Join our dynamic team to navigate complex risk landscapes and fortify technology governance, making a pivotal impact in our firm's robust risk strategy.
As a Tech Risk & Controls Senior Associate in Cybersecurity and Technology Controls, you will contribute to the successful management of technology-aligned aspects of Governance, Risk, and Compliance in line with the firm's standards. You will be responsible for supporting the end-to-end management, ideation and strategy delivery of executive content to firm’s most senior level governance committees. This individual will play a significant role in storyboarding content and transforming ideas and concepts into clear concise presentations for the most senior level audiences.
This role is a hands-on producer and delivery lead for executive governance content and operates at the center of the Cybersecurity & Technology Controls organization, with exposure to all Cyber areas, Line of Business teams, Corporate Function teams, and the firm’s most senior audiences.
Job responsibilities
- Partner with the Vice President/Executive Director as a key liaison to Governance and Secretary teams supporting Operating Committee and Board Committees, helping ensure materials are accurate, complete, and delivered on time.
- Support executive content planning by maintaining topic intake, synthesizing stakeholder inputs, and helping ensure alignment to Cybersecurity & Technology Controls and Global Technology strategic priorities and organizational objectives.
- Maintain a forward-looking calendar of governance forums and key milestones; track dependencies, owners, and actions; and drive day-to-day coordination to keep deliverables on schedule.
- Oversee meeting logistics and materials workflows (draft collection, version control, approvals, distribution) in partnership with senior stakeholders to ensure consistent, repeatable execution across governance forums.
- Support the team’s Executive Director and VP by converting concepts into first-draft storyboards and executive-ready presentation materials, iterating quickly based on feedback while maintaining clarity, precision, and narrative structure appropriate for senior audiences.
- Compile, validate, and summarize key technology risk themes, control observations, and remediation progress to support governance narratives and reporting; escalate gaps, inconsistencies, or emerging issues to the VP/ED for decisioning.
- Support assessment and monitoring of technology risks and controls, helping ensure alignment with firm standards, regulatory requirements, and industry best practices.
- Analyze complex situations, draft clear problem statements, options, and implications, and support execution tracking for risk mitigation actions in partnership with accountable owners.
Required qualifications, capabilities, and skills
- 3+ years of experience or equivalent expertise in technology risk management, information security, or a related field, with a focus on risk identification, assessment, and mitigation
- Experience in risk identification, assessment, and control evaluation, with a strong understanding of industry standards
- Demonstrated ability to analyze complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders
- Proven ability to collaborate and build strong partnerships
- Excellent organizational and project management skills, ability to manage multiple competing priorities and work under tight deadlines
- Intellectual curiosity with a proven ability to learn quickly
- High degree of initiative, self-direction and ability to work well under pressure
Preferred qualifications, capabilities, and skills
- Experience in Technology Risk and Compliance, Information Security, Corporate Governance, Metrics & Reporting, preferably at a global financial services organization
- Experience in Corporate Strategy or Consulting
- Proficient knowledge of risk management frameworks, regulations, and industry best practices
