Finding the best job has never been easier
Share
Job Description:
The Cybersecurity Control & Planning Governance role will focus on the responsibilities for regulatory change processes specific to information security. Strong policy, control, LRRG knowledge is needed to effectively identify cybersecurity related LRRGs and new issuing authorities. In addition to evaluate policy, standard, process and control coverage of regulatory requirements. Additionally evaluate regulatory change processes including effective risk identification, reporting and escalation. Key Focus area for this role:
Identification and evaluation of new, changed, or proposed laws, rules, regulations, and guidance (LRRGs) related to information security
Evaluation of applicability of the LRRG to the Bank and Information
Analyze and validate coverage of an LRRG from a GIS Policy, Standards and Process/Controls perspective
Communicate and report on Compliance and Operational risk oversight and coverage
Job Description:
This job is responsible for assisting the Compliance and Operational Risk officer team to execute second line of defense compliance and operational risk oversight for a Front-Line Unit, Control Function, and/or Third Parties. Key responsibilities include ensuring requirements of the Global Compliance Enterprise Policy, the Operational Risk Management Enterprise Policy (collectively “the Policies”), the Compliance and Operational Risk Management Program and Standard Operating Procedures are implemented and identifying, challenging, escalating, and mitigating risks in a timely manner.
Responsibilities:
Assists in assessing risks, associated controls and their effectiveness, while driving compliance with applicable laws, rules, and regulations, adhering to policies, and developing reporting and documentation
Engages in activities to provide support to the Compliance and Operational Risk teams in order to provide independent compliance and operational risk oversight of Front-Line Unit or Control Function performance and any related third party/vendor relationships in alignment with the Global Compliance - Enterprise Policy, the Operational Risk Management - Enterprise Policy (collectively the Policies) and the Compliance and Operational Risk Management Program and Standard Operating Procedures
Assists in identifying and escalating problems or issues that arise and drives actions to address the root causes that lead to compliance risk issues and/or operational risk losses• Assists in the development of independent risk management reporting for respective area(s) of coverage as input into management routines
Assists in responding to regulatory inquiries and other audits and examinations
Monitors the regulatory environment to identify regulatory changes applicable to area(s) of coverage and maintains a comprehensive regulatory inventory
Skills
Monitoring and Testing
Process Management
Regulatory Compliance
Reporting
Risk Management
Interpret Relevant Laws, Rules, and Regulations
Issue Management
Policies, Procedures, and Guidelines Management
Attention to Detail
Critical Thinking
Advisory
Business Process Analysis
Active Listening
Written Communications
Minimum Education Requirement:Null
Communicates and Influences with Impact:
Written and oral communications are clear, direct, concise and simple; avoids jargon
Applies the context to work deliverables; demonstratesunderstanding of the "why"
Adjusts style and personalizes message to best connect with others
Supports opinion and recommendations with facts and data
Shares opinion with confidence; stands up for what is right
operates
Understands the purpose, risks, procedures, controls, and escalationrequirements related to their job
Identifies and suggests business improvements and solutions
Supports transfer of knowledge of the business to others
Demonstrates Learning
Demonstrates the ability to remain flexible and adaptable in order tolearn/apply new concepts and stay current on emerging trends (i.e.new technology)
Asks questions in an effort to understand, drawing connections andsimilarities in order to frame new challenges/opportunities; leveragesinformation to take calculated risks
Proactively brainstorms and researches a wide range of options tofind the best solutions to address opportunities
Proactively engages others for feedback as an opportunity to drive
Delivers Results:
Holds self and others accountable for consistent quality execution ofprocedures, controls, and risk escalation
Demonstrates and encourages collaboration within and beyond team
Advocates the value of change and gets team and key stakeholders on
Cultivate Talent &
Actively supports and participates in an environment that valuesdiversity, where people can speak up, share bad news and get betteroutcomes through dialogue and debate
Supports opportunities to build a pipeline of strong, diverse talent
Supports the growth and development of junior talent; provides peercoaching and feedback
Delivers Second-Line Risk
Understands the Compliance & Ops Risk Program and how it appliesto daily work activity
Knows how laws, rules and regulations apply to businesses, functions,products, jurisdictions and/or the enterprise
Understands the business processes (design through execution), therole of effective controls, and the potential impact to operationallosses
Assesses for and identifies compliance and operational risks in theactivities of a FLU/ECF or the Company (EAC) through monitoring,assessment and testing activities
Documents, analyzes, reports and escalates as needed risk issues(e.g., control weaknesses, violations, metric breaches)
Mitigates compliance and operational risk through means such aspolicy reviews and updates, issue remediation/action plans, andtraining needs
Communicates risks and issues concisely, clearly and timely; drivestransparency and accountability with appropriate parties
Supports the execution of risk governance and management routines
Escalates risks not being mitigated in a timely manner to appropriateleaders and senior management
Required Skills:
Regulatory Compliance
Interpret Relevant Laws, Rules, and Regulations
GIS Policy, Standards and Baselines Management
Risk Management
Desired Skills:
Monitoring and Testing of Processes/Controls
Process Management
Executive Reporting
Issue Management
These jobs might be a good fit