Why USAA? At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to be the choice for the military community and their families. Embrace a fulfilling career at USAA, where our core values - honesty, integrity, loyalty and service - define how we treat each other and our members. Be part of what truly makes us special and impactful. The Opportunity We are seeking a dedicated Bank Information Security Governance Senior. We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in our Phoenix, AZ; San Antonio, TX; Plano, TX; Colorado Springs, CO; Chesapeake, VA; Charlotte, NC or Tampa, FL offices. Relocation assistance is not available for this position. What you'll do: Supports the first line of defense in ensuring the effectiveness of Information Security (IS) governance, IS risk management, and compliance programs within the Bank Technology Office. Collaborates with Information Technology (IT) and IS teams, business stakeholders, Compliance, Risk Management, Audit Services, and external parties to support IS governance and IS risk and compliance-based initiatives. Acts as a key liaison between the Association's IS function and various Bank business units, ensuring alignment with enterprise security policies and standards. Continuously monitors IS environments to identify emerging risks related to cybersecurity, infrastructure, applications, and third-party services. Provides consultative services across Bank. Provides expert insights on the development, implementation, and continuous improvement of IT governance frameworks (e.g., COBIT, ITIL) tailored to the Bank organization's specific needs and strategic objectives. Analyzes incident trends and control gaps to anticipate potential risk scenarios and recommend preventive measures. Conducts forward-looking risk assessments for new technology initiatives, system changes, and digital transformation projects. Analyzes incident trends and control gaps to anticipate potential risk scenarios and recommend preventive measures. Partners with and leads IT/IS teams to embed IS risk considerations early in the project lifecycle and ensure timely mitigation strategies. Leads the development, implementation, and continuous improvement of IT governance frameworks (e.g., COBIT, ITIL) tailored to the organization's specific needs and strategic objectives. Defines, maintains, and enforces IS policies, standards, and procedures to ensure compliance with relevant laws, regulations, and industry best practices. Ensures IS risk compliance with legal, regulatory, and contractual requirements, coordinating audits and assessments. Provides governance oversight for IS related initiatives, ensuring they adhere to established standards, policies, and risk management practices. Mentors junior members of the IS governance team, providing guidance and support in their professional development. Enhances, and maintains awareness of the risk governance framework and its elements (RCSA). Performs root cause analysis to determine likelihood, impact, and mitigation approaches of identified risks. Prepares metrics reporting and participates in the metrics refresh process. Maintains awareness of cloud computing principles and AI and understands potential IS risks inherent within this discipline. Ensures risks associated with business activities are effectively identified, measured, monitored, and controlled in accordance with risk and compliance policies and procedures. What you have: Bachelor's degree in Information Technology, Computer Science, Business Administration, or a related field; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree. 6 years experience supporting IS governance, IS risk management, compliance, or IT audit activities In-depth knowledge and application of IT governance frameworks such as COBIT, ITIL, ISO 27001, and NIST, CIS Controls and CMMC Experience working on and implementing IT and/or IS policies, standards, and procedures. Experience leading and coordinating IS audits and assessments and ensuring compliance with regulatory requirements. A strong understanding of regulatory and compliance requirements applicable to the organization. Ability to interpret complex IT/IS environments and detect early warning signals. Experience in identifying potential failure points and simulating risk scenarios. Proficiency in using data to identify trends, anomalies, and emerging risks. Understanding of cloud, cybersecurity, and digital transformation risks. Ability to articulate risk insights and influence stakeholders to take preventive actions. Familiarity with GRC platforms, vulnerability management tools, and risk dashboards. What sets you apart: Information Technology or Security certifications (e.g., CISA, CRISC, CISM, CISSP, CGEIT, CIA, NIST, COBIT, etc.). Familiarity with financial institutions regulations (GLBA, FFIEC Handbooks, PCI DSS) Work experience in highly regulated work environments including other large financial institutions Experience with data-driven analysis using AI tools and collaborating to drive process innovation Highly self-motivated individual capable of working independently and proactively handling their workload with minimal direct supervision. Strong analytical skills and demonstrated experience collaborating effectively with leadership at all levels within an organization. Compensation range: The salary range for this position is: $114,080-$218,030. USAA does not provide visa sponsorship for this role. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.). Compensation: USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market data of the position. The actual salary for this role may vary by location. Employees may be eligible for pay incentives based on overall corporate and individual performance and at the discretion of the USAA Board of Directors. The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job. Benefits: At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals. For more details on our outstanding benefits, visit our benefits page on Applications for this position are accepted on an ongoing basis, this posting will remain open until the position is filled. Thus, interested candidates are encouraged to apply the same day they view this posting. USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
12/07/2025
Full time
Why USAA? At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to be the choice for the military community and their families. Embrace a fulfilling career at USAA, where our core values - honesty, integrity, loyalty and service - define how we treat each other and our members. Be part of what truly makes us special and impactful. The Opportunity We are seeking a dedicated Bank Information Security Governance Senior. We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in our Phoenix, AZ; San Antonio, TX; Plano, TX; Colorado Springs, CO; Chesapeake, VA; Charlotte, NC or Tampa, FL offices. Relocation assistance is not available for this position. What you'll do: Supports the first line of defense in ensuring the effectiveness of Information Security (IS) governance, IS risk management, and compliance programs within the Bank Technology Office. Collaborates with Information Technology (IT) and IS teams, business stakeholders, Compliance, Risk Management, Audit Services, and external parties to support IS governance and IS risk and compliance-based initiatives. Acts as a key liaison between the Association's IS function and various Bank business units, ensuring alignment with enterprise security policies and standards. Continuously monitors IS environments to identify emerging risks related to cybersecurity, infrastructure, applications, and third-party services. Provides consultative services across Bank. Provides expert insights on the development, implementation, and continuous improvement of IT governance frameworks (e.g., COBIT, ITIL) tailored to the Bank organization's specific needs and strategic objectives. Analyzes incident trends and control gaps to anticipate potential risk scenarios and recommend preventive measures. Conducts forward-looking risk assessments for new technology initiatives, system changes, and digital transformation projects. Analyzes incident trends and control gaps to anticipate potential risk scenarios and recommend preventive measures. Partners with and leads IT/IS teams to embed IS risk considerations early in the project lifecycle and ensure timely mitigation strategies. Leads the development, implementation, and continuous improvement of IT governance frameworks (e.g., COBIT, ITIL) tailored to the organization's specific needs and strategic objectives. Defines, maintains, and enforces IS policies, standards, and procedures to ensure compliance with relevant laws, regulations, and industry best practices. Ensures IS risk compliance with legal, regulatory, and contractual requirements, coordinating audits and assessments. Provides governance oversight for IS related initiatives, ensuring they adhere to established standards, policies, and risk management practices. Mentors junior members of the IS governance team, providing guidance and support in their professional development. Enhances, and maintains awareness of the risk governance framework and its elements (RCSA). Performs root cause analysis to determine likelihood, impact, and mitigation approaches of identified risks. Prepares metrics reporting and participates in the metrics refresh process. Maintains awareness of cloud computing principles and AI and understands potential IS risks inherent within this discipline. Ensures risks associated with business activities are effectively identified, measured, monitored, and controlled in accordance with risk and compliance policies and procedures. What you have: Bachelor's degree in Information Technology, Computer Science, Business Administration, or a related field; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree. 6 years experience supporting IS governance, IS risk management, compliance, or IT audit activities In-depth knowledge and application of IT governance frameworks such as COBIT, ITIL, ISO 27001, and NIST, CIS Controls and CMMC Experience working on and implementing IT and/or IS policies, standards, and procedures. Experience leading and coordinating IS audits and assessments and ensuring compliance with regulatory requirements. A strong understanding of regulatory and compliance requirements applicable to the organization. Ability to interpret complex IT/IS environments and detect early warning signals. Experience in identifying potential failure points and simulating risk scenarios. Proficiency in using data to identify trends, anomalies, and emerging risks. Understanding of cloud, cybersecurity, and digital transformation risks. Ability to articulate risk insights and influence stakeholders to take preventive actions. Familiarity with GRC platforms, vulnerability management tools, and risk dashboards. What sets you apart: Information Technology or Security certifications (e.g., CISA, CRISC, CISM, CISSP, CGEIT, CIA, NIST, COBIT, etc.). Familiarity with financial institutions regulations (GLBA, FFIEC Handbooks, PCI DSS) Work experience in highly regulated work environments including other large financial institutions Experience with data-driven analysis using AI tools and collaborating to drive process innovation Highly self-motivated individual capable of working independently and proactively handling their workload with minimal direct supervision. Strong analytical skills and demonstrated experience collaborating effectively with leadership at all levels within an organization. Compensation range: The salary range for this position is: $114,080-$218,030. USAA does not provide visa sponsorship for this role. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.). Compensation: USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market data of the position. The actual salary for this role may vary by location. Employees may be eligible for pay incentives based on overall corporate and individual performance and at the discretion of the USAA Board of Directors. The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job. Benefits: At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals. For more details on our outstanding benefits, visit our benefits page on Applications for this position are accepted on an ongoing basis, this posting will remain open until the position is filled. Thus, interested candidates are encouraged to apply the same day they view this posting. USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Why USAA? At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to be the choice for the military community and their families. Embrace a fulfilling career at USAA, where our core values - honesty, integrity, loyalty and service - define how we treat each other and our members. Be part of what truly makes us special and impactful. The Opportunity We are seeking a dedicated Bank Information Technology Governance Lead. We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in our Phoenix, AZ; San Antonio, TX; Plano, TX; Colorado Springs, CO; Chesapeake, VA; Charlotte, NC or Tampa, FL offices. Relocation assistance is not available for this position. What you'll do: Supports the first line of defense in ensuring the effectiveness, application, and adherence to IT governance, risk management, and compliance programs within the Bank Technology Office. Leads and supports the design, implementation, and continuous improvement of IT governance, risk, and compliance programs within the Bank Technology Office. This role develops and enforces IT policies and standards, monitors compliance with regulations, leads risk assessments, and provides strategic advice to senior management. Collaborates with various stakeholders, including IT teams, business units, legal, and audit, to ensure integrated governance practices. Leads and supports the execution of the bank's first line IT Bank risk strategy aligned with Association risk and regulatory frameworks. Develops, coordinates, and enforces Bank IT and security policies, standards, and procedures to ensure regulatory compliance and risk mitigation. Participates and oversees