(Remote Work) IT Risk Management Director – Empower Retirement

Job Overview

• Job Title IT Risk Management Director
• Hiring Organization Empower Retirement
• Company Website https://www.empower.com/
• Remote Locations US
• Job Type  Remote, Full-Time

As a key member of the Enterprise Risk Management team, you will support the VP Operational & Strategic Risk Management in maturing risk management practices across the firm and monitoring the risk profile of the organization with a particular focus on technology risks. This role will be responsible for the development, implementation and oversight of the Company’s Technology Risk Management (“TRM”) Framework.

Job Responsibilities

• Define and execute 2nd Line of Defense (LOD) technology risk management strategy to evolve risk management practices and strengthen the control environment; in conjunction with the Chief Information Officer develop and execute against implementation roadmap
• Identify and lead targeted risk assessments to identify potential risk exposures, assess adequacy of controls, recommend control enhancements, and drive support for remediation
• Foster a strong risk culture through valued partnership with the Technology organization, encouraging open dialogue, and challenging where necessary to ensure risks are being appropriately addressed
• Proactively identify areas where technology risks may not be adequately addressed and engage leaders to challenge practices and recommend necessary improvements
• Monitor the technology risk profile of the organization through deep engagement across ITSM processes, staying abreast of emerging trends within the industry, and identifying changes to the organization’s threat landscape
• Identify potential cybersecurity and technology risks associated with new and evolving business processes, assessing impacts to those processes, and engaging with leaders to counsel them on risk treatment options based on risk appetite
• Perform independent reviews of technology controls across the organization, including assessing the design effectiveness of security measures, access controls, change management processes, and data protection practices
• Ensure compliance with relevant technology risk management policies, standards, and regulations, and provide guidance on policy updates and improvements
• Ensure change risk management practices are embedded within the Technology organization to identify, mitigate, and monitor risks related to key Technology related initiatives
• Drive issue resolution stemming from Technology process breakpoints, including determination of root cause and accompanying remediation
• Recommend mitigations to address control or policy gaps and monitor status of recommendations until implemented
• Prepare quarterly TRM reporting for management and/or board risk committees
• Serve as the primary point of contact for the Technology organization, interacting regularly with the Chief Information Officer, Chief Information Security Officer, and other senior leaders

Job Requirements

• Bachelor’s Degree required
• 15+ years of experience in any of the following areas: Risk, Information Security, Internal Audit or similar experience
• Strong understanding of security risk management frameworks such as ISO 27001/27002, NIST, COBIT, and ITIL
• Deep knowledge of technology risks across various domains including cybersecurity, data privacy, application security, infrastructure security, and cloud computing.
• Ability to build strong relationships across the organization & influence key stakeholders; ability to drive and lead others through change
• Experience in conducting risk assessments, control testing, and internal audit functions
• Demonstrated effective written and verbal communication skills including the ability to communicate about complex topics in concise terms
• A strategic thinker with strong analytical skills and excellent judgement; able to seamlessly transition between blue sky thinking and tactical execution

Employee Benefits

We offer an array of diverse and inclusive benefits regardless of where you are in your career. We believe that providing our employees with the means to lead healthy balanced lives results in the best possible work performance.

• Medical, dental, vision and life insurance
• Retirement savings – 401(k) plan with generous company matching contributions (up to 6%), financial advisory services, potential company discretionary contribution, and a broad investment lineup
• Tuition reimbursement up to $5,250/year
• Business-casual environment that includes the option to wear jeans
• Generous paid time off upon hire – including a paid time off program plus ten paid company holidays and three floating holidays each calendar year
• Paid volunteer time — 16 hours per calendar year
• Leave of absence programs – including paid parental leave, paid short- and long-term disability, and Family and Medical Leave (FMLA)
• Business Resource Groups (BRGs) – internal networks that rally around common interest, experiences and identities such as race, ethnicity, gender, ability, military status and sexual orientation. BRGs play a vital role in educating and engaging our people and advancing our business priorities.

How To Apply

Click “Apply” below to fill in the application form!