Information Risk Lead Resume Samples

4.5 (78 votes) for Information Risk Lead Resume Samples

The Guide To Resume Tailoring

Guide the recruiter to the conclusion that you are the best candidate for the information risk lead job. It’s actually very simple. Tailor your resume by picking relevant responsibilities from the examples below and then add your accomplishments. This way, you can position yourself in the best way to get hired.

Craft your perfect resume by picking job responsibilities written by professional recruiters

Pick from the thousands of curated job responsibilities used by the leading companies

Tailor your resume & cover letter with wording that best fits for each job you apply

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

Resume Builder
CHOOSE THE BEST TEMPLATE - Choose from 15 Leading Templates. No need to think about design details.
USE PRE-WRITTEN BULLET POINTS - Select from thousands of pre-written bullet points.
SAVE YOUR DOCUMENTS IN PDF FILES - Instantly download in PDF format or share a custom link.

Resume Builder

Create a Resume in Minutes with Professional Resume Templates

Create a Resume in Minutes
MK
M Konopelski
Melvin
Konopelski
486 Louisa Green
Dallas
TX
+1 (555) 765 7483
486 Louisa Green
Dallas
TX
Phone
p +1 (555) 765 7483
Experience Experience
Houston, TX
Information Risk Lead
Houston, TX
Harvey-Feeney
Houston, TX
Information Risk Lead
  • Assist with various Third Party Risk Management program initiatives working closely with the Third Party Risk Management Leads
  • Oversight & management of a multi-disciplined GTI TP-IRM Assessment Team. Manage team and develop resources providing regular feedback
  • Assist with various Asset Management Information Risk Management program initiatives working closely with the Leads of respective programs
  • Develop, implement, and execute various processes to monitor regulatory related controls to ensure that they are being effectively executed
  • Document findings and work with the LOB Delivery Manager to resolve those findings through Control Breaks logged within internal risk management systems
  • Develop processes and tools that encourage continuous performance improvements
  • Provides recommendations for operational efficiency and process improvements subject to management review in support of change
Philadelphia, PA
Information Risk Lead-cybersecurity
Philadelphia, PA
Jerde, Hills and Moore
Philadelphia, PA
Information Risk Lead-cybersecurity
  • Assist and provide consultation to drive program issue resolution and/or escalation as necessary
  • Participate in strategy formulation and negotiation on high value/high risk/complex relationships
  • Consistently demonstrate a high level of professionalism in behavior and performance with client organizations and staff
  • Collaborate with senior leaders to understand their expectations regarding program governance and project management
  • Manage business impact and expectations for corporate technology service delivery process and communications
  • Streamline communication mechanisms and processes to Senior Executives, Line of Business & Corporate Technology teams on Cybersecurity Program governance and routine Cybersecurity status
  • Continuous program governance improvement
present
Los Angeles, CA
Information Risk Lead-VP
Los Angeles, CA
Torphy, Beahan and Abshire
present
Los Angeles, CA
Information Risk Lead-VP
present
  • IT Risk management for the CIB line of business
  • Manage and monitor the IT Risk posture for the business, providing management with transparency over what these risks are and how they can be addressed
  • Coordinate all relevant IT Risk activities (e.g., regulatory inspections and assessments, control testing, monitoring, reporting and remediation activities)
  • Act as a subject matter expert in relation to IT Risk, Control and Security
  • Develop and maintain strong business and technology relationships, becoming a trusted partner, as well as building relationships with Corporate functions such as Audit, Corporate IT Risk and Global Technology Infrastructure
  • Participate in or lead programs to improve or remediate the control environment across the CIB
  • Build a culture focused on the pro-active awareness and improvement of the risk environment
Education Education
Bachelor’s Degree in Demonstrated Technical Expertise
Bachelor’s Degree in Demonstrated Technical Expertise
Harvard University
Bachelor’s Degree in Demonstrated Technical Expertise
Skills Skills
  • Project management experience
  • Experience with Phoenix or ITRC application is
  • Knowledge of Corporate Risks, IT Controls and other regulations
  • Proficient in MS Office (Word, Excel, Access, and Power Point)
  • Excellent oral and written communication skills
  • Ability to deliver high quality results under tight deadlines
  • Attention to detail
  • Responsible for running multiple projects, simultaneously
  • Ensure projects delivered on time
  • Keep all projects in program on track - Escalates decisions to key individuals as necessary
Create a Resume in Minutes

8 Information Risk Lead resume templates

1

CCB Information Risk Lead Resume Examples & Samples

  • Access administration best practices across Mainframe and distributed platforms including entitlements and role based access methodologies
  • Understanding of multiple technology platforms and methodologies including mainframe, distributed, midrange, and windows environments
  • Partner with IT Audit colleagues to address risk issues within the organization
  • Ability to articulate the business value and impact of advanced technical and non-technical information, and recommend automated and cost effective solutions using that information
  • High degree of demonstrated technical expertise/professional mastery to recommend technical solutions and best practices
  • 10 plus years related business experience, including experience in 3-5 years in Risk Management and/or Technology Audit functions
  • 7-10 years of work experience in one or more areas of infrastructure is preferred with a broad understanding of infrastructure
  • Project management skills to establish and execute risk related projects effectively and the ability to resolve conflicts
  • BA/BS Degree or Equivalent Experience
2

Information Risk Lead Resume Examples & Samples

  • 5 years of work experience as a Information Risk Management
  • 5 years of project management experience
  • 2 years of business re-engineering/process improvement experience, including leading and coaching quality improvement projects
  • Six Sigma and/or CMM methodologies experience is a plus
  • Lead experience is a plus
  • Ability to create/define metrics that accurately reflects the current state of a given process
  • Ability to coach and transfer knowledge to key stakeholders, such as Senior Business Executives, Senior Technology Managers and Business Managers
3

Information Risk Lead Resume Examples & Samples

  • Bachelors degree or equivalent experience required, ideally in a business or financial discipline
  • Minimum 5 years of work experience in Information Risk
  • Experience with Phoenix or ITRC application is a plus
  • Knowledge of Corporate Risks, IT Controls and other regulations
  • Proficient in MS Office (Word, Excel, Access, and Power Point)
  • Ability to deliver high quality results under tight deadlines
4

I&AM Information Risk Lead Resume Examples & Samples

  • 7-10years in Risk Management and/or Technology Audit functions
  • A working background with one of the major Consumer Lines of Business within JPMorgan Chase is highly preferred
  • Thorough knowledge of Identity and Access Management controls, principles, methods and regulatory related obligations
  • Project engagement or management skills to establish and execute risk related projects effectively and the ability to resolve conflicts
  • Operations-oriented capabilities; to include deep analytical skills, trend analysis, service level/operational performance metrics and executive level reporting abilities (written and verbal)
  • Complete understanding of JPMorgan Chase IT access control policies
  • Strong written and verbal presentation skills to a wide variety of senior managers across the organization
  • CRISC, CISSP or CISM/CISA certifications a plus
5

Information Risk Lead-infrastructure IRM Resume Examples & Samples

  • Planning, communicating, executing infrastructure and application self-assessments
  • Driving risk components of corporate infrastructure initiatives, defining risk management / control requirements, setting direction and participating in risk initiatives
  • Provide input and support in representing cross-LOB forums for addressing and responding to IT Risk issues
  • Partner with GTI and IT Audit colleagues to address risk issues within the CCB organization
  • 7 yearsof work experience within Information Technology
  • Minimum 4 years of work experience as a Information Risk Manager or IT Audit
  • Expert knowledge of technology controls
  • Solid understanding of technology, operations and business processes
  • Minimum of 2 years of business re-engineering/process improvement experience, including leading quality improvement projects
  • Excellent written and oral presentation skills
  • Significant experience and aptitude to presenting and influencing senior managers
  • Proven capability to coach and transfer knowledge to key stakeholders
6

Information Risk Lead-cybersecurity Resume Examples & Samples

  • Participate in strategy formulation and negotiation on high value/high risk/complex relationships
  • Consistently demonstrate a high level of professionalism in behavior and performance with client organizations and staff
  • Collaborate with senior leaders to understand their expectations regarding program governance and project management
  • Manage business impact and expectations for corporate technology service delivery process and communications
  • Develop strategic relationships internal to JPMC partnering for success
  • 5 years experience in technology or operational risk management, regulatory compliance or audit
  • Excellent communication (verbal and written), including succinctly advising senior management of risks, challenges and potential solutions
  • Strong organizational skills and the ability to drive complex projects across multiple lines of businesses or functional groups
7

Information Risk Lead Resume Examples & Samples

  • Engage with LOB Delivery Managers to ensure compliance with all required assessments per the JPMC policy and procedures
  • Drive all aspects of the risk assessment of third party providers
  • Engage and lead Line of Businesses (LOBs) that use the third party in lesser risked engagements and incorporate the other LOBs assessment criteria into the assessment
  • Assess completed questionnaire and supporting field work materials to ensure they are complete and meet JPMC expectations
  • Identify control breaks and vulnerabilities with a third party
  • 8+ years of experience in IT
  • Proficient working knowledge within the following risk domains/technologies: Database and application security
  • Firewall technologies
  • Key Management/Tokenization
8

Information Risk Lead Resume Examples & Samples

  • Responsible for running multiple projects, simultaneously
  • Keep all projects in program on track - Escalates decisions to key individuals as necessary
  • Clearly define requirements and make targets accordingly
  • You will make sure all the measures comply with company standards and procedures
  • 7 – 10 years experience in IT Risk Management
  • 5 years Program/Project Management Experience
  • Experience managing a team of up to 10 people
  • Experienced in working across a line or business or an enterprise
  • Vendor Management experience
  • Strong understanding of Risk Technology Controls and driving Business programs
  • Ability to manage multiple work streams and efforts throughout the organization
  • Excellent organization, prioritization, relationship building skills
  • Ability to collaborate with multiple functions and gain consensus
  • Skills in risk based prioritization
  • Presentation Skills
  • Ability to follow tight deadlines, organize and prioritize work
9

Information Risk Lead Resume Examples & Samples

  • Thorough knowledge of the technology risk and control environment and an understanding of industry IT Risk best practices
  • Capacity to consult with clients to interpret JPMC risk policies and procedures to protect the Firm’s information
  • Excellent command of business knowledge and ability to solicit input from internal and external sources
  • Capacity to lead small-to medium-scale projects and delivers presentations with minimal supervision
  • Dissects complex situations and refocuses on critical technology tasks
  • 7 years of experience in IT, IT Risk management, audit orequivalent
10

Cib-information Risk Lead-VP-mumbai Resume Examples & Samples

  • To provide tools, consultancy and governance to assist the Corporate and Investment Bank in managing the line of business, corporate, and external information security and risk requirements
  • Execute an effective risk management program including high quality Control Self Assessment and Sarbanes-Oxley compliance, leveraging key global processes and tools
  • Interpret corporate , industry and local regulatory policies and guidelines as It applies to the respective technology teams, communicate these clearly alongside status and guide constituents to ensure compliance in a pragmatic fashion
  • Develop and maintain strong business and technology relationships, becoming a trusted partner to these group
  • Ensure technology control gaps are documented clearly and remediation plans are developed to address them as well as investigating and resolving control incidents
  • Coordinate interaction with external audit and regulators on control environments and issues
  • Build a culture and climate focused on the proactive awareness of and continuous improvement in the risk environment
  • Degree in a numerate discipline
  • CISSP Certification
  • CISA Certification
  • Corporate & Investment bank experience
  • Investment bank experience
11

Cib-information Risk Lead-technology Resume Examples & Samples

  • Experience presenting risk and control agenda to senior management
  • Program and project management experience
  • Application Risk and Control specialist (alternative - Infrastructure Risk experience and knowledge with highly analytical skills)
  • IT Risk management program for the line of business
  • Coordinate all relevant IT Risk activities (e.g., regulatory inspections and assessments, control testing, monitoring, reporting and remediation activities)
  • Build a culture focused on the pro-active awareness and improvement of the risk environment
  • Stakeholder engagement skills, including ability to influence senior management
  • Demonstrated capability of designing and implementing cross-functional programs; strong project management skills
  • Graduate
12

Ccb-mortgage Information Risk Lead Resume Examples & Samples

  • Perform IT application control assessments using standard company tools and process to identify control deficiencies
  • Engage with technology and business partners to ensure compliance with all required assessments per company policy/standards; issue final report and discuss results with key stakeholders
  • Perform validation of IT risk issues prior to closure of assessment identified gap
  • Identify opportunities for process improvements to deliver increasing efficiency within assessment framework
  • 7+ years of experience in IT, IT Risk management, audit or equivalent
  • Proficient risk assessment, interpretation, analytical and negotiation skills
  • Proficient verbal and written communication skills, including the ability to effectively lead discussions and meetings
  • Proficient technical skills, including: audit, business analysis, change management, IT Risk Management, operation systems and data sources knowledge, performance metrics and reporting, technical problem resolution, project management, and vendor management
  • Good working knowledge within the following risk domains/technologies
  • Knowledge of current regulatory impact and expectations on technology per Sarbanes Oxley, Gramm-Leach Bliley Act, Frank-Dodd, RESPA, and other regulations affecting the Credit Card industry
  • Security Certifications i.e. CISSP, CISA are preferred
13

Information Risk Lead Resume Examples & Samples

  • Establish basic understanding of the application inventory to assist developers in risk classifying applications and assess application level controls (internal and 3rd party)
  • Manage and track application security issues through resolution sourced from self assessments, penetration tests or application security reviews/scans
  • Proficient in IT Control practices including: audit / self assessments, operational systems and data sources knowledge, risk management, performance metrics and reporting, and technical problem resolution
  • Demonstrated ability to interact with technical and business stakeholders as well as senior leaders
  • 5-7 years experience in Information Risk, Information Security or IT auditor role
  • Minimum of 5 years of Financial Services experience
  • Database and Application Security
  • System / Access Administration
  • Database/Application / Network Layer Secure Protocols
  • Secure Software / Code Development
  • Vulnerability / Threat Management
  • Third Party Risk Management
  • Project Assurance and Software Development Lifecycle
14

Information Risk Lead Resume Examples & Samples

  • Interface with various internal groups including Operations, Compliance, Risk Managers, Line of Business contacts, internal/external audit and Legal as necessary
  • Develop, implement, and execute various processes to monitor regulatory related controls to ensure that they are being effectively executed
  • Develop associated reporting and escalation processes, engaging management on appropriate actions
  • Minimum7 years experience in regulatory compliance, operational risk, audit or risk management
  • Experience working with Global Identity and Access Managementtools and processes
  • Ability to work independently and proactively to accomplish multiple objectives concurrently
  • Knowledge of Phoenix application and risk control self assessment (RCSA) is preferred
  • College degree (preferred) or equivalent work experience
15

Information Risk Lead Resume Examples & Samples

  • To provide oversight and governance of the Control Self Assessment and Application Assessment processes
  • Promote standardization of the framework for execution of Technology RCSA’s across CMA in alignment with CCB Oversight and Control’s RCSA Procedures, including process definition, assessment scheduling, communication, execution, and reporting on CCB Technology RCSAs
  • To provide guidance to the Technology Control Teams in developing control issues and action plans
  • To evaluate the control self assessment substantiation and to provide feedback to assist the Technology control Teams in improving their processes
  • To review Acton Plans for closure to ensure risks identified have been sufficiently remediated
  • Deliver a CMA view of reporting for IT risk metrics
  • Act as an interface with firm-wide forums, business partners, and controls organizations to ensure consistent execution and adherence to CCB and firmwide practices
  • Strong risk management or audit skills
  • 7 years of Risk or Audit experience
  • Bachelor's Degree or Equivalent
  • Knowledge of ISACA, NIST and other Industry-based Risk Management Standards
  • Working knowledge of Microsoft Office products, including Excel, PowerPoint, and Access
  • Working knowledge of SharePoint and Business Objects
  • Strong communication, interpersonal skills, and the ability to handle conflicts
  • Detail-oriented and committed to quality
  • Able to work independently on projects and produce required results in a timely manner
  • Highly self-motivated, able to multi-task, and handle multiple deadlines
  • Ability to work across LOBs and balance the needs of multiple organizations
  • Strong organization skills
  • Forward-looking and creative thinker, with a general problem-solving and analytical mindset
16

Information Risk Lead Resume Examples & Samples

  • Experience in program/project management focusing on large scale deployments/projects
  • Demonstrated experience and ability in development of reporting and metrics
  • Broad understanding of end user technologies including Excel, Access and Sharepoint, as well as an understanding of reporting tools
  • Experience in functional analysis, requirements gathering, use case development
  • Proven ability in managing business & technology relationships and influencing businesses/functions with respect to risk remediation
  • Demonstrated proactive thought leadership, in developing & implementing strategies for risk remediation and reduction
  • Good verbal & written communication, influencing, negotiation and conflict management skills
  • Demonstrated ability to work independently as well as within a team
  • Proven ability to collaborate and build strong partnerships across the organization and work across organizational boundaries without direct authority
17

Senior Information Risk Lead Resume Examples & Samples

  • Take a leadership role in working with the Line of Business (LOB) IRMs across CCB to ensure that the RF&T IRM strategy is executed within the CCB LOBs
  • Development and ongoing support of Reporting for Risk Technology to the Risk Organization (business) as well as breaking down data to provide Risk Stripes with their specific view of the current state of Controls and Residual Risk
  • Assist in interpreting corporate control guidelines and policies, communicating these clearly alongside current status, and guide constituents to ensure compliance in a pragmatic fashion and working with the other LOB CCB IRM teams to implement the standards established
  • Ensure that information risk control issues/gaps are documented clearly and that remediation plans are developed to address them, as well as investigating and resolving control incidents
  • Participate and where appropriate lead projects to improve or remediate controls, with scope varying from individual Risk Stripes or Risk Technology as a whole
  • Coordinate interaction with internal and external audit on control requirements and issues and ensure that information from audits completed is leveraged to improve controls across the entire platform
  • Build a culture and climate focused on the pro-active awareness of, and continuous improvement in, the technology risk environment, utilizing existing training materials and developing bespoke content where applicable
  • Initiative and drive to succeed coupled with the ability to form strong relationships with differing levels within business and technology
  • Ability to influence in a complex matrix organization
  • Project and program management skills
  • BA / BS required; Masters in Business or Engineering/Computer Science or equivalent preferred
  • Relevant experience in control, risk management, auditing or information security
  • Strong problem solving and analytical capabilities
  • Understanding of financial services technology, operations and business processes, investment banking a plus
  • Solid understanding of key technology risk including SDLC, Change Management, Capacity Management, etc
18

Information Risk Lead-rcsa Resume Examples & Samples

  • Bachelor's degree (or equivalent work experience or specialized training) in Business, Management Information
  • Experience in Business Process Modeling a plus
  • Experience in managing small projects helpful
19

Information Risk Lead Resume Examples & Samples

  • Manage residual vendor risk (RPs, NCAs, etc) communicating to internal stakeholders
  • Respond to internal audit requests, OCC requests, and other duties as assigned timely
  • Document findings and responsible for working with Senior Managers & Delivery Manager to resolve those findings through Remediation Plans (RPs) or seek Non-Compliance Acceptance (NCA) approvals
  • 4+ years of experience in IT Risk management, audit or equivalent preferably in a manager role
  • 5+ years of experience in IT
  • Proficient working knowledge with Infrastructure and InfoSec risk domains/technologies
20