audits, assessments, and reviews to monitor compliance with internal policies and external regulations. Assesses Bank IT activities for compliance with regulations such as GDPR, HIPAA, and PCI DSS. Serves as the primary liaison for regulatory bodies, ensuring timely reporting and responses to inquiries. Manages third party and regulatory responses, questionnaires. Maintains the Bank IT risk register and leads periodic risk assessments across technology operations. Provides strategic advice to senior management on Bank IT governance and compliance matters. Collaborates with IT, legal, procurement, and other stakeholders to ensure integrated governance practices. Provides input into the budget management process for Bank IT governance initiatives to ensure resources are allocated effectively and aligned with priorities. Assists in establishing, monitoring, and reporting on key performance metrics and reporting mechanisms for governance and compliance initiatives. Produces reporting documentation for Technology and Risk and Compliance Committees. Ensures that Bank IT continually meets any regulatory, statutory, and legal obligations, supports the organization's objectives, works within the defined ethical and cultural framework, and follows the IT governance framework. Oversees compliance responses ensuring that they are validated, communicated appropriately, and evidenced. Supports identification, assessment, and mitigation of risks related to Bank technology operations and monitoring, technology architecture and systems limitations and/or design and development. Supports ongoing oversight of affiliate agreements for IT services, ensuring FSB compliance and risk ownership. Reports on affiliate risk posture and mitigation efforts to senior leadership. Supports incident and issue management processes for Bank impacting technology issues, ensuring rapid triage, root cause analysis, and remediation. Mentors junior members of the IT governance team, providing guidance and support in their professional development. Leverages AI capabilities within the context of the IT Gov function as needed. Stays abreast of emerging technologies and regulations and ensuring IT alignment with business goals. Ensures risks associated with business activities are effectively identified, measured, monitored, and controlled in accordance with risk and compliance policies and procedures. What you have: Bachelor's degree in Information Systems, Computer Science, Business Administration, or a related field; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree (12 years of experience in lieu of a degree). 8 years experience supporting IT governance, risk management, compliance, or IT audit activities, including 2 years experience in a team or people leadership role. In-depth knowledge of IT governance frameworks such as COBIT, ITIL, ISO 27001, and NIST. Demonstrated experience in developing and implementing IT policies, standards, and procedures. Experience in coordinating IT audits and assessments, and ensuring compliance with regulatory requirements. Demonstrated experience in policy development, audit coordination, and risk-based compliance monitoring. A strong understanding of regulatory and compliance requirements applicable to the organization. Experience communicating technical information to non-technical audiences. Experience partnering with cross-functional team members to deliver results. Advanced knowledge of Microsoft products. What sets you apart: Information Technology or Security certifications (e.g., CISA, CRISC, CISM, CISSP, CGEIT, CIA, NIST, COBIT, etc.). Familiarity with financial institutions regulations (GLBA, FFIEC Handbooks, PCI DSS) Work experience in highly regulated work environments including other large financial institutions Experience with data-driven analysis using AI tools and collaborating to drive process innovation Highly self-motivated individual capable of working independently and proactively handling their workload with minimal direct supervision. Strong analytical skills and demonstrated experience collaborating effectively with leadership at all levels within an organization. Compensation range: The salary range for this position is: $143,320-$273,930. USAA does not provide visa sponsorship for this role. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.). Compensation: USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market data of the position. The actual salary for this role may vary by location. Employees may be eligible for pay incentives based on overall corporate and individual performance and at the discretion of the USAA Board of Directors. The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job. Benefits: At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals. For more details on our outstanding benefits, visit our benefits page on Applications for this position are accepted on an ongoing basis, this posting will remain open until the position is filled. Thus, interested candidates are encouraged to apply the same day they view this posting. USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
12/07/2025
Full time
Why USAA? At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to be the choice for the military community and their families. Embrace a fulfilling career at USAA, where our core values - honesty, integrity, loyalty and service - define how we treat each other and our members. Be part of what truly makes us special and impactful. The Opportunity We are seeking a dedicated Bank Information Technology Governance Lead. We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in our Phoenix, AZ; San Antonio, TX; Plano, TX; Colorado Springs, CO; Chesapeake, VA; Charlotte, NC or Tampa, FL offices. Relocation assistance is not available for this position. What you'll do: Supports the first line of defense in ensuring the effectiveness, application, and adherence to IT governance, risk management, and compliance programs within the Bank Technology Office. Leads and supports the design, implementation, and continuous improvement of IT governance, risk, and compliance programs within the Bank Technology Office. This role develops and enforces IT policies and standards, monitors compliance with regulations, leads risk assessments, and provides strategic advice to senior management. Collaborates with various stakeholders, including IT teams, business units, legal, and audit, to ensure integrated governance practices. Leads and supports the execution of the bank's first line IT Bank risk strategy aligned with Association risk and regulatory frameworks. Develops, coordinates, and enforces Bank IT and security policies, standards, and procedures to ensure regulatory compliance and risk mitigation. Participates and oversees audits, assessments, and reviews to monitor compliance with internal policies and external regulations. Assesses Bank IT activities for compliance with regulations such as GDPR, HIPAA, and PCI DSS. Serves as the primary liaison for regulatory bodies, ensuring timely reporting and responses to inquiries. Manages third party and regulatory responses, questionnaires. Maintains the Bank IT risk register and leads periodic risk assessments across technology operations. Provides strategic advice to senior management on Bank IT governance and compliance matters. Collaborates with IT, legal, procurement, and other stakeholders to ensure integrated governance practices. Provides input into the budget management process for Bank IT governance initiatives to ensure resources are allocated effectively and aligned with priorities. Assists in establishing, monitoring, and reporting on key performance metrics and reporting mechanisms for governance and compliance initiatives. Produces reporting documentation for Technology and Risk and Compliance Committees. Ensures that Bank IT continually meets any regulatory, statutory, and legal obligations, supports the organization's objectives, works within the defined ethical and cultural framework, and follows the IT governance framework. Oversees compliance responses ensuring that they are validated, communicated appropriately, and evidenced. Supports identification, assessment, and mitigation of risks related to Bank technology operations and monitoring, technology architecture and systems limitations and/or design and development. Supports ongoing oversight of affiliate agreements for IT services, ensuring FSB compliance and risk ownership. Reports on affiliate risk posture and mitigation efforts to senior leadership. Supports incident and issue management processes for Bank impacting technology issues, ensuring rapid triage, root cause analysis, and remediation. Mentors junior members of the IT governance team, providing guidance and support in their professional development. Leverages AI capabilities within the context of the IT Gov function as needed. Stays abreast of emerging technologies and regulations and ensuring IT alignment with business goals. Ensures risks associated with business activities are effectively identified, measured, monitored, and controlled in accordance with risk and compliance policies and procedures. What you have: Bachelor's degree in Information Systems, Computer Science, Business Administration, or a related field; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree (12 years of experience in lieu of a degree). 8 years experience supporting IT governance, risk management, compliance, or IT audit activities, including 2 years experience in a team or people leadership role. In-depth knowledge of IT governance frameworks such as COBIT, ITIL, ISO 27001, and NIST. Demonstrated experience in developing and implementing IT policies, standards, and procedures. Experience in coordinating IT audits and assessments, and ensuring compliance with regulatory requirements. Demonstrated experience in policy development, audit coordination, and risk-based compliance monitoring. A strong understanding of regulatory and compliance requirements applicable to the organization. Experience communicating technical information to non-technical audiences. Experience partnering with cross-functional team members to deliver results. Advanced knowledge of Microsoft products. What sets you apart: Information Technology or Security certifications (e.g., CISA, CRISC, CISM, CISSP, CGEIT, CIA, NIST, COBIT, etc.). Familiarity with financial institutions regulations (GLBA, FFIEC Handbooks, PCI DSS) Work experience in highly regulated work environments including other large financial institutions Experience with data-driven analysis using AI tools and collaborating to drive process innovation Highly self-motivated individual capable of working independently and proactively handling their workload with minimal direct supervision. Strong analytical skills and demonstrated experience collaborating effectively with leadership at all levels within an organization. Compensation range: The salary range for this position is: $143,320-$273,930. USAA does not provide visa sponsorship for this role. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.). Compensation: USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market data of the position. The actual salary for this role may vary by location. Employees may be eligible for pay incentives based on overall corporate and individual performance and at the discretion of the USAA Board of Directors. The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job. Benefits: At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals. For more details on our outstanding benefits, visit our benefits page on Applications for this position are accepted on an ongoing basis, this posting will remain open until the position is filled. Thus, interested candidates are encouraged to apply the same day they view this posting. USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Why USAA? At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to be the choice for the military community and their families. Embrace a fulfilling career at USAA, where our core values - honesty, integrity, loyalty and service - define how we treat each other and our members. Be part of what truly makes us special and impactful. The Opportunity USAA is seeking an IT/Info Security Risk Management & Governance Executive who needs to have "hands-on" expertise in SSDLC - Second Line of Defense. This role sits within the Chief Risk Office for Technology. We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in one of the following locations: Charlotte, NC, San Antonio, TX, Tampa, FL with a preference for Charlotte. Relocation assistance is available to Charlotte for this position The successful candidate will serve as a key advisor responsible for recognizing and reporting Information Technology (IT) and Information Security (IS) strategic and aggregate risks across the business while advancing the Enterprise Risk Management function for aggregation, quantification, and qualification of risks. Sets direction for risk management programs within IT/IS and leads all aspects of the delivery of those programs across the line of business. Provide risk management and governance leadership, operational direction and operational oversight of Information Security, Business Continuity, Data Center Security, AI and Corporate Investigations domains and establish a best-in-class Risk Management framework for the Enterprise Security Group (ESG) to ensure comprehensive oversight and management of risks across the full risk taxonomy. Ensures risks align within appetite tolerances and strategic goals, product plans, forecasts, and adjusts to variances. Responsible for the aggregation and reporting of risks to senior leadership and effectively assessing and influencing business decisions and direction. Contributes to the long-term strategy of how risk systems should be adapted and integrated to maximize the ability to manage risk in an environment shaped by regulatory change and disruptive, emerging technologies. Ensures effective and appropriate policies, procedures, and controls are in place supporting all risk processes, systems, strategies, and implementations. Additional responsibilities include but are not limited to: Establishes trust and rapport with senior business leaders across the enterprise to sustain oversight of the second line risk role. Actively engages line of business leaders to ensure all risks are appropriately addressed consistent with policy and the Risk Appetite. Partners with senior risk executives in managing overall risk appetite to include the identification and definition of key methods, metrics, and limits. Influences and sets strategy for advancement of the risk management framework. Partners across Risk Management, Finance, and the business while effectively challenging variances to plan and strategies to mitigate. Provides advice to other key business partners and drive key decisions assessing risk and reward through effective challenge. Liaises with Compliance and CLO on legal & regulatory considerations that impact business operations and product offerings in accordance with federal and state regulations. Influences sound governance structure for oversight of risks and business operations and interacts & engages with all product & channel leaders on complex, multi-product processes and procedures while factoring in all legal & regulatory requirements. Assists in interactions and briefs on domain of responsibility with regulators from the OCC, FED, FDIC, and CFPB as well as prepare Board and Senior Management level reports related to IT/IS risk. Builds and oversees a team of employees ( 5 direct reports / 20-30 team size to start) for assigned functional area through ongoing execution of recruiting, development, retention, coaching and support, performance management, and managerial activities. Minimum Education: Bachelor's degree; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree. Minimum Experience: 10+ years of risk management, regulatory or operations experience in a functional area such as insurance, banking, or financial services with 5+ years of this experience focused on Information Security, Business Continuity, Physical Security or Corporate Investigations. 