Senior/Large Bank IT Risk Specialist

Jobs @ TheJobNetwork
Published
July 29, 2019
Location
Atlanta, GA
Job Type

Description

This requisition serves to establish a pipeline of interested individuals for current or future opportunities at the Federal Reserve Bank of Atlanta.

An exciting opportunity exists at the Federal Reserve Bank of Atlanta to serve as an integral member of the Operational-Business Technology Risk Team. Under general oversight, you will perform risk-based reviews of systemically important significant service providers (SSPs) and large, complex financial institutions (FIs) subject to Federal Reserve supervisory authority. As a Senior SSP/Large Bank IT Risk Specialist, you will primarily fulfill a key leadership role within the federal banking agency SSP supervision program as either a central point of contact (CPC) or backup CPC. You may also serve as examiner-in-charge (EIC) or lead risk specialist on other large and complex FI supervisory reviews and examinations. Specifically, we are seeking individuals to provide subject matter expertise for all or key aspects of IT operations and management information systems, IT risk management (including, cybersecurity/information security, third party risk management, business continuity/resiliency, and internal audit), and associated IT governance practices and controls. Reviews of technology development and acquisition processes, as well as support and delivery capabilities, fall within the scope of this role. Responsibilities may also include participating in national horizontal reviews within the Federal Reserve System and supporting strategic projects and other initiatives. You may develop and maintain in-depth expertise in one or more sub-specialty areas of IT risk that correspond to the operations of the SSP portfolio or district-headquartered FIs. To fulfill this role, you will proactively identify risks through on and off-site examination and monitoring activities to ensure that regulated SSPs and FIs operate in a safe and sound manner, and comply with applicable banking laws and regulations.

Key Responsibilities

Performs reviews of SSPs and FIs in accordance with applicable interagency or portfolio supervisory guidelines (as appropriate), ensures compliance with applicable laws and regulations, and produces comprehensive supervisory strategies, scope memos, and reports of examination. Demonstrates balanced, well-reasoned judgment in decision-making and can effectively communicate with senior management and directors of supervised institutions under potentially adversarial circumstances.
Performs or assists in reviewing and editing work prepared by others for content, clarity and accuracy.
Provides guidance, training, and feedback to less experienced examiners. May serve as an instructor at formal schools and/or through on-the-job training.
Serves in EIC or Section Lead role (with focus on IT risk specialty), including planning, coordinating, and monitoring supervisory activities. Prepares or assists in preparing examination schedules.
Works closely with other risk specialty partners (e.g., cybersecurity and other relevant non-IT risk representatives) in conducting examinations in key areas of supervisory focus in order to determine the effectiveness of a SSP's or FI's overall IT risk management program. Validates remediation efforts of identified issues.
Participates on Federal Reserve System and local IT risk initiatives related to programmatic changes, training, committees and development of policy statements to enhance the supervision of SSPs and FIs.
Collaborates with Federal Reserve System IT risk specialists and FI/SSP management to support performance of continuous monitoring across the SSP and FI portfolios to understand micro (institution specific), horizontal (industry wide/peer) and macro (financial system supervision) IT risks.
Helps prepare informative, well-supported supervisory products and work papers, and effectively communicates and translates highly complex and problematic supervisory findings and required actions into business implications to senior management and boards of directors.
Prepares or contributes to preparation of SSP/FI supervisory plans for relevant and effective risk based supervision factoring in the size and complexity of the target firm.
Prepares and delivers written analyses and presentations on SSP and FI specific and industry trends or emerging risks.
Develops and maintains ongoing relationships with supervisory personnel at the Board of Governors and Reserve Banks, across other regulatory agencies, as well as senior management and directors of SSPs and FIs to ensure strong communication of supervisory expectations.
Maintains a global awareness of relevant regulations, laws, emerging issues, trends and ongoing developments in the financial services industry, including new security threats and techniques.
Provides effective analysis, problem solving and supervisory judgement in cross-functional team environment by working with various stakeholders on assignments that may be subject to tight deadlines.
Possesses effective time management skills and the ability to prioritize multiple work streams.
Education: Bachelor's or graduate degree in computer science or related field preferred. CISA or CISSP certification(s) a plus.
Experience: Five to seven years of relevant work experience, with auditing or managing IT security and technical controls using industry standard frameworks. Experience in regulatory/government agencies, financial services and/or technology service providers preferred.

Knowledge Areas

Demonstrated understanding of:

FI and/or service provider IT examination, IT audit, or bank operations (required).
At a minimum, academic exposure to banking, accounting, and/or finance principles.
Bank examination standards, including Federal Reserve, FFIEC, NIST, SANS and ISO standards and frameworks (preferred).
Audit management, bank operations management (preferred).
Commercial bank or related SSP/FI examination/inspection, audit, or bank operations experience (preferred).
Information security and risk management principles.

Technical Skills

Effective written and verbal (including presentation and negotiation) communication skills in dealing with all levels of senior management, boards of directors and other regulatory agencies, interpersonal skills (e.g., listening, motivating, enthusiasm, patience, consideration of others).
Effective issue and root cause analysis that helps to inform an objective, well-reasoned decision.
Strong technical and analytical skills, including the ability to interpret, apply, and explain complex regulatory concepts, and identify key issues and risks.
Plan and organize work, manage multiple assignments, meet deadlines, time management.
Function effectively both individually and collaboratively as a member of a team.

Certifications/Licenses

Examiner commission, or agreement to work towards commissioning, is a condition of employment
Certified in CISSP, CISA, CIA and/or other applicable industry recognized certifications.

Individual Competencies

Self-Awareness
Problem Solving
Action-Oriented
Collaborates
Communicates Effectively
This is not necessarily an exhaustive list of all responsibilities, duties, performance standards or requirements, efforts, skills or working conditions associated with the job. While this is intended to be an accurate reflection of the current job, management reserves the right to revise the job or to require that other or different tasks be performed when circumstances change (e.g. emergencies, rush jobs, change in workload or technological developments).

Related Jobs