Information Risk Lead Resume Examples & Samples

  • Promote the corporate self-assessment programs (RCSA and ACA) ensuring technology control owners are assessing the technology risk in their environments identifying breaks in their control effectiveness
  • Provide quality assurance (QA) over the self-assessments to ensure they meet corporate compliance
  • Communicate risk and other control findings and develop recommendations for resolution
  • Develop reporting with key, focused messages to enable constituency to understand their risk position
  • Ensure that technology control issues and gaps are documented clearly and that realistic remediation plans are developed to address them, as well as investigating and resolving control incidents
  • Support of Operational Risk initiatives ensuring compliance with corporate policy and regulations
  • Interface with AD teams on an on-going basis for BAU risk activities as well as project initiatives
  • Understand technology from a strategic perspective as it relates to managing risk in the organization
  • Partner with CT&R Third Party Oversight (TPO) teams to ensure effective risk management of vendors engaged by technology partners
  • Partner with line of business Third Party Oversight (TPO) teams to ensure effective risk management of vendors engaged by technology partners
  • Provide technical risk project consultancy for technology teams rolling out new products in the firm so that they are secure from the start and fully compliant with the firms risk policies and standards
  • Interface with the line of business Oversight and Control teams to ensure technology risk impacting the business is effectively tracked and documented
  • Escalate issues to senior management as warranted
  • Manage any other assigned duties as required
  • Needs to be able to work independently as well as in a team environment, demonstrating creativity and an ability to check work conscientiously for errors and make decisions based on priorities, time constraints and risks. Candidate should be able to write professional documents both for internal and external purposes as well as being comfortable with presenting to senior leadership and often delivering a tough message. Role requires a candidate with a strong analytical background and technical skills with the ability to assess and communicate the operational, technical, and financial impact of risk findings and control issues
21

Information Risk Lead Resume Examples & Samples

  • 7 to 10 years of Technology, IT Risk/Security or Security Audit experience
  • IT Risk Certification (CISA, CISSP, etc)
  • BA/BS Degree Preferred
22

Information Risk Lead VP Resume Examples & Samples

  • Regulatory experience within Asia Pacific in a risk and control function
  • Develop and maintain strong business and technology relationships, becoming a trusted partner, as well as building relationships with Corporate functions such as Audit, Corporate IT Risk and Global Technology Infrastructure
  • Participate in or lead programs to improve or remediate the control environment across the CIB
  • Interpret regulatory requirements and Corporate policies, communicate these clearly alongside current status, and provide oversight of compliance as required. Respond to regulatory enquiries and exams
  • Provide thought leadership to improve process and control efficiency/effectiveness
  • Strong demonstrated knowledge of IT risk management gained as a practitioner
  • Strong decision making capability
  • In-depth Infrastructure knowledge in OS (Windows & UNIX/LINUX), DB (Oracle/Sybase/MSSQL) and Networking (Firewall & IDS/IPS)
  • Track record of implementing successful risk or technology management solutions
23

Information Risk Lead Resume Examples & Samples

  • Implements information risk processes, executes and monitors risk related procedures, promotes risk policy awareness, and/or tracks and reports on risk compliance in line with established IT Control policies, processes and procedures
  • Ensures that the development, maintenance and execution of information classification, backup and recovery requirements, access administration, compliance & vulnerability management and control self-assessment processes are in accordance with applicable Information Risk Management Policies & Standards
  • Identifies potential information security risks/threats and notifies senior management; actively participates in GTI Service Delivery monthly review and other risk forums
  • Establishes working relationships with technical, business and quality assurance counterparts. Collaborates with IT Risk and Security Management, internal and external Audit, and Regulatory bodies to effectively manage and mitigate risk issues
  • Ensure IPD compliance with the firm's IT Risk Management Policies and Standards
  • Promotes awareness programs designed to ensure that IPD staff understand current information risks/threats and how these are to be managed
  • Acts as a subject matter expert in information risk, controls, compliance and security best practices
  • Manages risk and vulnerability assessments of IPD systems and applications, facilitates compliance/control reviews and associated remediation efforts
  • Develops effective solutions for the management of information security risk issues, e.g. controls compliance and gap remediation (Enterprise Security Management, Security Event monitoring, etc.)
  • Oversees IPD Control Self-Assessment, ensuring that control issues/gaps are clearly documented, that detailed remediation plans are developed to address these issues and that the risk acceptance is used appropriately
  • Minimum 8-10 years experience in regulatory compliance, operational risk, audit or risk management, including broad knowledge of banking laws and regulations associated with Financial Services, technology and/or information security
  • Ability to work across teams
  • Comfortable debating issues with senior decision makers and pushing back where necessary
  • Demonstrated strong presentation and report writing skills in a fast paced and demanding environment
24

Information Risk Lead Resume Examples & Samples

  • Minimum 5 years of work experience in Information Risk and/or IT Audit
  • In depth knowledge of IT Risk Policies and Standards
  • Basic knowledge of cryptography concepts, PKI, SSL, Host Security Modules (HSM), Smart cards, Symmetric, Asymmetric (Public/Private-PKI)
  • Demonstrated experience in writing procedures
  • Minimum of 2 years of business re-engineering/process improvement experience, including leading and coaching quality improvement projects
  • Ability to coach and transfer knowledge to key stakeholders
  • CISSP, CISA, or other certifications
25

Information Risk Lead Resume Examples & Samples

  • Well versed in all areas of application, network, and infrastructure system security
  • An in-depth knowledge of data protection strategies, network and system vulnerabilities, and SIEM
  • A subject matter expert in many information security disciplines
  • Experience managing complex program and project delivery at a senior level with both direct and matrix responsibilities
  • Ability to drive and craft senior level reporting and metrics
  • A team player with a desire to assist in all areas of technology risk
  • Excellent communication skills (both written and verbal)
  • Demonstrated ability to deliver results and work hard
  • Advanced experience with Microsoft Office suite including Visio, Excel, Access
  • Bachelor's Degree in Computer Science or related field or equivalent experience
  • IT Risk & Security related professional certifications: CISA, CISSP, CEH, SANS, CIPP/US
  • Master’s Degree in Computer Science, Information Assurance or related field or equivalent experience
26

Information Risk Lead Resume Examples & Samples

  • Deliver high quality executive level presentations in a dynamic, fast paced environment
  • Collaborate with key resources across CCB to obtain the appropriate level of knowledge necessary to speak to the materials and the current state of IT Risk
  • Participate in strategy discussions to streamline processes and address current gaps
  • Collaborate with other risk leads within CCB develop templates and standardize reporting across the organization
  • At least 5 years experience in Information Technology
  • 5+ experience in an IT Risk organization or equivalent experience in risk and security reporting or project management
  • Broad knowledge of Microsoft Office tools and data analysis
  • Excellent communication and influencing skills, with demonstrable ability to collaborate with resources at all levels
  • Highly motivated, comfortable taking the initiative and expressing opinions
27

Information Risk Lead Resume Examples & Samples

  • Manage Risk Delivery Management team and individually, support various IT Towers in risk initiatives
  • Provide strategic direction around Risk Delivery Management team management and risk initiatives
  • Provide direction and resource management for team of Risk Delivery Managers
  • Manage risk control activities and initiatives, supporting various IT Towers around various Risk disciplines (i.e., Cyber Security, Identity & Access Management, Data Protection and Privacy and Application Security, etc)
  • Partner with IT Tower teams/project managers to communicate the BOW, priority, delivery expectations and requirements and in their development of project plans to address deficiencies identified
  • Provide support/direction to IT Towers related to the execution of the Risk BOW, issue remediation and escalation
  • Assist IRM teams with executing on related Risk initiatives (i.e., Cyber Security, Identity & Access Management, Data Protection and Privacy and Application Security, etc.)
  • Partner with the IT Towers via Weekly Working Risk Meetings to ensure collaboration with all risk related topics and provide guidance on issue resolution
  • Provide consistent status and messaging to the IT Towers via regular CTO and CTO-1 updates with all risk related topics
  • Consult with clients to identify and minimize risk to the overall environment
  • Demonstrate a familiarity with best practices across a range of access administration toolsets such as RSAM, EURC, iCert and risk controls
  • Help LOB IT teams appropriately frame their issues from a Risk perspective so they can prioritize their efforts
  • Provide insight and perspective when teams are unclear on direction for general issues related to risk controls
  • Participate in projects, providing risk management oversight during the design and planning phases of projects to ensure controls are appropriately implemented from the start
  • Act as an "information broker" to ensure appropriate alignment with other Firm/LOB initiatives and coordinate different groups to solve issues that require cross-team cooperation
  • Ten plus years of IT experience
  • Ten years of experience with project and program management
  • 3+ years of IT Risk experience in access administration, identity management and general risk controls is preferred
  • Experience with information technology control policies
  • Professional certification (CISSP, CISA, PMP etc.) is desirable
  • Ability to manage diverse teams, matrixed environments and under the pressure of deadlines and customer demands
  • Experience with provisioning and access management tools (RSAM, EURC, etc.)
  • Exceptional data analysis skills
28

