Technology Risk – Risk Management Specialist – Vice President (Dallas, TX)

About the position

Led by the Chief Information Security Officer (CISO), Technology Risk secures

Goldman Sachs against hackers and other cyber threats. We are responsible for

detecting and preventing attempted cyber intrusions against the firm, helping

the firm develop more secure applications and infrastructure, developing

software in support of our efforts, measuring cybersecurity risk, and designing

and driving implementation of cybersecurity controls. The team has global

presence across the Americas, APAC, India and EMEA.

Within Technology Risk, the Global Cyber Defense and Intelligence (GCDI)

organization identifies malicious activity, manages the lifecycle of

vulnerabilities within GS technologies, and investigates and manages threats

across the firm. We are a team of security, software, and product engineers that

allow the firm to respond appropriately to firm risks using detection models,

security architecture, and cutting-edge cyber threat analysis to manage internal

and external threats against the firm.

Your Impact:

In this position you will work closely with GCDI Leadership, Technology Risk

Governance, Regulatory and Audit teams and partner with colleagues across Core

Engineering, Firmwide Digital Risk Office, Operational Risk and Internal Audit

to identify issues, provide root cause analysis / evaluation, manage the

remediation, closure, monitoring, reporting and escalation of GCDI issues to

promote comprehensive, transparent, accurate and timely issue resolution. In

this role you will help define issues and be comfortable directly engaging and

managing challenges from other divisions across the firm.

How you will fulfill your potential:

Your responsibilities will include leading the issue management program for GCDI

with specific focus on critical control gaps and those areas cited by regulators

as requiring urgent remediation. You will oversee an established highly

effective Business-as-Usual (BAU) control framework, driving assurance

automation, and continuous control and process improvements, while managing the

Risk and Controls Self- Assessments (RCSA) process and ensuring alignment with

the firmwide Enterprise Risk Management Framework (ERMF).

Responsibilities

• Management and continuous improvement of the Issue Management Program across

GCDI and ensure alignment with the firmwide Enterprise Risk Management

Framework (ERMF)

• Maintain relevant GCDI owned policies, standards and frameworks to support

the best practices of the group

• Provides effective remediation and thoughtful critical challenge when needed,

to help facilitate the design and implementation of automated

controls/solutions and metric

• Demonstrates strong interpersonal skills with ability to foster collaborative

partnerships across the Three Lines of Defense to ensure integrated risk

oversight

• Review and challenge the comprehensiveness and quality of issue management

output from teams, providing strategic input where needed

• Ensure timely and efficient execution of issue management projects resulting

in high-quality output

• Manage expectations and act as point of escalation on project delays or other

challenges

Requirements

• Demonstrates experience in effective ongoing program management, including

continuous program improvement over time

• Knowledge of, and experience with, root cause analysis techniques and other

components of an effective issue management program

• Capable of driving outcomes independently and escalating issues as

encountered in a timely manner

• Understanding of ever-evolving governance processes and regulatory

environments within financial services

• Excellent verbal and written communication skills, with an ability to clearly

explain complex technical challenges

• Attention to detail and ability to prioritize workload
• Demonstrated ability to work collaboratively within and across project teams,

functional and business units

• Clear sense of ownership and driven to manage tasks to completion
• Ability to multitask and prioritize work effectively
• Highly motivated self-starter

Nice-to-haves

• 8+ years' program management experience
• Engineering background
• Demonstrated experience and understanding of cyber security landscape