4+ years of people leadership experience in building, managing and/or developing high-performing teams. Industry certification(s) in Information Security (e.g., CISSP, CISM) or Business Continuity (e.g., ABCP, CBCP) or Risk Management (e.g., CRISC) or Physical Security (e.g., CPP). Demonstrated experience working with and applying Risk, Security or Audit frameworks (FFIEC, COBIT, COSO, ISO 27001/2, NIST 800-53, SSAE16). Knowledge of applicable laws, rules, and regulations applicable to financial institutions. Experience making data-driven decisions. Experience working with external agencies and regulators. Broad knowledge of information technology systems and general system development principles. What sets you apart: 7+ years of risk management and regulatory experience in a functional area such as insurance, banking, or financial services (Large size organizations 20k+) 10+ years experience focused on Information Security, Data, Risk Management, evaluating the design and development of software. Experience with artificial intelligence (AI) and machine learning principles, including responsible AI use case evaluations and deployment. 10+ years "hands-on" experience integrating security throughout the Secure Software Development Lifecycle (SSDLC), including component analysis, static and dynamic scanning (SAST/DAST), penetration testing, and comprehensive application security testing across build, deploy, and maintenance phases. Proven ability to develop high-impact materials and deliver concise, insight-driven presentations to executive leadership, translating complex concepts into actionable recommendations that influence strategic decision-making. Compensation range: The salary range for this position is: $169,880.00 - $305,780.00 . USAA does not provide visa sponsorship for this role. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.). Compensation: USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market data of the position. Employees may be eligible for pay incentives based on overall corporate and individual performance and at the discretion of the USAA Board of Directors. The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job. Long Term Incentive Plan: Cash payment for Executive level roles only, representing a cash payment which is both time and performance based. Benefits: At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals. For more details on our outstanding benefits, visit our benefits page on Applications for this position are accepted on an ongoing basis, this posting will remain open until the position is filled. Thus, interested candidates are encouraged to apply the same day they view this posting. USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
12/07/2025
Full time
Why USAA? At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to be the choice for the military community and their families. Embrace a fulfilling career at USAA, where our core values - honesty, integrity, loyalty and service - define how we treat each other and our members. Be part of what truly makes us special and impactful. The Opportunity USAA is seeking an IT/Info Security Risk Management & Governance Executive who needs to have "hands-on" expertise in SSDLC - Second Line of Defense. This role sits within the Chief Risk Office for Technology. We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in one of the following locations: Charlotte, NC, San Antonio, TX, Tampa, FL with a preference for Charlotte. Relocation assistance is available to Charlotte for this position The successful candidate will serve as a key advisor responsible for recognizing and reporting Information Technology (IT) and Information Security (IS) strategic and aggregate risks across the business while advancing the Enterprise Risk Management function for aggregation, quantification, and qualification of risks. Sets direction for risk management programs within IT/IS and leads all aspects of the delivery of those programs across the line of business. Provide risk management and governance leadership, operational direction and operational oversight of Information Security, Business Continuity, Data Center Security, AI and Corporate Investigations domains and establish a best-in-class Risk Management framework for the Enterprise Security Group (ESG) to ensure comprehensive oversight and management of risks across the full risk taxonomy. Ensures risks align within appetite tolerances and strategic goals, product plans, forecasts, and adjusts to variances. Responsible for the aggregation and reporting of risks to senior leadership and effectively assessing and influencing business decisions and direction. Contributes to the long-term strategy of how risk systems should be adapted and integrated to maximize the ability to manage risk in an environment shaped by regulatory change and disruptive, emerging technologies. Ensures effective and appropriate policies, procedures, and controls are in place supporting all risk processes, systems, strategies, and implementations. Additional responsibilities include but are not limited to: Establishes trust and rapport with senior business leaders across the enterprise to sustain oversight of the second line risk role. Actively engages line of business leaders to ensure all risks are appropriately addressed consistent with policy and the Risk Appetite. Partners with senior risk executives in managing overall risk appetite to include the identification and definition of key methods, metrics, and limits. Influences and sets strategy for advancement of the risk management framework. Partners across Risk Management, Finance, and the business while effectively challenging variances to plan and strategies to mitigate. Provides advice to other key business partners and drive key decisions assessing risk and reward through effective challenge. Liaises with Compliance and CLO on legal & regulatory considerations that impact business operations and product offerings in accordance with federal and state regulations. Influences sound governance structure for oversight of risks and business operations and interacts & engages with all product & channel leaders on complex, multi-product processes and procedures while factoring in all legal & regulatory requirements. Assists in interactions and briefs on domain of responsibility with regulators from the OCC, FED, FDIC, and CFPB as well as prepare Board and Senior Management level reports related to IT/IS risk. Builds and oversees a team of employees ( 5 direct reports / 20-30 team size to start) for assigned functional area through ongoing execution of recruiting, development, retention, coaching and support, performance management, and managerial activities. Minimum Education: Bachelor's degree; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree. Minimum Experience: 10+ years of risk management, regulatory or operations experience in a functional area such as insurance, banking, or financial services with 5+ years of this experience focused on Information Security, Business Continuity, Physical Security or Corporate Investigations. 4+ years of people leadership experience in building, managing and/or developing high-performing teams. Industry certification(s) in Information Security (e.g., CISSP, CISM) or Business Continuity (e.g., ABCP, CBCP) or Risk Management (e.g., CRISC) or Physical Security (e.g., CPP). Demonstrated experience working with and applying Risk, Security or Audit frameworks (FFIEC, COBIT, COSO, ISO 27001/2, NIST 800-53, SSAE16). Knowledge of applicable laws, rules, and regulations applicable to financial institutions. Experience making data-driven decisions. Experience working with external agencies and regulators. Broad knowledge of information technology systems and general system development principles. What sets you apart: 7+ years of risk management and regulatory experience in a functional area such as insurance, banking, or financial services (Large size organizations 20k+) 10+ years experience focused on Information Security, Data, Risk Management, evaluating the design and development of software. Experience with artificial intelligence (AI) and machine learning principles, including responsible AI use case evaluations and deployment. 10+ years "hands-on" experience integrating security throughout the Secure Software Development Lifecycle (SSDLC), including component analysis, static and dynamic scanning (SAST/DAST), penetration testing, and comprehensive application security testing across build, deploy, and maintenance phases. Proven ability to develop high-impact materials and deliver concise, insight-driven presentations to executive leadership, translating complex concepts into actionable recommendations that influence strategic decision-making. Compensation range: The salary range for this position is: $169,880.00 - $305,780.00 . USAA does not provide visa sponsorship for this role. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.). Compensation: USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market data of the position. Employees may be eligible for pay incentives based on overall corporate and individual performance and at the discretion of the USAA Board of Directors. The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job. Long Term Incentive Plan: Cash payment for Executive level roles only, representing a cash payment which is both time and performance based. Benefits: At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals. For more details on our outstanding benefits, visit our benefits page on Applications for this position are accepted on an ongoing basis, this posting will remain open until the position is filled. Thus, interested candidates are encouraged to apply the same day they view this posting. USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
OPERATIONAL RISK BUSINESS OVERSIGHT MANAGER I - Technology WHAT IS THE OPPORTUNITY? Operational Risk Management (ORM) is responsible for providing independent and objective oversight of the management of risks arising from City National Bank's business processes, people, systems or external events. The Operational Risk Business Oversight (ORBO) team is responsible for providing advisory and oversight, with a particular focus on strengthening operational risk management efforts in the first line of defense (1LOD) to support decision-making, primarily covering CNB Technology and Innovation. The ORBO Manager 1 is responsible for challenging the quality, sufficiency, and completeness of 1LOD operational risk management practices against ORM Framework requirements for assigned coverage areas and communicating outcomes through escalation and reporting to management as necessary. This position provides an excellent opportunity to strengthen the operational risk management framework, which includes risk identification and assessment; risk measurement; risk controls; and risk monitoring and reporting to improve operational resilience. WHAT WILL YOU DO? Review and challenge operational risk practices against CNB operational risk framework and policies, including but not limited to 1LOD output of risk identification assessments and scenario analysis, Risk and Control Self Assessments (RCSA's), Key Risk Indicators (KRI's), material existing and emerging exposures, Operational Risk Events (ORE) reporting, and issue resolution. Review and challenge of controls implemented. This includes providing feedback to risk and control owners and control assessment teams related to the following control management activities: control identification to match appropriate controls with identified risk exposures to lower the residual risk level; completeness and robustness of control documentation; reasonableness of control assessment approach and sample selection; consistency of design effectiveness and operating effectiveness conclusions with supporting evidence; and appropriateness of documented issues and action plans to remediate identified control failure. Review and challenge remediation initiatives to ensure operational risk exposures associated with known control deficiencies are addressed. This includes providing challenge throughout the Issue Management Lifecycle, which may include issue data details; root cause analysis; action plan; material issue changes; management's completion of the required and/or committed corrective actions with supporting evidence; and sustainability. Understand material existing and emerging risks which align with assigned business or corporate unit(s) to ensure operation within risk appetite and fair representation of the operational risk profile Provide advisory, oversight, and challenge to 1LOD development and implementation of business processes, procedures, and controls to adhere to operational risk governance requirements Credibly challenge 1LOD risk monitoring and reporting and related protocols, in conjunction with risk type teams, including metric trigger explanations and associated action plans Review and challenge self-identified issues and escalation in assigned coverage areas, including challenge of issue ratings, corrective action plans, due date extensions, and thematic issues in accordance with the CNB Issue Management Policy Influence and monitor progress of action plans to improve the risk and control environment arising from risk assessments, risk monitoring, internal and external events, and regulatory exams Exhibit high attention to details in identifying, aggregating, and communicating issues and control gaps to appropriate stakeholders Ensure work is produced and documented in alignment with quality and content requirements Provides clear and transparent updates on status of assignments. Exercises independent judgment in identifying and assessing risk Prepares, reviews, and presents review and challenge results to ORM Leadership, including outlining the risk of deficiencies Ensures observations and findings are documented and escalated to appropriate leadership Exercises effective communication and promotes positive client relations with business line colleagues and management Maintains authoritative knowledge and understanding of laws and regulations, regulatory guidance, policy, and procedures for operational functions covered Maintain familiarity with, and technical expertise with assigned business unit(s) organizational structure, personnel, activities and products, new product development, financial performance, and risk and problem areas Act as an internal advisor to business and corporate units regarding the ORM framework, tools, policies, procedures, and reporting metrics. Provides 2LOD audit and regulatory exam support Executes additional departmental initiatives and other duties as assigned WHAT DO YOU NEED TO SUCCEED? Required Qualifications Bachelor's Degree or equivalent Minimum 7 years of experience in the financial services industry Minimum 5 years of experience in risk management, technology risk management, compliance, or IT audit Minimum 3 years of IT control assurance experience Additional Qualifications Bachelor's degree or higher preferably in computer science (with a concentration in info/cyber security), management information technology, accounting, auditing, and other professional qualifications such as CISA, CPA, CIA, etc. Strong business knowledge of financial services Understanding of Risk Management/Operational Risk Management and Technology Risk Management Strong knowledge of internal control management practices and testing methodology with proven experience in controls management design and/or execution Strong knowledge of issue management practices with proven experience in issue resolution Ability to handle complexity and ambiguity Ability to deal effectively with conflict Well-developed influencing, analytical and problem-solving skills Must be able to convey complex concepts in a clear and concise manner Ability to work independently with effective time and project management Strong interpersonal/teamwork skills Strong communication (verbal and written), negotiation, and presentation skills required Demonstrated ability to think critically and facilitate change through collaborative effort Ability to work in a matrix environment WHAT'S IN IT FOR YOU? Compensation Starting base salary: $99,000 - $176,000 per year. Exact compensation may vary based on skills, experience, and location. This job is eligible for bonus and/or commissions. Benefits and Perks At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues including: Comprehensive healthcare coverage, including Medical, Dental and Vision plans, available the first of the month following start date Generous 401(k) company matching contribution Career Development through Tuition Reimbursement and other internal upskilling and training resources Valued Time Away benefits including vacation, sick and volunteer time Specialized health and family planning benefits including fertility benefits, and cancer, diabetes and musculoskeletal support programs Career Mobility support from a dedicated recruitment team Colleague Resource Groups to support networking and community engagement Get a more detailed look at our Benefits and Perks. ABOUT US Since day one we've always gone further than the competition to help our clients, colleagues and communities flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies. To learn more about City National and our dynamic company culture, visit us at About Us. INCLUSION AND EQUAL OPPORTUNITY EMPLOYMENT City National Bank fosters an inclusive environment where all forms of diversity are valued and leveraged to make us a better company and employer. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status or other basis protected by law. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Represents basic qualifications for the position. To be considered for this position, you must at least meet the required qualifications. accepts applications on an ongoing basis, until filled. Unless otherwise indicated as fully remote, reporting into a designated City National location is an essential function of the job.
12/07/2025
Full time
OPERATIONAL RISK BUSINESS OVERSIGHT MANAGER I - Technology WHAT IS THE OPPORTUNITY? Operational Risk Management (ORM) is responsible for providing independent and objective oversight of the management of risks arising from City National Bank's business processes, people, systems or external events. The Operational Risk Business Oversight (ORBO) team is responsible for providing advisory and oversight, with a particular focus on strengthening operational risk management efforts in the first line of defense (1LOD) to support decision-making, primarily covering CNB Technology and Innovation. The ORBO Manager 1 is responsible for challenging the quality, sufficiency, and completeness of 1LOD operational risk management practices against ORM Framework requirements for assigned coverage areas and communicating outcomes through escalation and reporting to management as necessary. This position provides an excellent opportunity to strengthen the operational risk management framework, which includes risk identification and assessment; risk measurement; risk controls; and risk monitoring and reporting to improve operational resilience. WHAT WILL YOU DO? Review and challenge operational risk practices against CNB operational risk framework and policies, including but not limited to 1LOD output of risk identification assessments and scenario analysis, Risk and Control Self Assessments (RCSA's), Key Risk Indicators (KRI's), material existing and emerging exposures, Operational Risk Events (ORE) reporting, and issue resolution. Review and challenge of controls implemented. This includes providing feedback to risk and control owners and control assessment teams related to the following control management activities: control identification to match appropriate controls with identified risk exposures to lower the residual risk level; completeness and robustness of control documentation; reasonableness of control assessment approach and sample selection; consistency of design effectiveness and operating effectiveness conclusions with supporting evidence; and appropriateness of documented issues and action plans to remediate identified control failure. Review and challenge remediation initiatives to ensure operational risk exposures associated with known control deficiencies are addressed. This includes providing challenge throughout the Issue Management Lifecycle, which may include issue data details; root cause analysis; action plan; material issue changes; management's completion of the required and/or committed corrective actions with supporting evidence; and sustainability. Understand material existing and emerging risks which align with assigned business or corporate unit(s) to ensure operation within risk appetite and fair representation of the operational risk profile Provide advisory, oversight, and challenge to 1LOD development and implementation of business processes, procedures, and controls to adhere to operational risk governance requirements Credibly challenge 1LOD risk monitoring and reporting and related protocols, in conjunction with risk type teams, including metric trigger explanations and associated action plans Review and challenge self-identified issues and escalation in assigned coverage areas, including challenge of issue ratings, corrective action plans, due date extensions, and thematic issues in accordance with the CNB Issue Management Policy Influence and monitor progress of action plans to improve the risk and control environment arising from risk assessments, risk monitoring, internal and external events, and regulatory exams Exhibit high attention to details in identifying, aggregating, and communicating issues and control gaps to appropriate stakeholders Ensure work is produced and documented in alignment with quality and content requirements Provides clear and transparent updates on status of assignments. Exercises independent judgment in identifying and assessing risk Prepares, reviews, and presents review and challenge results to ORM Leadership, including outlining the risk of deficiencies Ensures observations and findings are documented and escalated to appropriate leadership Exercises effective communication and promotes positive client relations with business line colleagues and management Maintains authoritative knowledge and understanding of laws and regulations, regulatory guidance, policy, and procedures for operational functions covered Maintain familiarity with, and technical expertise with assigned business unit(s) organizational structure, personnel, activities and products, new product development, financial performance, and risk and problem areas Act as an internal advisor to business and corporate units regarding the ORM framework, tools, policies, procedures, and reporting metrics. Provides 2LOD audit and regulatory exam support Executes additional departmental initiatives and other duties as assigned WHAT DO YOU NEED TO SUCCEED? Required Qualifications Bachelor's Degree or equivalent Minimum 7 years of experience in the financial services industry Minimum 5 years of experience in risk management, technology risk management, compliance, or IT audit Minimum 3 years of IT control assurance experience Additional Qualifications Bachelor's degree or higher preferably in computer science (with a concentration in info/cyber security), management information technology, accounting, auditing, and other professional qualifications such as CISA, CPA, CIA, etc. Strong business knowledge of financial services Understanding of Risk Management/Operational Risk Management and Technology Risk Management Strong knowledge of internal control management practices and testing methodology with proven experience in controls management design and/or execution Strong knowledge of issue management practices with proven experience in issue resolution Ability to handle complexity and ambiguity Ability to deal effectively with conflict Well-developed influencing, analytical and problem-solving skills Must be able to convey complex concepts in a clear and concise manner Ability to work independently with effective time and project management Strong interpersonal/teamwork skills Strong communication (verbal and written), negotiation, and presentation skills required Demonstrated ability to think critically and facilitate change through collaborative effort Ability to work in a matrix environment WHAT'S IN IT FOR YOU? Compensation Starting base salary: $99,000 - $176,000 per year. Exact compensation may vary based on skills, experience, and location. This job is eligible for bonus and/or commissions. Benefits and Perks At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues including: Comprehensive healthcare coverage, including Medical, Dental and Vision plans, available the first of the month following start date Generous 401(k) company matching contribution Career Development through Tuition Reimbursement and other internal upskilling and training resources Valued Time Away benefits including vacation, sick and volunteer time Specialized health and family planning benefits including fertility benefits, and cancer, diabetes and musculoskeletal support programs Career Mobility support from a dedicated recruitment team Colleague Resource Groups to support networking and community engagement Get a more detailed look at our Benefits and Perks. ABOUT US Since day one we've always gone further than the competition to help our clients, colleagues and communities flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies. To learn more about City National and our dynamic company culture, visit us at About Us. INCLUSION AND EQUAL OPPORTUNITY EMPLOYMENT City National Bank fosters an inclusive environment where all forms of diversity are valued and leveraged to make us a better company and employer. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status or other basis protected by law. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Represents basic qualifications for the position. To be considered for this position, you must at least meet the required qualifications. accepts applications on an ongoing basis, until filled. Unless otherwise indicated as fully remote, reporting into a designated City National location is an essential function of the job.