Information Risk Lead-VP Resume Examples & Samples

  • Strong Risk Management experience and knowledge within Investment Banking or other financial institution
  • Risk and Control specialist (Application/ Infrastructure Risk or IT Audit experience with highly analytical skills)
  • IT Risk management for the CIB line of business
  • Manage and monitor the IT Risk posture for the business, providing management with transparency over what these risks are and how they can be addressed
  • Act as a subject matter expert in relation to IT Risk, Control and Security
  • Drive global IT risk programs into the region and advocate regional requirements into the global agenda
  • Ability to gain understanding of regulatory and firm-wide control issues
  • Excellent communicator
  • Strong execution skills for overseeing enterprise-wide risk initiatives
  • Strong understanding of APAC IT regulatory requirements and corresponding compliance implementation
  • Track record of developing and maintaining senior-level stakeholder relationships
29

Information Risk Lead Resume Examples & Samples

  • Develop business process mapping for Risk Control Self Assessment (RCSA) program to assess, test and identify issues and gaps and measure inherent and residual risk for Cyber Security functions
  • Effective break management as a result of application control assessments (ACA) within IT Risk Central
  • Interface with various internal groups including Operations, Compliance, Risk Managers, Line of Business contacts, Internal/External audit including Regulatory and Legal as necessary
  • Facilitate internal and external audits including requests for information (RFI)
  • Minimum 5 - 7 years experience in regulatory compliance, operational risk, audit or risk management
  • Minimum 5 - 7 years experience in risk assessment, security engineering, operations or similar field
  • Knowledge and experience with Phoenix application and risk control self assessment (RCSA) is preferred
  • Advanced PC skills (Excel, Word, Powerpoint, Visio, iGrafx)
30

Information Risk Lead Resume Examples & Samples

  • Thorough knowledge of industry wide Information Security management standards such as NIST, ISO 27002, ISO 17799
  • Understanding of risk and security control requirements where related to multiple technology disciplines including: operations, networking, application development, databases, Linux/Unix, mainframes and Microsoft systems
  • Ability to interpret and clearly communicate IT risk requirements outlined by JPMC policies and procedures
  • Strong written and verbal presentation skills with the ability to communicate with a wide variety of senior managers across the organization
  • Capacity to lead small-to medium-scale projects and deliver presentations with minimal supervision
31

Information Risk Lead Resume Examples & Samples

  • Active engagement in risk assessments and control substantiation
  • Lead Technology Control forums across multiple application areas
  • Ensure escalation of material issues to senior technology management
32

Information Risk Lead Resume Examples & Samples

  • 4-7 years in Risk Management and/or Technology Audit functions
  • Data mining and data analysis skills
  • Operations-oriented capabilities: to include trend analysis, service level/operational performance metrics and executive level reporting abilities (written and verbal)
  • Complex problem solving skills
33

Information Risk Lead / Privileged Access Resume Examples & Samples

  • Running multiple projects, simultaneously
  • Ensuring projects delivered on time
  • Implementing risk management strategies
  • Clearly defining requirements and make targets accordingly
  • Detecting and solving project issues effectively
  • Relying on extensive experience and judgment to plan and accomplish goals
  • Serving as single point of contact for project level issues / questions
  • 7+ years experience articulating the business value and impact of technical and non-technical information and understands when to escalate issues
  • 7+ years experience taking ownership of client issues ensuring appropriate parties are engaged for timely resolution
  • 7+ years experience of providing strong verbal and written interpersonal and communication skills in a professional environment
34

Information Risk Lead Resume Examples & Samples

  • 10+ years in a technology management position with a demonstrated ability to manage effectively through influence and knowledge
  • 5+ years product/project management experience and ability to handle multiple programs at once is required
  • 5+ years Information Technology Risk/Identity and Access Management experience, with Access Request tool experience, is preferred
  • 3+ years of demonstrated experience with Request, Provisioning and Automation technologies, is preferred
  • Must be an excellent team player and with strong leadership abilities
35

Information Risk Lead, VP Resume Examples & Samples

  • Partner with SOX Compliance Office, external auditors and CIB Technology (and LOB IRM) partners in determining application scope, testing and documentation approach, and assessment of results
  • Ensure complete and timely performance of CIB IT SOX testing and reporting requirements in accordance with regulatory and Firm requirements, including defined timelines and quality standards
  • Provide oversight of work performed by SOX testing team, coaching team members where appropriate
  • Ensure quality standards are achieved in development and maintenance of program documentation
  • Use professional judgment, and engage with appropriate teams to Assess IT general control testing exceptions, identify relevant compensating controls for deficiencies and oversee remediation and closure of deficiencies within defined timeframes
  • Assess control exceptions identified during SSAE16, Internal Audit, Risk & Control Self-Assessments and other programs that may be indicative of issues with SOX systems and related controls
  • Obtain early visibility into potential changes to program scope, effectively negotiating and managing changes identified
  • Facilitate development, maintenance and delivery of consistent and meaningful reporting and metrics
  • Coordinate with the firm's external auditors and facilitate information gathering in support of ongoing audits
  • Manage procedures to acquire and confirm accuracy of technical reference data pertaining to in-scope applications
  • Promote development of educational / guidance resources for use by Technology Risk & Controls and Technology personnel
  • Drive global consistency in our approach, execution and reporting across the global technology and information risk function
  • Promote continual process improvement as well as consistency and quality of execution of IT controls
  • 8+ years experience performing IT controls audits ("Big 4" experience preferred)
  • Strong knowledge of information technology, and auditing of IT general computer controls and application controls
  • Experience managing development and execution of IT controls testing requirements; specific experience with SOX and/or SSAE16, a plus
  • Strong project management skills, with proven ability to deliver quality results in a deadline-driven environment
  • Must be a detail oriented, quality-focused manager; with strong documentation and reporting skills
  • Ability to work effectively in a global team environment and operate in a matrixed organization
  • A problem solver with proven ability to evaluate processes, controls, identify weaknesses and potential solutions
  • A strong sense of ownership, commitment to quality and attention to detail
  • Excellent interpersonal skills - verbal communications, written communications, and an established track record of collaboration
  • Change agent, is a consensus builder and thought leader that can drive for improvement and efficiency, thinks out of the box and is creative
  • Intellectual rigor, emotional intelligence, high energy and a passion for the delivery of high quality project outcomes
  • Desktop skills - Microsoft Word, Excel and PowerPoint ; SharePoint skills a plus
36

Information Risk Lead Resume Examples & Samples

  • Provide and demonstrate best-in-class subject matter expertise and practical knowledge of a wide variety of information security and vulnerability management products and tools
  • 7+ years of professional Information Technology experience
  • 5+ years in a successful operations position with information security
  • 5+ years experience with vulnerability management and information security tools
37

Information Risk Lead Resume Examples & Samples

  • This position requires a the ability to communicate effectively as you will work closely with other groups both within and outside of Control Room to coordinate design, development, and testing efforts of your assigned application components to ensure the successful delivery of the project
  • You'll use production support procedures to support Control Room functionality and contribute to support documentation
  • You will identify and troubleshoot application code-related issues to provide superior feedback for approved user documentation
  • You will perform research and development tasks where required with guidance and supervision
  • Min 5 years of Experience with .NET Framework 4.0 with C# and ASP.Net, MVC, JQuery, Development experience
  • Minimum 5 years of software development experience including, but not limited to, mature design, coding, testing and debugging skills
  • Minimum 5 years of web development experience with C# and ASP.Net, MVC, JQuery and Javascript
  • Minimum 5 years of experience writing PL/SQL or SQL scripts; must be independently able to write stored procedures, triggers, functions, and tables
  • HTML / CSS / JavaScript / AJAX / jQuery/Web Services/SSIS/SSRS
  • Visual Studio 2008+
  • SQL / SQL Server 2008 or later (2008 R2 Preferred)
  • Ability to translate business requirements into functional requirements documentation
  • Excellent analytical, communication, organizational and problem-solving skills coupled with a strong work ethic
  • Experience in gathering data using various data sources and scripting languages
  • Experience in data aggregation, integration (API), assessment and correlation
  • Experience in Custom Dynamic Web Data Portal Reporting Services
  • Experience in custom scripted solutions and process automation
  • Automation via scripting with emphasis on high volume data
  • Strong knowledge of Microsoft Office SharePoint
  • Experience in creating tools and processes to enhance and improve process workflow
38

Technology Information Risk Lead Resume Examples & Samples

  • Drive implementation of new IAS program requirements in accordance to IAS Policy and Standards
  • Ensure consistency and transparency of IAS Governance and Oversight processes, working with all key stakeholders
  • Sustain effective IAS execution process in accordance to the firmwide standards with consideration of local regulatory requirements
  • Act as point of contact for Enterprise Technology IAS queries from the business, regional teams, RCSA assessors, Audit teams etc
  • Create & present IAS updates to Executive Management and Stakeholders at Risk & Control Meetings
  • Demonstrate organizational and time management skills, with the ability to adapt and adjust to changing priorities and to manage multiple assignments with conflicting deadlines
  • Minimum 7 years of experience in IAS, Information Technology, IT Risk, or IT Controls
  • Demonstrated organizational and leadership skills
  • Track record of establishing and maintaining collaborative cross-organizational partnerships to achieve results
  • Demonstrated ability to successfully communicate and influence stakeholders at all levels
  • Solid analytical skills to understand metrics and trends
  • Ability to be flexible, follow tight deadlines, organize and prioritize work
  • Ability to multi task in a fast paced environment
  • Working knowledge of Regulatory Requirements & Reporting a plus
  • Proficient in MS Excel, MS PowerPoint and Visio
39

Information Risk Lead Resume Examples & Samples

  • Defining, supporting and implementing components of the Identity & Access Management strategy. Translating business requirements into specific system, application or process designs, including
  • 7+ years in Identity & Access Management roles or Security roles with exposure to Identity & Access Management
  • Strong ability to see the big picture, connect the dots, and build the solution
  • Demonstrate advanced understanding of business processes, internal control risk management, IT controls and related standards
  • Data analysis skills
  • Proven experience in building business requirements for I&AM solutions
  • Proven experience in leading and delivering complex security projects
  • Fundamental knowledge of Security Risk Management
  • Familiarity with IT security considerations and recommended practices
  • Willingness to take on risks, adaptive, quick learner and take on challenging initiatives
  • Team player but can also work independently
  • Demonstrable knowledge of significant technology or business process and ability to maintain and extend such knowledge
  • Strong problem solving skills and ability to suggest technical solutions to problems where required
  • Strong logical and analytical approach
  • Good listening and communication skills
  • A demonstrated understanding of emerging technologies and technology trends
40

Information Risk Lead Resume Examples & Samples

  • Good writing and verbal communication skills
  • Strong analytical and problem solving skills, and attention to detail
  • Ability to simplify complex concepts for management communication
  • An understanding of the concepts of risk management
  • PowerPoint and SharePoint skills strongly desirable
  • Proven and successful work experience, or alternatively a strong record of academic performance
  • Knowledge of working with and manipulating data for analysis, including extraction, cleanse, enrichment, transfer and load processes
  • Strong work ethic, a sense of personal accountability for quality of work, ability to work effectively with remote teams leveraging phone and email based interactions
  • Strong understanding of Information Security concepts
  • Strong interpersonal and customer skills including incident resolution, response and escalation
  • Excellent written and verbal communication and organizational skills
41

Information Risk Lead Resume Examples & Samples

  • Work both independently and in a team setting to assess technology, identify key risk and controls, develop a strategy to test those controls, and perform test execution
  • Assist with developing the audit test steps that will be followed during audit readiness engagements
  • Communicate results of testing to management and key stakeholders
  • Accountable for meeting deliverables and adhering to department standards
  • Keep reporting metrics up-to-date and accurate
  • 2 to 5 years of relevant experience in internal/external auditing or risk management
  • Minimum Bachelor’s degree in Management Information Systems or other related technology discipline. An MBA degree and/or professional certification, such as CPA, CIA or CISA are a plus
  • Proficiency in risk analysis, and strong analytical skills particularly in regard to assessing the probability and impact of an internal control weakness
  • Proven ability to multi-task, complete projects on time and on budget, and is able to adapt to changing priorities
  • Excellent verbal and written communication skills with the ability to present complex and sensitive issues to senior management in a persuasive manner
  • Working knowledge or application controls, for example Access Administration, Change Management, Security Configuration and Resiliency
  • Enthusiastic, self motivated, and effective under pressure
  • Proven ability and desire to learn quickly, be flexible and think strategically
42

Information Risk Lead Resume Examples & Samples

  • Identify automation and process improvement initiatives to improve the efficiency of CCB’s IT risk reporting processes
  • Assist in documenting and implementing processes related to on-boarding requirements for applications/platforms feeding into the firm’s risk management tools
  • Extract data for various assessment, cyber and other risk and control programs, and from various sensor based data sources
  • Cleanse, normalize and join data from multiple sources as to make it actionable and allow the risk teams to enforce accountability
  • Identify alternatives for data sourcing and presentation automation where programmatic interfaces may not exist
  • Create and maintain authoritative data sources using Excel, SharePoint or other tools as required, and keep them up-to-date and accurate
  • Participate and support the IR&C monthly reporting cycle to corporate, and to the line-of-business CIOs
  • Assist with definition and rationalization of change management processes for reporting changes
  • Collaborate with CCB Cyber Security, Global Technology Infrastructure, Corporate Cyber teams, and Line of Business Information Risk Management teams for issue resolution and mitigation
  • Be accountable for various ad-hoc risk reporting and project tasks assigned by management
  • Support innovation and enhancement efforts within the CCB Cyber Security function
  • 10+ years of total work experience
  • 5+ years of technology experience
  • Knowledge of SQL, Excel VBA, SharePoint and the MS-Office suite
43

Information Risk Lead Resume Examples & Samples

  • 6+ years in Financial Services with progressively increasing responsibilities
  • 6+ years in Operational Risk, Enterprise Risk, and/or Audit experience
  • Knowledge of compliance with regulatory requirements
  • Experience working with senior-level business management
  • Strong communication (verbal and written) and project management skills
  • Excellent organizational and time management skills
  • Ability to apply business knowledge to new situations
  • Ability to isolate the root cause for control gaps, and able to identify and suggest viable solutions
  • Able to quickly learn related policies, processes and operations to effectively design/improve/perform testing
  • Proficient with Microsoft Office toolset (Excel, Word, Visio)
  • Ability to quickly comprehend information from oral and written documentation
  • Working knowledge of Mortgage Banking systems is preferred
  • Bachelor's degree required. Industry certifications preferred
44

Cib-information Risk Lead-technology Resume Examples & Samples

  • Extensive risk and control management experience and knowledge within Investment Banking or other financial institution
  • Extensive experience presenting risk and control agenda to senior management
  • Application Risk and Control specialist
  • IT risk and control management for the line of business
  • Coordinate all relevant IT control activities (e.g., regulatory inspections and assessments, control testing, monitoring, reporting and remediation activities)
45

Information Risk Lead Resume Examples & Samples

  • Assist with the annual SOX program, testing the evidence of the controls and identifying any Significant Control Deficiencies, working with the appropriate TCO to identify appropriate remediation to improve the controls as necessary
  • Perform QA reviews of SOX working papers
  • Support internal education and best practices sharing with peers and colleagues, as well as information security education & awareness, as needed
46

Information Risk Lead-VP Resume Examples & Samples

  • Manage the Shared Service Quality Assurance team and work with the global assessor teams to ensure that the remediation plans (RP)/ non compliance acceptances (NCA) are reviewed and feedback is provided to the assessors
  • Support internal education and best practices sharing with peers and colleagues, as well as third party education & awareness, as needed
  • Should have 12+ years of experience in IT
  • Proficient working knowledge within the following risk domains/technologies
47

Information Risk Lead Resume Examples & Samples

  • Assist in interpreting corporate control guidelines and policies, communicating these clearly alongside current status, and guide constituents to ensure compliance in a pragmatic fashion
  • Coordinate interaction with internal and external audit on control requirements and/or issues. Ensure information from past audits is leveraged to improve controls across the entire area
  • Assist with monitoring existing technology issues and actions and support the closure verification process, negotiate remedial actions and due dates
  • Enforce compliance with Firm-wide risk reduction programs
  • Manage the quality assurance review of various control assessment programs
  • Proficient and capable to communicate the Inherent Risk and Control effectiveness to others
48

Information Risk Lead Resume Examples & Samples

  • Perform the role of the Software Security Champion (SSC) for CCB. Partnering with Corporate SSAP, CCB Chief Development Office (CDO), Application Security Champion (ASC), Application Development teams and Tech Control Officers (TCO)
  • Participate in all SSAP forums covering application security scanning, threat modeling, mobile application and other relevant topics
  • Govern the SSAP program across CCB covering static, dynamic, open source, mobile scanning, and binary scanning efforts. Provide pertinent and timely metrics and escalation for resolving gaps
  • Support the vulnerability remediation efforts including identifying the vulnerability scenarios through the SSAP static, dynamic and open source scanning report, determining the remediation methodologies for the issue, and partnering with CDO/ASC/TCO on pushing resolution
  • Drive issue/threat identification and support enhanced scanning for internet facing applications
  • Provide expert software guidance and engage SMEs as necessary to tackle day to day software security issues
  • Engage with corporate on evolving solutions for mobile security, enhanced security scanning tools and relevant policies and standards
  • Distribute security intelligence and tangible security guidance to the ASCs, develop, modify and provide training material to the ASC forum and to be able present worldwide training to the ASC community to keep our development teams fresh with the most currently available security knowledge
  • Mentor and provide SSAP guidance to existing team to support day to day functions
  • 5+ years of hands on software development experience
  • 5+ years of experience in software security and software security vulnerabilities
  • Expert knowledge of software vulnerability remediation techniques and libraries
  • Expert knowledge of NVD, CVSS scoring, risk ranking, threats and vulnerabilities, and performing web application security assessments
  • Proven ability to perform successful security code reviews. Must be able clearly articulate your role in conducting the review, issues you have been able to identify and how you were able to successfully remediate the issue with the associated development team
  • Understanding of static code analysis tools principles and practices (i.e. HP Fority, IBM Appscan Resource, Pylint, RATS, Veracode, BlackDuck) with experience providing development teams tangible guidance to remedy vulnerability defects
  • Experience in working with common OSS frameworks
  • Working knowledge of J2EE and security solutions within that framework
  • Deep code-level knowledge of common software security vulnerabilities and remediation methods for Java or .Net applications
  • Deep knowledge of the OWASP Top 10 and the ability to explain how these issues should be remediated
  • Expert level analyst with proven capability to comprehend various technology stacks related to web security, authentication, database security, session management, business logic and input validation methods
  • A minimum of 3 years of data analysis utilizing SQL queries, Excel and Access. The position requires the ability to generate reports and analyze data sets, utilizing custom written SQL queries and Visual Basic for both Excel and Access
  • Proficiency with CVSS, CVE and related schema and scoring
  • Knowledge of common open source applications from Apache, Oracle, etc. and their known security vulnerabilities will be a job requirement
  • Strong technical acumen, communication and influence skills. You should have the ability to explain in depth your assessment of a vulnerability to an application developer so they are able to understand the issue and successfully remediate the finding. The end result must be to resolve the security issue successfully
  • Experience in pen-testing, not required, but is considered a plus
  • Professional Certifications preferred (i.e. JPMC ASC or CSSLP, GSSP, CISA, CISSP)
  • The candidate must be a "self starter", able to operate independently within minim guidance, and produce tangible, measurable results
49

