Key responsibilities
As a Technology Transformation Risk Manager, you will play a pivotal role in ensuring that technology transformations within the organization are carried out with a comprehensive understanding and management of the associated risks. You will be responsible for identifying, evaluating, and mitigating risks related to technology change initiatives, ensuring alignment with the company's risk appetite and compliance with relevant regulations and standards.
While delivering quality client services and enabling high-performing teams, you will drive high-value work products within expected timeframes and budget. You will monitor progress, manage risks and ensure key stakeholders are kept informed about progress and expected outcomes.
- Lead risk assessments for technology transformation projects, including cloud migrations, system implementations, and digital innovations.
- Develop and maintain a risk management framework tailored to technology transformations, integrating industry best practices and regulatory requirements.
- Collaborate with project teams to identify potential risks early in the transformation lifecycle and recommend mitigation strategies.
- Monitor the effectiveness of risk mitigation plans and adjust as necessary to address emerging risks and changes in the project scope.
- Facilitate risk workshops and training sessions to promote risk awareness and a proactive risk management culture among technology and business teams.
- Liaise with internal and external stakeholders, including auditors, regulators, and third-party vendors, to ensure comprehensive risk coverage.
- Provide regular reporting to senior management on the risk profile of technology transformation initiatives, including key risk indicators and status of mitigation efforts.
- Stay abreast of emerging technologies, industry trends, and regulatory changes that may impact the risk landscape of technology transformations.
- Support the continuous improvement of risk management policies, procedures, and tools.
To qualify for the role, you must have
- Bachelor's or Master's degree in Information Technology, Computer Science, Risk Management, or a related field.
- Minimum of 5 years of experience in technology risk management, with a focus on transformation projects.
- Strong understanding of IT governance frameworks (e.g., COBIT, ITIL), cybersecurity principles, and data privacy regulations (e.g., GDPR, CCPA).
- Desired experience in Internal controls within SAP ECC/S4 Applications and their integrations and strong understanding of IT application controls, IT general controls and interface controls
- Professional certifications such as CRISC, CISM, CISSP, or equivalent are highly desirable.
- Strong exposure working in client facing roles, collaborate with cross functional teams including internal audits, IT security and business stakeholders to assess control effectiveness and facilitate remediation activities.
- Excellent communication, documentation and report writing skills.
EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets.