Manager Technology Risk Office

Support the Sr Manager Technology Risk office to engage Technology and its business, risk, compliance and audit partners to implement and maintain a coordinated operating model that efficiently drives Technology performance while meeting other partner needs. Provide support to Technology teams full cycle from identification of risks to management action plan (MAP) closure. This role will help provide control optimization between SOX/SOC1/SOC2, regulatory requirements and the technology control framework. May provide people leadership in the Technology Risk Office.

Key Responsibilities

• Provide strategic support to the Senior Manager by maintaining and strengthening relationships with Risk & Control Services (RCS)/Internal Audit and Technology Risk stakeholders across the enterprise technology organization, and by collaborating with RCS and other audit and compliance functions to ensure alignment of activities and deliverables with the Technology Risk Office operating model.

• Support end-to-end process of managing SOC 2 audits, ensuring compliance with industry standards and regulatory frameworks.

• Assist in managing Technology regulatory activities, including OCC and Federal Reserve exams, and compliance to NYDFS Cybersecurity regulations.

• Help drive risk management practices by supporting ORM’s five core minimum standards: Risk and Control Self-Assessment (RCSA), Risk Events (REV), Testing the Design and Effectiveness of key controls, Risk of Change (ROC) and Reporting to Governance Committees. Facilitate deployment and maintenance of Technology risk and controls model with assigned Technology teams using industry standard models (e.g., COBIT5, ITIL, NIST) and regulatory mentorship (FFIEC, FCA) as references.

• Be a 'go to' person for RCS, GCO and other technology risk partners when the Sr Manager is unavailable. Leverage the organization’s Technology Control Framework and comprehensive risk catalog to collectively help drive Technology performance while meeting other stakeholder needs.

• Support Technology teams to deploy, supervise and improve their critical functions in alignment with the model requirements. Communicate requirements to Technology teams and, supporting leaders in complying and soliciting areas for improvement

• Implement and support approach to drive Technology Risk Office functions, including detailed processes, risks and controls, and provide reporting of status. Build out current reporting to provide the CIO leadership team a view into current status of effort.

• Work with Risk & Control Services (RCS) and other audit and compliance functions to align work and deliverables with the Technology Risk Office operating model.

• Facilitate the inclusion of Technology Risk Office principles into awareness and training programs on topics such as performance management, quality management, risk management, compliance, etc. Provide technology operational risk domain expertise and engage Technology leaders and their business, risk, compliance and audit partners to further operationalize our technology risk framework.

• 
  

• Required Qualifications

  Experience in public accounting, consulting or internal audit. In depth knowledge of SOC 2 Solid grasp of controls in a technology environment. People and/or team leadership experience.

  Preferred Qualifications

  Strong presentation skills. Financial services experience - particularly Asset Management, Brokerage, Insurance and Annuities. Good level of knowledge and experience in Technology Infrastructure. CISA, CGEIT, CRISC

About Our Company
We’re a diversified financial services leader with more than $1.5 trillion in assets under management, administration and advisement as of 2024. With our team of more than 20,000 people in 20 countries, we advise, manage and protect assets and income of more than 3.5 million individual, small business and institutional clients. We are a longstanding leader in financial planning and advice, a global asset manager and an insurer. Our unwavering focus on our clients and strong financial foundation connects each of our unique businesses - Ameriprise Financial, Columbia Threadneedle Investments and RiverSource Insurance and Annuities. Here, we foster meaningful careers, invest in the future, and make a difference for clients, institutions and communities around the world.

The estimated base salary for this role is $110,000 - $137,000/ year. We have a pay-for-performance compensation philosophy. Your initial total compensation may vary based on job-related knowledge, skills, experience, and geographical work location. In addition, most of our roles are eligible for variable pay in the form of bonus, commissions, and/or long-term incentives depending on the role. We also have a competitive and comprehensive benefits program that supports all aspects of your health and well-being, including but not limited to vacation time, sick time, 401(k), and health, dental and life insurance.Full timeExemptTechnologyTECH Technology