Information Risk Lead Resume Examples & Samples

  • Execute and manage CT&R IAM controls and compliance testing including: Risk Control Self Assessment (RCSA), Sarbanes Oxley (SOX), Quality review for Application Risk Assessment & Application Control Assessment, Monetary Authority of Singapore regulatory requirements for testing
  • Execute and manage RCSA program for CT&R, including being part of workshops to identify inherent risk and to request appropriate evidence for controls. Execute the testing of the controls and the documentation of the test results. Perform accurate QA of the RCSA work papers
  • Execute and manage the annual SOX program, including coordinating with the business SOX leads and ensuring that the SOX control testing program is fully executed in accordance to firm standards
  • Conduct testing execution, reporting, exception identifications, escalation and impact analysis
  • Execute and manage the Quality review for Application Risk Assessment & Application Control Assessment. Work closely with the TCOs to ensure the reviews are conducted prior to the deadline and the break/remedies are addressed as per the ITRC standards
  • Perform timely follow up on issues per the RCSA procedures, Firmwide SOX guidance, Regulatory requirements
  • Report on progress of testing activities, testing results, test case coverage, required resources, defects discovered and their status, performance baselines, etc
  • Work in collaboration with TCO organization, Issue Management and Audit support team and overall Risk Control & Cybersecurity organization
  • Ensure the timely delivery of the testing and reporting milestones
  • Continued focus on the Automation efforts for SOX testing. Provide leadership to complete the SOX and control testing automation and move towards SOX automation as a service
  • Provide audit support from a testing perspective
  • Continued focus on building programs such as Line Level Control and expand the scope across CT&R
  • Minimum 10 years experience in regulatory compliance, operational risk, audit or risk management
  • Minimum 5+ years experience in access administration, security administration, or similar field
  • Working knowledge of RCSA, SOX, Regulatory requirements
  • Experience working with Identity and Access Management tools and processes
  • Excellent leadership skills. Experience handling tenured testing team
  • Excellent verbal, interpersonal and written communication skills and the ability to communicate at any level of management
  • Experience with working with virtual teams / teams geographically distributed is required
  • Preferred certifications such as CRISC
50

Information Risk Lead Resume Examples & Samples

  • Responsible for Execution & Governance for Application Risk Assessment Program for CTR & Selected few Corporate functions
  • Maintain inventory for Applications & respective categorization. Renewal of Application Risk Classification / Application controls Assessments in line with IT Risk requirements
  • Administration & Management of ITRC tool for supporting Application Risk Assessment Program
  • Application Risk Assessments Issue Management
  • Assist Technology Controls Officers, Technology Owners to execute the Application Risk assessments requirements
  • Metrics & Reporting related to Application Risk Assessments
  • Ensure CTR & Selected Corporate functions are fully Compliant with the Firm wide Application risk assessment framework requirements
  • Test Enhancements for ARA Process to identify issues or provide recommendations for new functionality
  • Partner with Chief Development Office team to integrate the Application Risk Assessments process in the SDLC of applications
  • Represent CTR organization in No. Of Technology working groups focused on improving Application Risk Assessment framework, Infrastructure Controls Assessments, ITRC Enhancement etc
  • Continues improvement to make the Application Risk Assessment program more efficient & effective
  • Minimum 7 + years experience in regulatory compliance, operational risk, audit or risk management
  • Minimum 5+ years program or project management experience
  • Working knowledge of Technology Controls Assessments programs, SOX, Regulatory requirements
  • Influencing leadership skills & ability to work as team member
  • Knowledge of JPMC Risk Assessment framework & programs is preferable
51

Information Risk Lead Resume Examples & Samples

  • Proactively engages with little or no formal direction, with senior level interpersonal skills such as influence management, negotiation, and analytical/problem solving skills
  • Champion for best practices: continually look for opportunities to share process and procedures, and standardize where applicable while adhering to policy
  • Provides clear and specific requirements and project specifications to users
  • Analyzes and discusses the potential risks/benefits involved in using the specified technology solution to address the project requirements
  • Consistently evaluates progress and quality, managing issue resolution processes and delivering meaningful project/program status reporting
  • Strong time management, organizational, analytical skills and solution-minded
  • Ability to manage ambiguity in an evolving environment
  • Able to deliver the "right" message to all levels and size of audiences
  • 1-3 years of experience in IT, IT Risk management, audit or equivalent
  • Managerial experience a plus
52

Information Risk Lead-executive Director Resume Examples & Samples

  • Represent RFT Controls team at appropriate governance forums, such as location specific tech councils
  • Managing a team of Technology Control specialists to ensure the technology risk environment is controlled and risks minimized, breaking down data to provide groups with their specific view of the current state of Controls and Residual Risk
  • Ensure the overall management of RFT risk control issues/gaps are documented clearly and remediation plans are developed to address them, as well as investigating and resolving control incidents
  • Participate and where appropriate, lead projects to improve or remediate controls, with scope varying from individual groups or RFT as a whole
  • Build a culture focused on awareness of the technology risk environment, utilizing existing training materials and developing content where applicable
  • Leverage scorecard to help Technology Controls Team manage its internal objectives (e.g., timely completion of assessments, action plan closure status)
  • 14+ years of experience in IT, IT Risk management, audit or equivalent
  • Knowledge of current regulatory impact and expectations on technology per Sarbanes Oxley, Gramm-Leach Bliley Act, Frank-Dodd, Basel and other regulations affecting Risk and Finance
  • Proficient technical skills, including: audit, control assessment, business analysis, change management, IT Risk Management, operation systems and data sources knowledge, performance metrics and reporting, technical problem resolution, project management, and vendor management
  • Experience of risk assessment, control or auditing techniques coupled with an analytical mindset
  • Good working knowledge within the following risk domains/technologies
53

Information Risk Lead Resume Examples & Samples

  • Drive all aspects of the risk assessment of technology and vendor installed applications
  • Review firewall request which are submitted by business, technology and operations users
  • Engage and lead Line of Businesses that develop and use applications and incorporate the other LOBs assessment criteria as required
  • Assess completed application risk classification to ensure they are complete and meet business expectations
  • Assess completed application controls questionnaire and supporting materials to ensure they are complete and meet JPMC expectations
  • Document findings and work with the LOB Delivery Manager to resolve those findings through Action Plans (APs) or seek Non-Compliance Risk Acceptance (RA) approvals
  • Escalate issues associated with lead IRMs as needed
  • Ensure finalized APs / RAs appropriately included / updated in risk systems and metrices
  • To ensure that the relevant and sufficient evidence are reviewed for the purpose of closure of any APs / RAs and regular reporting of open APs and RAs
  • Identify opportunities for improving application security risk posture, including expanded monitoring, KRI tracking, etc
54

Information Risk Lead-VP Resume Examples & Samples

  • Serve as a subject matter expert to support other third party risk assessors within the Shared Services function
  • Lead the remote assessment, providing the overall IT Risk expertise
  • Identify control breaks and vulnerabilities with a third party hosted application
  • Document findings and work with the LOB Delivery Manager(DM) or Application Development Manager (ADM) to develop and document necessary Remediation Plans or Remedies, to resolve those findings through Control Breaks logged within internal risk management systems
55

Information Risk Lead Resume Examples & Samples

  • Subject matter expert on technology risk management with complete understanding of IT control policies
  • Proven ability to examine, improve and execute the organization's existing processes and procedures for risk assessment
  • Written and verbal presentation skills to a wide variety of senior managers across the organization; experience developing executive level presentations
  • Advanced ability to process and analyze data using Excel, MS Access and other tools
  • Bachelor's degree or equivalent preferred
56

Information Risk Lead-rcsa-VP Resume Examples & Samples

  • Create and enhance Technology RCSA Framework. This will include but is not limited to defining the Risk and Controls for each key Process, and defining roles and responsibilities for all participants in the RCSA Program
  • Partner with Global Technology Processes Owners to ensure that risks are properly identified and controls are in place to mitigate risk, minimize financial, regulatory and reputational exposure while maximizing customer and shareholder value
  • Execute process mapping sessions and lead in the identification of risks and determination of risk rankings
  • Create training material and conduct regular training sessions
  • Conduct overview and familiarization briefings to key stakeholders
  • Conduct reviews and quality assurance of the LOBs RCSA Programs to ensure adherence to the COE guidelines
  • Create metrics to track progress of the RCSA Programs vis-à-vis adherence to guidelines
  • Assist LOBs and provide guidance
  • Liaise with auditors and Operation Risk Officers to provide program details and address identified issues
  • Ten years of risk and control experience, ideally in a financial services environment
  • Knowledge of regulatory impact and expectations of regulations affecting the financial industry
  • Security Certifications i.e. CISSP, CISA (Preferred)
  • Knowledge of JPMC RCSA or equivalent process
  • Designed and executed IT control self-assessments
  • Process mapping with Visio or iGraphx product set experience
  • Strong analytical, interpretive and problem solving skills in interpreting process flows and data and evaluating their impact
  • Professional skills expected include
57

