Join our team to play a pivotal role in mitigating tech risks and upholding operational excellence, driving innovation in risk management through the delivery of metrics analysis and reporting.

As a Tech Risk & Controls Lead in the Risk Intelligence & Advisory Communications and Metrics team, you will be play a central role for the implementation of an updated Metrics Transformation Strategy. You'll be responsible for identifying risk and control trends using cutting edge technology and data, in accordance with firm policies and standards. You will also provide subject matter expertise and technical guidance to technology-aligned process, control and metrics owners, ensuring that metric design and reporting aligns with internal frameworks and senior stakeholder expectations. By partnering with various stakeholders, including Product Owners and Metric Owners you will contribute to the reporting of a comprehensive view of technology risk posture and its impact on the business. Your advanced knowledge of risk management principles, practices, and theories will enable you to drive innovative solutions in a dynamic and evolving risk landscape.

Job responsibilities

• Ensures effective identification, quantification, communication, and management of technology risk metrics, focusing and root cause analysis.
• Develops and maintains robust relationships, becoming a trusted partner with CTC teams, Metric Owners and Control Owners.
• Supports implementation of the 2025-2026 Metrics Transformation Strategy.
• Integrates metrics reporting and insights with RIA Risk Communications & Metrics team products.
• Identifies, analyses and reporting on metrics trending data to surface emergent risk or control concerns using data from a range of sources and applies specialist analysis techniques.
• Provides subject matter risk and control expertise to metrics design and change proposals.
• Proactively monitors and evaluates control effectiveness though data, identifies gaps, and recommends enhancements to strengthen risk posture and regulatory compliance.
• Supports governance reporting.

Required qualifications, capabilities, and skills

• Experience or equivalent expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation
• Familiarity with risk management frameworks, industry standards, and financial industry regulatory requirements
• Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies
• Demonstrated ability to influence executive-level strategic decision-making and translating technology insights into business strategies for senior executives

Preferred qualifications, capabilities, and skills

• CISSP, or similar industry-recognized risk and risk certifications are preferred.