Summary: The Senior Director of Procurement Operations is responsible for leading, directing, and optimizing the company's procurement operations, ensuring efficiency, compliance, and strategic alignment with business and finance/risk objectives. This role oversees procurement technology, operational processes, procurement excellence initiatives, reporting and analytics, and procurement's overall data and AI strategy. The goal of this position is to lead the procurement operations unit and its team to drive value, enable cost savings, and operational excellence across the organization. Primary Duties & Responsibilities: Ability to build strong relationships with business partners at all levels, in order to implement procurement best practices, increasing the influence/role of Sourcing & Procurement within various business teams. Direct management of people leaders and individual contributors aligned to the Procurement Operations and Procurement/Finance Centers of Excellence (COE). Perform constant evaluation of procurement processes across market research, planning/forecasting, strategic sourcing, contracting, third party risk management, and supplier governance for ongoing synergies, efficiencies, and improvements. Understand procurement best practices in order to provide process and system recommendations to sourcing and procurement leaders. Set a long-term strategic approach to enrich and maintain accurate and robust procurement data and information. Set a long-term vision to execute and transform the value realized from procurements ability to conduct data analytics and data visualization practices. Expand Procurement's capabilities around reporting for the purpose of influencing business decisions and improving supplier-based ROI. Create, update, and maintain strategic roadmaps for S&P's data/analytics strategies to drive project prioritization and create alignment across all procurement and finance functions. Develop and maintain S&P reporting dashboards to represent NM supplier spend, demand, supplier utilization, performance, and risks. Develop and maintain S&P's measurements and reporting surrounding the function's savings and value contributions. Develop a strong execution strategy for team members, business partners, and the broader function. Define and direct performance objectives and career path/building opportunities for each member of the team. Oversee day-to-day management of a broad portfolio of Procurement systems, tools, and programs. Evaluate opportunities to streamline the performance and administration of all procurement systems and tools. Influence leadership on best practices, process changes, market inputs, etc. Establish and monitor key performance indicators (KPIs) for procurement operations performance. Oversee procurement operational units (i.e. Sales/Use Tax and others) to ensure performance, delivery, and value. Consistently work with procurement stakeholders and partners across the company to ensure the team's success and changing requirements/needs for compliance, risk, audit, and regulatory standards. Support procurement's compliance with company policies, ethical standards, and regulatory requirements. Establish and lead ongoing initiatives to improve procurement agility, speed, transparency, and partnership with company stakeholders, leaders, and business owners. Qualifications: Bachelor's Degree with an emphasis in Business, Information Systems, Supply Chain Management, Accounting/Finance, Engineering or related field, or an equivalent combination of education and work experience. Minimum of 10 years of work experience with a specific focus on, strategic sourcing or procurement, supplier management, finance, supply chain management, or other related field. Minimum of 5 years of management experience Minimum of 5 years of experience in leading the development and management of category plans or sourcing strategies. Proven ability to establish and maintain cross-functional relationships, influence change with diplomacy, and lead the decision-making processes. Strong customer focus, interpersonal, and communication skills. Excellent research, analytical, problem solving, planning and organization skills required as well as a high degree of personal initiative and motivation MBA, MS/ME is a plus. Consulting experience with global management consulting firm a plus. Previous strategic procurement operations, systems administration, data, analytics, and reporting experience preferred. Direct knowledge and/or training in formal strategic sourcing and procurement preferred. Strong understanding of procurement systems, analytics, and contract management tools (i.e Zip, SpendHQ, Peoplesoft, etc.) Experience operating in Financial Services, Banking, and/or Insurance industries preferred. , Compensation Range: Pay Range - Start: $112,210.00 Pay Range - End: $208,390.00 Geographic Specific Pay Structure: Structure 110: $123,410.00 USD - $229,190.00 USD Structure 115: $129,010.00 USD - $239,590.00 USD We believe in fairness and transparency. It's why we share the salary range for most of our roles. However, final salaries are based on a number of factors, including the skills and experience of the candidate; the current market; location of the candidate; and other factors uncovered in the hiring process. The standard pay structure is listed but if you're living in California, New York City or other eligible location, geographic specific pay structures, compensation and benefits could be applicable, click here to learn more. Grow your career with a best-in-class company that puts our clients' interests at the center of all we do. Get started now! Northwestern Mutual is an equal opportunity employer who welcomes and encourages diversity in the workforce. We are committed to creating and maintaining an environment in which each employee can contribute creative ideas, seek challenges, assume leadership and continue to focus on meeting and exceeding business and personal objectives. Skills Cross Functional Partnering & Planning (NM) - Expert, Attention to Detail (NM) - Expert, Accountability (NM) - Advanced, Financial Acumen (NM) - Expert, Process Improvement (NM) - Advanced, Business Automation (NM) - Advanced, Business Influence (NM) - Advanced, Storytelling through Data (NM) - Expert, Learning Agility & Critical Thinking (NM) - Advanced FIND YOUR FUTURE We're excited about the potential people bring to Northwestern Mutual. You can grow your career here while enjoying first-class perks, benefits, and our commitment to a culture of belonging. Flexible work schedules Concierge service Comprehensive benefits Employee resource groups PandoLogic. Category:Logistics,
12/06/2025
Full time
Summary: The Senior Director of Procurement Operations is responsible for leading, directing, and optimizing the company's procurement operations, ensuring efficiency, compliance, and strategic alignment with business and finance/risk objectives. This role oversees procurement technology, operational processes, procurement excellence initiatives, reporting and analytics, and procurement's overall data and AI strategy. The goal of this position is to lead the procurement operations unit and its team to drive value, enable cost savings, and operational excellence across the organization. Primary Duties & Responsibilities: Ability to build strong relationships with business partners at all levels, in order to implement procurement best practices, increasing the influence/role of Sourcing & Procurement within various business teams. Direct management of people leaders and individual contributors aligned to the Procurement Operations and Procurement/Finance Centers of Excellence (COE). Perform constant evaluation of procurement processes across market research, planning/forecasting, strategic sourcing, contracting, third party risk management, and supplier governance for ongoing synergies, efficiencies, and improvements. Understand procurement best practices in order to provide process and system recommendations to sourcing and procurement leaders. Set a long-term strategic approach to enrich and maintain accurate and robust procurement data and information. Set a long-term vision to execute and transform the value realized from procurements ability to conduct data analytics and data visualization practices. Expand Procurement's capabilities around reporting for the purpose of influencing business decisions and improving supplier-based ROI. Create, update, and maintain strategic roadmaps for S&P's data/analytics strategies to drive project prioritization and create alignment across all procurement and finance functions. Develop and maintain S&P reporting dashboards to represent NM supplier spend, demand, supplier utilization, performance, and risks. Develop and maintain S&P's measurements and reporting surrounding the function's savings and value contributions. Develop a strong execution strategy for team members, business partners, and the broader function. Define and direct performance objectives and career path/building opportunities for each member of the team. Oversee day-to-day management of a broad portfolio of Procurement systems, tools, and programs. Evaluate opportunities to streamline the performance and administration of all procurement systems and tools. Influence leadership on best practices, process changes, market inputs, etc. Establish and monitor key performance indicators (KPIs) for procurement operations performance. Oversee procurement operational units (i.e. Sales/Use Tax and others) to ensure performance, delivery, and value. Consistently work with procurement stakeholders and partners across the company to ensure the team's success and changing requirements/needs for compliance, risk, audit, and regulatory standards. Support procurement's compliance with company policies, ethical standards, and regulatory requirements. Establish and lead ongoing initiatives to improve procurement agility, speed, transparency, and partnership with company stakeholders, leaders, and business owners. Qualifications: Bachelor's Degree with an emphasis in Business, Information Systems, Supply Chain Management, Accounting/Finance, Engineering or related field, or an equivalent combination of education and work experience. Minimum of 10 years of work experience with a specific focus on, strategic sourcing or procurement, supplier management, finance, supply chain management, or other related field. Minimum of 5 years of management experience Minimum of 5 years of experience in leading the development and management of category plans or sourcing strategies. Proven ability to establish and maintain cross-functional relationships, influence change with diplomacy, and lead the decision-making processes. Strong customer focus, interpersonal, and communication skills. Excellent