Information Risk Lead-VP Resume Examples & Samples

  • Assist in long term Technology Control Organization’s (TCO) information risk and control strategy designed to keep the information assets of the LOB secure
  • Lead /Assist in key control areas such as SOX, Risk-Control Self Assessments, etc. testing and review
  • Participate in key firm-wide programs and be the liaison in providing feedback and help end-to end execution for the LOB
  • Proactively identify potential risk exposures within new technology solutions being designed and implemented, and partner with application development (AD) teams and Corporate Security groups to implement appropriate solution to mitigate exposure
  • Ensure that all pertinent Information Risk and Control regulatory requirements and applicable JPMC policies are understood by LOB clients, technologists, and TCO team members, and that these policies are implemented and monitored successfully
  • Partner with clients to develop business continuity strategies that safeguard personnel and ensure recovery of essential business services should disruption occur
  • Provide expertise and knowledge of current industry trends in information and security standards to improve controls across the LOB
  • Promote teamwork and leadership behaviors within the TCO function, across the LOB and at the firm-wide level
  • 5-10 years related business experience, with 1-5 years in Risk Management and/or Technology Audit functions is strongly desired
  • Ability to work and collaborate across teams
  • Stakeholder engagement skills, including ability to interact with middle/senior management
  • Knowledge of Identity and Access Management Structures/Processes such as Provisioning, Entitlement Certification, Access Removal and Privileged Access
  • Analytical skills and experience building metric based solutions
  • Ability to develop and lead initiatives in a cross line of business technology organization, build rapport and garner respect in a collaborative cross-cultural environment
  • Collaborative style and ability to build the appropriate relationships, including ability to interact with senior levels of management
  • Certification such as CISSP, CISA, etc. a plus
58

Information Risk Lead-identity & Access Management Resume Examples & Samples

  • Creation and ownership on Technology Storefront for the Authentication Service including: Service Definition, SLA creation and compliance, When to use and not use, Product and Price guide and 3 year roadmap in conjunction with the Technology Service Owner
  • Lifecycle management – Own definition and execution of process and components for managing the hardware and software lifecycle program for the team's service (Authentication - Janus and SSO)
  • Demand (Intake process) and Capacity Planning – Simplify the project intake process working toward continuous improvement, training of all stakeholders and continually increasing throughput. Develop necessary forums to build incoming demand pipeline and align cross impacted teams capacity for delivery of work. Execution and Output includes: Business Engagement Forums, Creation of weekly/monthly trend reporting as well as modeling future capacity requirements based on project and Business as Usual (BAU) Demand
  • Financial tracking and compliance – Position will be responsible for tracking in year budget items and interacting with finance to ensure capital and P&L are properly accounted for. Position will serve as support service owner in annual budget planning cycle
  • Risk/Compliance – position will own process to report and track compliance for the RCSA program. This program is designed to assess the team’s infrastructure and processes against a defined set of JPMC standards
  • Productivity – position will track actual and provide projections for productivity savings associated with team initiatives
  • 5+ years experience with Authentication products including SSO and Janus products
  • 5+ years in Business Management Office experience with proficiency in Demand and Capacity management, Clarity and Reporting functions
  • 2+ years Information Technology Risk/Identity and Access Management experience is preferred
  • Must have demonstrated expertise in verbal and written communication including performing tasks related to relationship management/strategic marketing
59

Information Risk Lead Resume Examples & Samples

  • Support the creation and publication of key weekly, monthly and ad hoc executive reporting
  • Develop and manage documentation governance process to ensure complete, accurate and current coverage
  • Support the definition and implementation of technology controls metrics and reporting model for Global Technology
  • Provide visibility of the technology controls position through tracking and reporting with reliable, standardized metrics and actionable scorecards to CIOs
  • Ensure metrics are reviewed appropriately and remain consistent with corporate policy/standards
  • Maintain metrics that provide meaningful and actionable measurements of residual risk, which provide clear accountability and the ability to reduce risk to acceptable levels
  • Ensure timely escalation of material issues from Lines of Business and Regions through a firm wide consistent and standardized governance framework
  • Review and enhance reporting that articulates the firm’s risk posture, while ensuring the quality is appropriate for executive management consumption
  • Ensure results of data analysis such as trending and deep dives provide actionable recommendations as needed
  • Maintain partnership with reporting functions across all LOBs and functions to ensure timely updates and communication across the technology organization
  • Maintaining the RADAR tool governance framework to maximize current reporting value and future direction
  • Provide coordination and analysis for ad hoc business for technology controls related items
  • Work across the reporting team to coordinate the identification and remediation of any process gaps
  • 7+ years’ experience in Information Technology, Risk and Cyber Security, or IT Controls (CISA/CRISC an advantage)
  • 5+ years of metrics creation, analyst and reporting experience
  • Must be flexible, be able to follow tight deadlines, organize and prioritize work – ability to engage in multiple initiatives simultaneously with competing priorities a must
  • Proven critical thinking capability; demonstrated ability to understand all available information available, draw a conclusion and communicate it clearly and concisely
  • Strong written, verbal presentation skills and attention to detail – must be able to translate metrics and risk impact and communicate a meaningful risk-based commentary at an executive management level
  • Ability to develop and maintain strong working relationship – experience with communicating and influencing senior management a plus
  • Ability to perform and work independently with low level of oversight while supporting remote team members and functional partners across the regions
  • Ability to process and analyze data using Excel, PowerPoint, MS Access, and other tools
60

Information Risk Lead Resume Examples & Samples

  • Represent CCB in the firm wide Policy and Standard Steering Committee
  • Engagement, initial research and evaluation of new Policy / Standard / Procedure requests and revisions to existing content
  • Facilitation of CCB impact assessments and gathering / consolidation of stakeholder feedback to policy / standard owners
  • Provide approval recommendations to CCB IT Risk, Control, and Cyber Security leadership
  • Drive clear communications about what is expected of technology teams to comply with changes in policies, standards, and procedures
  • Design and implement process improvement recommendations at the corporate and CCB levels
  • Solid awareness of industry standards and best practices (in areas such as Software Development, Information and Cyber Security, Technology Controls)
  • Ability to improve transparency, engagement, quality, continuity, and usability of technology policies, standards and procedures
  • Strong subject matter expertise in risk/threat vectors, attack surface reduction, technology control standards and procedures, and control operational execution
  • Solid project management skills and ability to see projects to completion
  • Comfortable operating in an often ambiguous and ever changing environment
  • Demonstrated willingness to step outside of defined role to assume greater challenges and/or develop new skills
  • Experienced and capable of transforming complex issues into simple, easily understandable solutions
61

Information Risk Lead Resume Examples & Samples

  • Represent TCO in multiple innovation projects to uncover risk and control opportunities
  • Provide security consultation to the Application Development Managers and Architects on the innovation projects they are engaged in in order to manage and contain the risk to the firm
  • Build strong relationships with the Digital IT teams in order to establish trust among the group
  • Provide approval recommendations to Digital IT Executives, CCB Risk and Control teams, and Digital TCO teams
  • Solid awareness of industry standards and best practices (in areas such as Software Development, Information and Cyber Security, and Technology Controls)
  • Ability to improve transparency, engagement, quality, continuity within the emerging technologies and risk management landscape
  • Solid organizational skills
  • Certifications such as CISSP, CISA, CRISC, CISM preferred
62

Information Risk Lead Resume Examples & Samples

  • Specific focus on Data Protection, Data Loss Prevention & Privacy, Security Engineering (firewalls) and Security Event Monitoring
  • Consults with the client on their technology risk and control environment and industry IT Risk best practices
  • Consults with clients to interpret JPMC risk policies and procedures to protect the Firm's information
  • Articulates the business value and impact of advanced technical and non-technical information, and recommends automated and cost effective solutions using that information
  • Understands the business and solicits input from internal and external sources
  • 4+ years of technology experience preferably within risk management or technology operations
  • Experience in metrics-driven performance trending
  • Demonstrated technical expertise/professional mastery to recommend technical solutions and best practices
63

Information Risk Lead & Service Analyst Resume Examples & Samples

  • Assist service management activities for BC consisting of
  • Advanced experience with MS Excel and PowerPoint
  • Organizational, time management and multi-tasking skills
  • Strong presentational skill sets verbally, visible and written
  • Strong interpersonal, and consultative skills
  • Ability to take initiative and use proactive approach
  • Excellent analytical ability and proficient technical skills
  • 5 - 7years experience in technology operations, Service portfolio or IT risk management,
  • 5 + years experience in Information Risk Management
64

Information Risk Lead Resume Examples & Samples

  • Work both independently and in a team setting to assess CCB technology, identify key risk and controls, develop a strategy to test those controls, and perform test execution
  • Ability to lead engagements and supervise staff
  • 5 years of relevant experience in internal/external auditing or risk management
65

Information Risk Lead Resume Examples & Samples

  • Primary accountability for a group of assessments within one or more Technology Control Officer (TCO) Tower Leads
  • Lead resource for the Application Assessment program including initial interviews regarding standard controls usage for applications in scope; assist with the identification and testing of shared controls
  • Perform testing of the evidence submitted to validate it justifies control effectiveness. Subject matter expert for book of applications within the TCO Tower they are leading
  • Consultant for other Information Risk
  • Analysts on risk and process decisions
  • Work with technology teams to walkthrough and gather control design requirements to facilitate discussions and bring to closure control deficiencies
  • Advise TCO Tower Leads, CIOs, Lines of Business (LOBs) and IT Partners, to ensure they are in compliance with the Firm's guidelines based on their testing results
  • SME and Resource manager for a team of application assessors supporting all of CCB
  • Define best practices and implementation approaches for the assessment processes
  • Identify resolution of issues/findings presented
  • Communicate and evaluate issues/findings and best practices with the rest of the team and manager
  • Work actively with the Technology Controls Officers on the guidance and IT control related issues
  • Lead key control projects related to enhancement of the Application Risk Assessment (ARA) program
  • Lead internal education and best practices sharing with peers and colleagues, as well as information security education & awareness, as needed with clients
  • 7 + years of professional experience in Information Technology
  • 5 + years of experience in IT Risk, Audit, Compliance or Governance
  • CISA, CISSP, CISM, CRISC certification
  • Work independently, collaborate within a team and is comfortable in a virtual environment
  • Ability to listen/observe/acknowledge/lead by example and provide recommendation
66

