Overview
Responsible for supporting all aspects of the Technology Committee including the development, implementation, and oversight of second line risk management activities such as risk assessments, policies and procedures, monitoring, and any associated remediation. Works closely with team members to enhance and further develop quality assurance and quality control programs. Knowledge of enterprise IT operations will help them administer the Technology Committee and work with internal audit and SOX compliance teams while helping to direct ERM analysts in day-to-day activities.
Job Description

• Work with IT Infrastructure and Application Development leadership to implement IT risk management activities: Identify the list of processes that define the IT domain;
• Assist with the development of Risk Assessments based on PennyMac's ERM framework;
• Assist with the development of corporate and division policies and procedures necessary to mitigate Risk Assessment and Risk Report exposures;
• Assist with the development of corporate training requirements for IT related exposures;
• Assist in the development of QA for IT Infrastructure and Application Development;
• Assist in the development of QC routines for IT Infrastructure and Application Development; and
• Coordinate monitoring requirements with Internal Audit and ensure linkage of Risk KPIs to Performance Evaluation.
• Serve as the second line of defense for IT policies, processes, and procedures.
• Assist with the development and administration of the Technology Committee.
• Support ERM governance with the development of presentation materials for various committees and boards.
• Liaison with Internal Audit, second line risk teams, and SOX compliance teams.
• Provide IT related support to the Technology Committee including risk reporting, remediation plans, and follow-up on action items.
• Manage the Technology Committee's compliance with ERM Management Committee Governance requirements.
• Coordinate routine management of the Technology Committee Risk Assessment in accordance with ERM requirements.
• Coordinate routine management of the Technology Committee risk report in accordance with ERM requirements, including oversight responsibility for the development and timely completion of necessary remediation activities to further mitigate potential risk to the organization.
• Maintain a contemporary understanding of Technology Committee owned policy requirements and associated quality assurance and quality control reporting in place to ensure adequate coverage of the Technology Committee's scope of oversight responsibilities.
• Assist in the development and maintenance of the Technology Committee monitoring policy, including routines for communicating compliance with all requirements to Technology Committee membership.
• Facilitate risk management feedback loops to ensure a consistent understanding of the development, maintenance, and results of first, second, and third line testing routines.
• Develop clear and concise presentations for executive management.
• Perform other related duties as required and assigned.
• Demonstrate behaviors which are aligned with the organization's desired culture and values

Ideal Candidate will have the following:

• Strong leadership skills as evidenced by an ability to lead and motivate others, function independently, and prioritize work.
• Demonstrate knowledge of enterprise IT functions, operations, and associated risks.
• Familiarity with risk assessment and management methodologies.
• Must be highly proficient in Microsoft Excel, Word, and PowerPoint or GSuite equivalents.
• Must be a team player with strong attention to detail and able to work independently.
• Proven track record of delivering timely and accurate information in a fast-paced environment.
• Excellent critical thinking, problem solving skills, and sound judgment.
• Strong business acumen and ability to interface with executive management.
• Excellent communication skills (Written, Verbal).