research, analytical, problem solving, planning and organization skills required as well as a high degree of personal initiative and motivation MBA, MS/ME is a plus. Consulting experience with global management consulting firm a plus. Previous strategic procurement operations, systems administration, data, analytics, and reporting experience preferred. Direct knowledge and/or training in formal strategic sourcing and procurement preferred. Strong understanding of procurement systems, analytics, and contract management tools (i.e Zip, SpendHQ, Peoplesoft, etc.) Experience operating in Financial Services, Banking, and/or Insurance industries preferred. , Compensation Range: Pay Range - Start: $112,210.00 Pay Range - End: $208,390.00 Geographic Specific Pay Structure: Structure 110: $123,410.00 USD - $229,190.00 USD Structure 115: $129,010.00 USD - $239,590.00 USD We believe in fairness and transparency. It's why we share the salary range for most of our roles. However, final salaries are based on a number of factors, including the skills and experience of the candidate; the current market; location of the candidate; and other factors uncovered in the hiring process. The standard pay structure is listed but if you're living in California, New York City or other eligible location, geographic specific pay structures, compensation and benefits could be applicable, click here to learn more. Grow your career with a best-in-class company that puts our clients' interests at the center of all we do. Get started now! Northwestern Mutual is an equal opportunity employer who welcomes and encourages diversity in the workforce. We are committed to creating and maintaining an environment in which each employee can contribute creative ideas, seek challenges, assume leadership and continue to focus on meeting and exceeding business and personal objectives. Skills Cross Functional Partnering & Planning (NM) - Expert, Attention to Detail (NM) - Expert, Accountability (NM) - Advanced, Financial Acumen (NM) - Expert, Process Improvement (NM) - Advanced, Business Automation (NM) - Advanced, Business Influence (NM) - Advanced, Storytelling through Data (NM) - Expert, Learning Agility & Critical Thinking (NM) - Advanced FIND YOUR FUTURE We're excited about the potential people bring to Northwestern Mutual. You can grow your career here while enjoying first-class perks, benefits, and our commitment to a culture of belonging. Flexible work schedules Concierge service Comprehensive benefits Employee resource groups PandoLogic. Category:Logistics,
OPERATIONAL RISK BUSINESS OVERSIGHT MANAGER I - Technology WHAT IS THE OPPORTUNITY? Operational Risk Management (ORM) is responsible for providing independent and objective oversight of the management of risks arising from City National Bank's business processes, people, systems or external events. The Operational Risk Business Oversight (ORBO) team is responsible for providing advisory and oversight, with a particular focus on strengthening operational risk management efforts in the first line of defense (1LOD) to support decision-making, primarily covering CNB Technology and Innovation. The ORBO Manager 1 is responsible for challenging the quality, sufficiency, and completeness of 1LOD operational risk management practices against ORM Framework requirements for assigned coverage areas and communicating outcomes through escalation and reporting to management as necessary. This position provides an excellent opportunity to strengthen the operational risk management framework, which includes risk identification and assessment; risk measurement; risk controls; and risk monitoring and reporting to improve operational resilience. WHAT WILL YOU DO? Review and challenge operational risk practices against CNB operational risk framework and policies, including but not limited to 1LOD output of risk identification assessments and scenario analysis, Risk and Control Self Assessments (RCSA's), Key Risk Indicators (KRI's), material existing and emerging exposures, Operational Risk Events (ORE) reporting, and issue resolution. Review and challenge of controls implemented. This includes providing feedback to risk and control owners and control assessment teams related to the following control management activities: control identification to match appropriate controls with identified risk exposures to lower the residual risk level; completeness and robustness of control documentation; reasonableness of control assessment approach and sample selection; consistency of design effectiveness and operating effectiveness conclusions with supporting evidence; and appropriateness of documented issues and action plans to remediate identified control failure. Review and challenge remediation initiatives to ensure operational risk exposures associated with known control deficiencies are addressed. This includes providing challenge throughout the Issue Management Lifecycle, which may include issue data details; root cause analysis; action plan; material issue changes; management's completion of the required and/or committed corrective actions with supporting evidence; and sustainability. Understand material existing and emerging risks which align with assigned business or corporate unit(s) to ensure operation within risk appetite and fair representation of the operational risk profile Provide advisory, oversight, and challenge to 1LOD development and implementation of business processes, procedures, and controls to adhere to operational risk governance requirements Credibly challenge 1LOD risk monitoring and reporting and related protocols, in conjunction with risk type teams, including metric trigger explanations and associated action plans Review and challenge self-identified issues and escalation in assigned coverage areas, including challenge of issue ratings, corrective action plans, due date extensions, and thematic issues in accordance with the CNB Issue Management Policy Influence and monitor progress of action plans to improve the risk and control environment arising from risk assessments, risk monitoring, internal and external events, and regulatory exams Exhibit high attention to details in identifying, aggregating, and communicating issues and control gaps to appropriate stakeholders Ensure work is produced and documented in alignment with quality and content requirements Provides clear and transparent updates on status of assignments. Exercises independent judgment in identifying and assessing risk Prepares, reviews, and presents review and challenge results to ORM Leadership, including outlining the risk of deficiencies Ensures observations and findings are documented and escalated to appropriate leadership Exercises effective communication and promotes positive client relations with business line colleagues and management Maintains authoritative knowledge and understanding of laws and regulations, regulatory guidance, policy, and procedures for operational functions covered Maintain familiarity with, and technical expertise with assigned business unit(s) organizational structure, personnel, activities and products, new product development, financial performance, and risk and problem areas Act as an internal advisor to business and corporate units regarding the ORM framework, tools, policies, procedures, and reporting metrics. Provides 2LOD audit and regulatory exam support Executes additional departmental initiatives and other duties as assigned WHAT DO YOU NEED TO SUCCEED? Required Qualifications Bachelor's Degree or equivalent Minimum 7 years of experience in the financial services industry Minimum 5 years of experience in risk management, technology risk management, compliance, or IT audit Minimum 3 years of IT control assurance experience Additional Qualifications Bachelor's degree or higher preferably in computer science (with a concentration in info/cyber security), management information technology, accounting, auditing, and other professional qualifications such as CISA, CPA, CIA, etc. Strong business knowledge of financial services Understanding of Risk Management/Operational Risk Management and Technology Risk Management Strong knowledge of internal control management practices and testing methodology with proven experience in controls management design and/or execution Strong knowledge of issue management practices with proven experience in issue resolution Ability to handle complexity and ambiguity Ability to deal effectively with conflict Well-developed influencing, analytical and problem-solving skills Must be able to convey complex concepts in a clear and concise manner Ability to work independently with effective time and project management Strong interpersonal/teamwork skills Strong communication (verbal and written), negotiation, and presentation skills required Demonstrated ability to think critically and facilitate change through collaborative effort Ability to work in a matrix environment WHAT'S IN IT FOR YOU? Compensation Starting base salary: $99,000 - $176,000 per year. Exact compensation may vary based on skills, experience, and location. This job is eligible for bonus and/or commissions. Benefits and Perks At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues including: Comprehensive healthcare coverage, including Medical, Dental and Vision plans, available the first of the month following start date Generous 401(k) company matching contribution Career Development through Tuition Reimbursement and other internal upskilling and training resources Valued Time Away benefits including vacation, sick and volunteer time Specialized health and family planning benefits including fertility benefits, and cancer, diabetes and musculoskeletal support programs Career Mobility support from a dedicated recruitment team Colleague Resource Groups to support networking and community engagement Get a more detailed look at our Benefits and Perks. ABOUT US Since day one we've always gone further than the competition to help our clients, colleagues and communities flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies. To learn more about City National and our dynamic company culture, visit us at About Us. INCLUSION AND EQUAL OPPORTUNITY EMPLOYMENT City National Bank fosters an inclusive environment where all forms of diversity are valued and leveraged to make us a better company and employer. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status or other basis protected by law. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Represents basic qualifications for the position. To be considered for this position, you must at least meet the required qualifications. accepts applications on an ongoing basis, until filled. Unless otherwise indicated as fully remote, reporting into a designated City National location is an essential function of the job.