Information Risk Lead Resume Examples & Samples

  • Coordinate the GTI Service Operation activities for audit and regulatory engagements
  • Receive and validate engagement requests for information
  • Assign requests to appropriate service areas within GTI Service Operations team for fulfillment
  • Track and monitor the status of all requests, escalating as appropriate to ensure SLA adherence
  • Provide oversight for the remediation of business and audit identified issues
  • Track and monitor the status of all action plans at the key milestone level, ensuring the corporate IT Risk and Control requirements are achieved
  • Document self-identified control gaps within the environments, and the associated remediation plans
  • Communicate with key stakeholders, providing accurate metrics and management reports on timely basis
  • Provide strategic drive for engagement efficiency and effectiveness improvements, including process enhancements and use of automated data collection techniques
  • Ensure compliance of activities with audit, information risk policies, and industry compliance requirements
  • Act as an interface with internal and external audit groups
  • Ensure process capability, control and improvement by developing and implementing relevant quality assurance procedures
  • Develop processes and tools that encourage continuous performance improvements
  • Audit & Regulatory
67

Information Risk Lead Resume Examples & Samples

  • Assist in long term Technology Access Management information risk and control strategy designed to keep the information assets of the LOB secure
  • Execution and implementation of that strategy, including risk assessments, remediation, and specific targeted risk projects within the LOB
  • Lead /Assist in key control areas related to Access Management, and related testing and review
  • Participate in key firm-wide programs and be a liaison in providing feedback and help end-to end execution for the LOB
  • Proactively identify potential risk exposures within new technology solutions being designed and implemented, and partner with application development (AD) teams and Corporate Security groups to implement appropriate solutions to mitigate exposure
  • Foster the maturity of processes for identifying, analyzing, and actively managing the technology control portfolio
  • Effectively create, maintain and communicate operational metrics and status of technology control projects
  • Identify areas of unmanaged technology / business risk within the current environment and institute the appropriate controls practices to mitigate exposure
  • Ensure that all pertinent Information Risk and Control regulatory requirements and applicable JPMC policies are understood by LOB clients, technologists, and Information Risk Management team members, and that these policies are implemented and monitored successfully
  • Promote teamwork and leadership behaviors within the Risk and Access Management function, across the LOB and at the firm-wide level
  • 5-10 years related business experience, with 1-5 years in Risk Management and/or Technology Audit functions is strongly preferred
  • Subject matter expert on technology risk management with understanding of IT access control policies preferred
  • Proven ability to examine, improve and execute the organization's existing processes and procedures for access management
  • Knowledge of Identity and Access Management Structures/Processes such as Provisioning, Entitlement Certification, Access Removal and Privileged Access strongly preferred
68

Information Risk Lead Resume Examples & Samples

  • Drive a risk mitigating culture around within the Data Ecosystem, aligned to proactively identify, assess, and manage inherent risks within our platforms and services
  • Strengthen the control environment through education, collaboration, and oversight
  • Provide leadership and advice on material remediation activities ensuring appropriate resolution of issues
  • College degree, or specialized training and/or equivalent work experience
  • Minimum 5+ years of relevant work experience
  • Understanding of access governance concepts is required
  • Experience with Oracle SQL developer and RDBMS (Oracle) is required
  • Experience with Teradata SQL developer and RDBMS (Oracle) is required
  • Experience with Hadoop is desired
  • Understanding of SQL queries is required
  • Interpret, summarize and present findings in understandable documentation that may include charts, graphs, reports etc
  • Basic understanding of the company's business practices and familiarity with the company's products and services
  • Strong communication and business relationship skills are a must
  • Line of Business experience within, or across CCB, is a plus
69

Information Risk Lead-risk & Control Self-assessment Resume Examples & Samples

  • 7+ years IT Risk, Audit or Operational Risk experience or equivalent work experience
  • Ability to take a risk-based approach to assessments and identified deficiencies
  • Familiarity with COBIT5 and ITIL is preferred
  • Familiarity with JPMC risk assessment programs and/or SharePoint administration is preferred
70

Information Risk Lead Resume Examples & Samples

  • Manage team among multiple locations and provide leadership within the team and cross technology groups
  • Identify, define and implement continuous process improvement utilizing various tools and methods
  • Act as the liaison between the Identity and Access Management teams, business units, various technology and support teams in discovery efforts to produce audit related deliverables
  • Assist in the design, development and testing of new reports from Identity and Access Management
  • Ability to respond to ad hoc requests and queries from internal sources regarding Certification, Termination and Transfer processing
  • 6+ years of professional IT risk management framworks/concepts control self assessment process are required
  • 5+ years experience in identity and access administration, global operations and/or technology risk management is required
  • Some experience with the following systems: IDCert, RSAM, IO Console, EURC, IBID/RMT, Force, ITRC, Alacrity / Service Center (or a similar ticketing system), ID Owner
  • 5+ years management experience with 10 or more people and demonstrated leadership capabilities
  • Understanding of key controls and how they impact the business from an operational or systems perspective
  • Industry recognized certifications (CISA, CISM, CRISC) recommended
  • Ability to prioritize and execute on multiple, simultaneous, complex priorities
  • Large scale project manager experience
  • Strategic thinking and proven leadership skills
  • Excellent multitasking and prioritizing skills
  • Excellent relationship building, team building and stakeholder management skills
  • Strong analytical, data management and problem solving skills
  • Strong written, verbal and presentation communication skills
  • Ability to articulate complex issues concisely and communicate effectively and comfortably with senior people
  • Ability to thrive in a changing work environment, high level of energy and can work under pressure with minimal supervision
  • Ability to execute tasks under aggressive targets and ability to critically challenge when warranted with the goal of resolving issues
  • Highly proficient in MS Office Suite (Excel, Word, Project, PowerPoint, Access and Visio) with excellent working knowledge of MS Excel (pivot tables, v-lookups, etc.)
  • Strong understanding of information security and risk and control policies
71

Information Risk Lead Resume Examples & Samples

  • Lead the development of standards and procedures for Identity and Access Management
  • Lead stakeholders in working groups to build consensus around the standards
  • Work with appropriate service, operations and engineering leads to define procedure ownership and develop procedures
  • Define metrics and monitoring for controls articulated in standards. Partner with services functions to develop and institutionalize these metrics
  • Align existing assessment processes: RCSA, application and infrastructure assessments to controls in standards and procedures
  • Provide consulting expertise on identity and access controls to various identity and access programs to uplift controls in engineering and operations
  • Analyze issues arising from audits or self-assessments to provide clarity on when the planned actions will enable the firm to raise identity and access management standards and lower residual risk
  • Minimum of 8-10+ years experience in Information Technology, IT Risk, or IT Controls (CISSP/CISA/CRISC preferred)
  • Demonstrated knowledge of Identity and Access Management
  • Experience with standard GRC processes. In particular, demonstrated experience writing effective policies and standards, conducting risk and control assessments and developing metrics
  • Ability to think critically about risks and controls, and articulate reasonable compromises that align with risk appetite
  • Demonstrated organizational, management and leadership skills. Track record of establishing and maintaining collaborative cross-organizational partnerships to achieve results
  • Ability to persuade and influence is KEY. Must have ability to be tactful yet assertive. Strong collaboration and negotiation skills
  • Demonstrated ability to successfully communicate and influence at the mid-level executive level
  • Ability to develop strong client and working relationships with the team is a must
  • Outstanding communication skills both written and oral; to be able to translate metrics and risk impact and provide meaningful commentary for senior management
  • Strong ability to work across functions and teams to meet tight deadlines and ensure consistency across Global Technology
  • Strong execution focus, ability to push for progress, confidence to speak up/ push back and know when appropriate to escalate
  • Solid analytical skills to understand metrics and trends. Experience with technology risk reporting and ‘telling a story’ a plus
  • Excellent skills using MS Excel and PowerPoint tools
  • JPMorgan Chase is an equal opportunity and affirmative action employer M/F/Disability/Veteran
72

Information Risk Lead Resume Examples & Samples

  • Strong oral and written communications skills with the ability to effectively communicate at multiple levels within the organization
  • Bachelor of Science degree or equivalent work experience
  • 5 years’ experience managing and/or directing an IT team
  • Proven experience in IT infrastructure strategic planning and development, project management, and policy development
  • Superior understanding of the organization’s goals and objectives
  • In-depth knowledge of applicable laws and regulations as they relate to IT
  • Strong analytical and interpretive skills
  • Strong organizational skills
  • Excellent interpersonal skills
  • Excellent negotiation skills
  • Ability to present ideas in business-friendly and user-friendly language
  • Highly self-motivated, self-directed, and attentive to detail
  • Ability to effectively prioritize and execute tasks in a high-pressure environment
  • Extensive experience working in a team-oriented, collaborative environment
  • Should have 6 - 8 years of experience in IT
  • 3+ years of experience in IT Risk management, audit or equivalent
73

Information Risk Lead Resume Examples & Samples

  • Drive a risk mitigating culture - aligned to proactively identify, assess, and manage inherent risks within our platforms and services
  • Minimum 5+ years of relevant Risk experience
  • Understanding of the company's business practices and familiarity with the company's products and services
74

Information Risk Lead Resume Examples & Samples

  • 5-10 years related business experience, with 1-5 years in risk management and/or technology audit functions is strongly preferred
  • Knowledge of I&AM structures/processes such as provisioning, entitlement certification, access removal and privileged access
  • Ability to develop and lead initiatives in a cross line of business technology organization, builds rapport and garners respect in a collaborative cross-cultural environment
  • Certification such as CISSP, CISA, CRISC, etc. a plus