCSA), control testing, and identifying KPIs and KRIs. Maintain overall Webster Technology process taxonomy. Participate in the integration with the central GRC platform.
  • Take a leading role within the organization to adapt risk and audit processes and practices to align to an agile operating model.
  • Assist in defining enterprise-wide risk appetite for appropriate risk types.
  • In partnership with second line of defense, monitor for new legal requirements and communicate across Webster Technology as required.
  • Oversee and/or conduct gap analyses and monitor progress toward implementation.
  • In collaboration with the second line, monitor for new regulatory guidance associated with Webster Technology activities.
  • Other responsibilities as outlined in the FLRO Addendum

EDUCATION, EXPERIENCE & SKILLS
 

  • Bachelor's degree.
  • At least 5 years of Risk or Audit related experience in financial institutions.
  • 8+ years of experience in Risk or Audit functions, preferably in a banking environment.
  • Self-Assessments, risk identification, issues reporting and mitigation, risk metric reporting, and Emerging Risks.
  • Ability to manage change and effectively influence and consistently build strong lasting working relationships with stakeholders across all levels.
  • Able to work on multiple projects/initiatives concurrently to be able to understand the team’s strategic objectives and decision making for execution.
  • Ability to plainly describe risk concepts to first line technology personnel.
  • Synthesis of complex and potentially conflicting data into simple, actionable reporting.
  • Familiarity with technology, and an aptitude for learning emerging technologies and how regulatory requirements may evolve. 
  • Strong written and verbal communication skills -- ability to collaborate and communicate up/down and across the organization with internal/external partners.
  • Ability to resolve conflicting opinions without compromising high quality risk management.
  • Excellent work ethic, accountability, integrity, high degree of autonomy and personal drive.
  • Strong Excel and PowerPoint skills.
  • CISA, CRISC, CISSP or other auditing or risk management certification is desired.
  • Experience with industry leading GRC systems is a positive.

The estimated salary range for this position is $135,000.00 to $160,000.00. Actual salary may vary up or down depending on job-related factors which may include knowledge, skills, experience, and location. In addition, this position is eligible for incentive compensation.

#LI-Hybrid

#LI-FO1

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.