12/06/2025
Full time
OPERATIONAL RISK BUSINESS OVERSIGHT MANAGER I - Technology WHAT IS THE OPPORTUNITY? Operational Risk Management (ORM) is responsible for providing independent and objective oversight of the management of risks arising from City National Bank's business processes, people, systems or external events. The Operational Risk Business Oversight (ORBO) team is responsible for providing advisory and oversight, with a particular focus on strengthening operational risk management efforts in the first line of defense (1LOD) to support decision-making, primarily covering CNB Technology and Innovation. The ORBO Manager 1 is responsible for challenging the quality, sufficiency, and completeness of 1LOD operational risk management practices against ORM Framework requirements for assigned coverage areas and communicating outcomes through escalation and reporting to management as necessary. This position provides an excellent opportunity to strengthen the operational risk management framework, which includes risk identification and assessment; risk measurement; risk controls; and risk monitoring and reporting to improve operational resilience. WHAT WILL YOU DO? Review and challenge operational risk practices against CNB operational risk framework and policies, including but not limited to 1LOD output of risk identification assessments and scenario analysis, Risk and Control Self Assessments (RCSA's), Key Risk Indicators (KRI's), material existing and emerging exposures, Operational Risk Events (ORE) reporting, and issue resolution. Review and challenge of controls implemented. This includes providing feedback to risk and control owners and control assessment teams related to the following control management activities: control identification to match appropriate controls with identified risk exposures to lower the residual risk level; completeness and robustness of control documentation; reasonableness of control assessment approach and sample selection; consistency of design effectiveness and operating effectiveness conclusions with supporting evidence; and appropriateness of documented issues and action plans to remediate identified control failure. Review and challenge remediation initiatives to ensure operational risk exposures associated with known control deficiencies are addressed. This includes providing challenge throughout the Issue Management Lifecycle, which may include issue data details; root cause analysis; action plan; material issue changes; management's completion of the required and/or committed corrective actions with supporting evidence; and sustainability. Understand material existing and emerging risks which align with assigned business or corporate unit(s) to ensure operation within risk appetite and fair representation of the operational risk profile Provide advisory, oversight, and challenge to 1LOD development and implementation of business processes, procedures, and controls to adhere to operational risk governance requirements Credibly challenge 1LOD risk monitoring and reporting and related protocols, in conjunction with risk type teams, including metric trigger explanations and associated action plans Review and challenge self-identified issues and escalation in assigned coverage areas, including challenge of issue ratings, corrective action plans, due date extensions, and thematic issues in accordance with the CNB Issue Management Policy Influence and monitor progress of action plans to improve the risk and control environment arising from risk assessments, risk monitoring, internal and external events, and regulatory exams Exhibit high attention to details in identifying, aggregating, and communicating issues and control gaps to appropriate stakeholders Ensure work is produced and documented in alignment with quality and content requirements Provides clear and transparent updates on status of assignments. Exercises independent judgment in identifying and assessing risk Prepares, reviews, and presents review and challenge results to ORM Leadership, including outlining the risk of deficiencies Ensures observations and findings are documented and escalated to appropriate leadership Exercises effective communication and promotes positive client relations with business line colleagues and management Maintains authoritative knowledge and understanding of laws and regulations, regulatory guidance, policy, and procedures for operational functions covered Maintain familiarity with, and technical expertise with assigned business unit(s) organizational structure, personnel, activities and products, new product development, financial performance, and risk and problem areas Act as an internal advisor to business and corporate units regarding the ORM framework, tools, policies, procedures, and reporting metrics. Provides 2LOD audit and regulatory exam support Executes additional departmental initiatives and other duties as assigned WHAT DO YOU NEED TO SUCCEED? Required Qualifications Bachelor's Degree or equivalent Minimum 7 years of experience in the financial services industry Minimum 5 years of experience in risk management, technology risk management, compliance, or IT audit Minimum 3 years of IT control assurance experience Additional Qualifications Bachelor's degree or higher preferably in computer science (with a concentration in info/cyber security), management information technology, accounting, auditing, and other professional qualifications such as CISA, CPA, CIA, etc. Strong business knowledge of financial services Understanding of Risk Management/Operational Risk Management and Technology Risk Management Strong knowledge of internal control management practices and testing methodology with proven experience in controls management design and/or execution Strong knowledge of issue management practices with proven experience in issue resolution Ability to handle complexity and ambiguity Ability to deal effectively with conflict Well-developed influencing, analytical and problem-solving skills Must be able to convey complex concepts in a clear and concise manner Ability to work independently with effective time and project management Strong interpersonal/teamwork skills Strong communication (verbal and written), negotiation, and presentation skills required Demonstrated ability to think critically and facilitate change through collaborative effort Ability to work in a matrix environment WHAT'S IN IT FOR YOU? Compensation Starting base salary: $99,000 - $176,000 per year. Exact compensation may vary based on skills, experience, and location. This job is eligible for bonus and/or commissions. Benefits and Perks At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues including: Comprehensive healthcare coverage, including Medical, Dental and Vision plans, available the first of the month following start date Generous 401(k) company matching contribution Career Development through Tuition Reimbursement and other internal upskilling and training resources Valued Time Away benefits including vacation, sick and volunteer time Specialized health and family planning benefits including fertility benefits, and cancer, diabetes and musculoskeletal support programs Career Mobility support from a dedicated recruitment team Colleague Resource Groups to support networking and community engagement Get a more detailed look at our Benefits and Perks. ABOUT US Since day one we've always gone further than the competition to help our clients, colleagues and communities flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies. To learn more about City National and our dynamic company culture, visit us at About Us. INCLUSION AND EQUAL OPPORTUNITY EMPLOYMENT City National Bank fosters an inclusive environment where all forms of diversity are valued and leveraged to make us a better company and employer. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status or other basis protected by law. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Represents basic qualifications for the position. To be considered for this position, you must at least meet the required qualifications. accepts applications on an ongoing basis, until filled. Unless otherwise indicated as fully remote, reporting into a designated City National location is an essential function of the job.
Why USAA? At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to be the choice for the military community and their families. Embrace a fulfilling career at USAA, where our core values - honesty, integrity, loyalty and service - define how we treat each other and our members. Be part of what truly makes us special and impactful. The Opportunity As an Audit Lead, you'll support audit engagements of varying complexity, often participating in cross-functional, risk-based assurance and advisory projects, contributing to the quality of audit work. A key aspect of this role involves testing models and model-related tools as part of audit engagements. You will support Auditor-In-Charge (AIC) responsibilities and maintain knowledge of financial services regulations, effectively responding to and interacting with regulators. This role provides support and oversight to multiple audit engagements and participates in the review of engagement planning, fieldwork, and reporting. You will also manage strategic initiatives and assist with the development and implementation of a risk-based audit plan. You will serve as, and/or partner with, subject matter expert(s) within audit or the business to analyze issues, establish collaborative client relationships, and proactively work with client management to assess risk and improve internal controls. You will also adhere to the Institute of Internal Auditors' International Standards for the Professional Practice of Internal Auditing (Standards) and Code of Ethics. We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in one of the following locations: San Antonio, TX, Plano, TX, or Charlotte, NC. Relocation assistance is available for this position. What you'll do: Contribute to continuous monitoring, advisory activities, special reviews, and investigations. Ensure assigned audit engagements are completed objectively, professionally, and timely, adhering to audit standards. Identify control weaknesses and recommend improvements, drafting audit issues and reports for client leadership and conducting follow-up. Support quality of audit reviews and propose updates to the universe risk assessment based on audit results. Build client relationships to drive strategic objectives. Communicate effectively with business/clients, delivering risk-based and difficult messages, and potentially with regulators and executive leaders. Provide coaching and guidance to other auditors, ensuring timely and quality deliverables, and may provide engagement evaluations. Provide input into the internal audit universe and risk profiles, updating risk assessment information. Participate in the development and execution of the annual audit plan, assessing and covering risks. What you have: Bachelor's degree in Business or relevant field such as Finance, Accounting, Business, or Information Technology. Four additional years of related experience beyond minimum required may be substituted in lieu of a degree. 8 years of audit, financial, insurance, banking, information technology or related business and/or leadership experience. Experience performing internal audits, external audits, or applying audit, risk, or compliance acumen in a complex operational and regulatory environment. Broad and comprehensive experience in Audit theory, internal audit principles with demonstrated experience in audit examining, analyzing, assessing, and drawing conclusions from audit work. Demonstrated experience effectively communicating and challenging Controls with business partners and influencing business outcomes. Understanding of risks and internal controls and the ability to evaluate and determine adequacy and efficiency of controls. Experience in a support role, mentoring, and providing feedback to audit team members throughout the audit. Experience in overseeing work with both internal and external partners in a highly collaborative environment Demonstrated critical thinking and knowledge of data analysis tools and techniques and decision-making abilities. Demonstrated experience in highly dynamic environment undergoing change; ability to deal with competing priorities. What sets you apart: AI/ML Knowledge: Comprehensive understanding of AI/ML concepts, lifecycle stages, data sourcing, model types, tools, applications, and model risk management principles. AI Risk Management Expertise: Proficient in identifying, assessing, and mitigating risks associated with AI systems (e.g., safety, data integrity, privacy, security, biases). Model Risk & Control: Deep knowledge of model risk frameworks and control testing methodologies. Regulatory & Governance Expertise: Familiarity with AI-related regulatory guidance (e.g., SR 11-7, OCC 2011-12) and emerging governance principles (e.g., NIST AI RMF, ISO/IEC 42001, EU AI Act). AI Explainability & Transparency: Ability to evaluate interpretability techniques for regulatory and business transparency. Emerging Technology Awareness: Awareness of generative AI, LLMs, and automated decisioning frameworks to assess evolving risks and adapt audit techniques. Compensation range: The salary range for this position is: $143,320 - $273,930 USAA does not provide visa sponsorship for this role. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.). Compensation: USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market data of the position. The actual salary for this role may vary by location. Employees may be eligible for pay incentives based on overall corporate and individual performance and at the discretion of the USAA Board of Directors. The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job. Benefits: At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals. For more details on our outstanding benefits, visit our benefits page on Applications for this position are accepted on an ongoing basis, this posting will remain open until the position is filled. Thus, interested candidates are encouraged to apply the same day they view this posting. USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
12/05/2025
Full time
Why USAA? At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to be the choice for the military community and their families. Embrace a fulfilling career at USAA, where our core values - honesty, integrity, loyalty and service - define how we treat each other and our members. Be part of what truly makes us special and impactful. The Opportunity As an Audit Lead, you'll support audit engagements of varying complexity, often participating in cross-functional, risk-based assurance and advisory projects, contributing to the quality of audit work. A key aspect of this role involves testing models and model-related tools as part of audit engagements. You will support Auditor-In-Charge (AIC) responsibilities and maintain knowledge of financial services regulations, effectively responding to and interacting with regulators. This role provides support and oversight to multiple audit engagements and participates in the review of engagement planning, fieldwork, and reporting. You will also manage strategic initiatives and assist with the development and implementation of a risk-based audit plan. You will serve as, and/or partner with, subject matter expert(s) within audit or the business to analyze issues, establish collaborative client relationships, and proactively work with client management to assess risk and improve internal controls. You will also adhere to the Institute of Internal Auditors' International Standards for the Professional Practice of Internal Auditing (Standards) and Code of Ethics. We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in one of the following locations: San Antonio, TX, Plano, TX, or Charlotte, NC. Relocation assistance is available for this position. What you'll do: Contribute to continuous monitoring, advisory activities, special reviews, and investigations. Ensure assigned audit engagements are completed objectively, professionally, and timely, adhering to audit standards. Identify control weaknesses and recommend improvements, drafting audit issues and reports for client leadership and conducting follow-up. Support quality of audit reviews and propose updates to the universe risk assessment based on audit results. Build client relationships to drive strategic objectives. Communicate effectively with business/clients, delivering risk-based and difficult messages, and potentially with regulators and executive leaders. Provide coaching and guidance to other auditors, ensuring timely and quality deliverables, and may provide engagement evaluations. Provide input into the internal audit universe and risk profiles, updating risk assessment information. Participate in the development and execution of the annual audit plan, assessing and covering risks. What you have: Bachelor's degree in Business or relevant field such as Finance, Accounting, Business, or Information Technology. Four additional years of related experience beyond minimum required may be substituted in lieu of a degree. 8 years of audit, financial, insurance, banking, information technology or related business and/or leadership experience. Experience performing internal audits, external audits, or applying audit, risk, or compliance acumen in a complex operational and regulatory environment. Broad and comprehensive experience in Audit theory, internal audit principles with demonstrated experience in audit examining, analyzing, assessing, and drawing conclusions from audit work. Demonstrated experience effectively communicating and challenging Controls with business partners and influencing business outcomes. Understanding of risks and internal controls and the ability to evaluate and determine adequacy and efficiency of controls. Experience in a support role, mentoring, and providing feedback to audit team members throughout the audit. Experience in overseeing work with both internal and external partners in a highly collaborative environment Demonstrated critical thinking and knowledge of data analysis tools and techniques and decision-making abilities. Demonstrated experience in highly dynamic environment undergoing change; ability to deal with competing priorities. What sets you apart: AI/ML Knowledge: Comprehensive understanding of AI/ML concepts, lifecycle stages, data sourcing, model types, tools, applications, and model risk management principles. AI Risk Management Expertise: Proficient in identifying, assessing, and mitigating risks associated with AI systems (e.g., safety, data integrity, privacy, security, biases). Model Risk & Control: Deep knowledge of model risk frameworks and control testing methodologies. Regulatory & Governance Expertise: Familiarity with AI-related regulatory guidance (e.g., SR 11-7, OCC 2011-12) and emerging governance principles (e.g., NIST AI RMF, ISO/IEC 42001, EU AI Act). AI Explainability & Transparency: Ability to evaluate interpretability techniques for regulatory and business transparency. Emerging Technology Awareness: Awareness of generative AI, LLMs, and automated decisioning frameworks to assess evolving risks and adapt audit techniques. Compensation range: The salary range for this position is: $143,320 - $273,930 USAA does not provide visa sponsorship for this role. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.). Compensation: USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market data of the position. The actual salary for this role may vary by location. Employees may be eligible for pay incentives based on overall corporate and individual performance and at the discretion of the USAA Board of Directors. The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job. Benefits: At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals. For more details on our outstanding benefits, visit our benefits page on Applications for this position are accepted on an ongoing basis, this posting will remain open until the position is filled. Thus, interested candidates are encouraged to apply the same day they view this posting. USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
MGR IT AND RES RISK WHAT IS THE OPPORTUNITY? This role is responsible for the development and maturing of the 2nd line of defense (2LOD) Cyber, Technology, Business Continuity, and Operational Resilience Risk teams. This leader is the owner for all Cyber, Technology, Business Continuity, and Operational Resilience policies and standards across the bank and is responsible for providing independent oversight and challenge of all risk management activities in these domains ensuring that risks are sufficiently mitigated. The leader will continue to mature the banks 2nd line IT & Resilience risk management program in line with industry best practice, regulatory requirements and other RBC entities in the US. Manages a team of professionals who oversee all aspects of IT & Resilience Risk. Risk management emphasis includes: IT, Cyber, Business Continuity, and Operational Resilience enterprise governance, strategy, risk and compliance management, and regular reporting to the bank's governance committees. Participates in the planning and implementation of IT, Cyber, Business Continuity, and Operational Resilience controls for all material Projects. Provides oversight of the evaluation and selection of applications and systems and the design of underlying IT and Resilience risk governance processes. Makes recommendations and assists in the implementation of changes to work methods and procedures to make them more effective, or to strengthen controls, or reduce risk. Provides executive management and risk transparency to the Board and RBC through the bank's enterprise risk profile which aggregates IT and Resilience risks. WHAT WILL YOU DO? Oversee IT & Resilience risk management practices covering all facets of the IT and Resilience Risk Frameworks; provide interpretation and counsel on policies. Responsible for leading the IT & Resilience risk management program. Provides technical and best practice guidance on IT & Resilience risk management, taking into account specific business platform and process complexities and issues. Manage the functions and team of professionals who oversee all aspects of IT & Resilience Risk. Provides input into the setting of risk appetite based on platform specific differences and specific business considerations. Develops and reports the quarterly enterprise IT & Resilience risk profiles. Reviews IT & Resilience control processes along with associated documentation, and reporting. Reviews key audit, regulatory and client due diligence to develop and communicate risk themes, and solutions to the business. Establish effective monitoring practices to ensure adherence to the IT & Resilience risk management frameworks and policies, and assist business in the identification of issues. Review and maintain all program policies and standards for alignment to US regulatory expectations such as the FFIEC Guidelines. Advise and collaborate with IT and the business on appropriate ways to strengthen controls in non-compliant areas. Advise and assist first line of defense in IT & Resilience Risk mitigation planning activities. Provide credible challenge to 1LOD colleagues, ensuring safeguard and risk mitigation measures are upheld in decision making and adherence to 2LOD policies and standards. Provide ongoing IT & Resilience Risk Management governance and direction for the technology production and operations business process environments. Manage, develop, and play a leadership role for staff. Develop a high-performing team. Manage the personnel processes for employees, including selection, training, performance management, development, and retention. Fosters an environment where colleagues are empowered and have the opportunity to develop and grow. Engage with domain leads for Information Technology, Information Security, Disaster Recovery, Business Continuity, Crisis Management, Operational Resilience, Infrastructure, Data Quality, Performance & Scalability, Change Management, and Application Development to provide technical domain advice, as appropriate. Work effectively with the bank's senior executives, RBC's IHC and GRM executives. Develop and maintain key business relationships in order to provide advice and oversight on new initiatives. Provides regular reporting of IT & Resilience risk as required by CNB's Board, RBC's IHC, and the CUSO governance committees. Responsible for the overall direction and success of the 2LOD IT & Resilience Risk Management program. WHAT DO YOU NEED TO SUCCEED Required Qualifications Bachelor's Degree or equivalent Minimum 10 years in IT & Resilience Risk roles in Banking or Financial Services. Minimum 8 years in a Managerial/Supervisory role. Additional Qualifications Graduate degree in business or related discipline and / or MBA, CIA, or other professional related qualification. Extensive knowledge of and experience in IT & Resilience Risk Governance and Compliance. Solid understanding of City National Bank and RBC's USA region, including a breadth of business content experience across the platform and region. Strong leadership skills. Strategic mindset, with excellent knowledge and understanding of the financial industry. Highly developed ability for conceptual thinking. Excellent communication and presentation skills. Well-developed impact and influence skills. Proven track record of building strong relationships across business functions. Extensive knowledge and experience in regulatory guidance, most importantly for the OCC and FFIEC guidelines. Strong presentation skills involving large and of varying IT & Resilience background audiences; ability to adjust message and filter details based on audience. Demonstrated ability to interact effectively, internally and externally, with the most senior representatives of organizations, regulators and vendors. Strong Microsoft Excel, PowerPoint, and report writing skills, including the ability to evaluate the usefulness of data and use it in meaningful communication. WHAT'S IN IT FOR YOU? Compensation Starting base salary: $200,000 - $340,000 per year. Exact compensation may vary based on skills, experience, and location. This job is eligible for bonus and/or commissions. Benefits and Perks At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues including: Comprehensive healthcare coverage, including Medical, Dental and Vision plans, available the first of the month following start date Generous 401(k) company matching contribution Career Development through Tuition Reimbursement and other internal upskilling and training resources Valued Time Away benefits including vacation, sick and volunteer time Specialized health and family planning benefits including fertility benefits, and cancer, diabetes and musculoskeletal support programs Career Mobility support from a dedicated recruitment team Colleague Resource Groups to support networking and community engagement Get a more detailed look at our Benefits and Perks . ABOUT US Since day one we've always gone further than the competition to help our clients, colleagues and communities flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies. To learn more about City National and our dynamic company culture, visit us at About Us . INCLUSION AND EQUAL OPPORTUNITY EMPLOYMENT City National Bank fosters an inclusive environment where all forms of diversity are valued and leveraged to make us a better company and employer. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status or other basis protected by law. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Represents basic qualifications for the position. To be considered for this position, you must at least meet the required qualifications. accepts applications on an ongoing basis, until filled. Unless otherwise indicated as fully remote, reporting into a designated City National location is an essential function of the job.
12/03/2025
Full time
MGR IT AND RES RISK WHAT IS THE OPPORTUNITY? This role is responsible for the development and maturing of the 2nd line of defense (2LOD) Cyber, Technology, Business Continuity, and Operational Resilience Risk teams. This leader is the owner for all Cyber, Technology, Business Continuity, and Operational Resilience policies and standards across the bank and is responsible for providing independent oversight and challenge of all risk management activities in these domains ensuring that risks are sufficiently mitigated. The leader will continue to mature the banks 2nd line IT & Resilience risk management program in line with industry best practice, regulatory requirements and other RBC entities in the US. Manages a team of professionals who oversee all aspects of IT & Resilience Risk. Risk management emphasis includes: IT, Cyber, Business Continuity, and Operational Resilience enterprise governance, strategy, risk and compliance management, and regular reporting to the bank's governance committees. Participates in the planning and implementation of IT, Cyber, Business Continuity, and Operational Resilience controls for all material Projects. Provides oversight of the evaluation and selection of applications and systems and the design of underlying IT and Resilience risk governance processes. Makes recommendations and assists in the implementation of changes to work methods and procedures to make them more effective, or to strengthen controls, or reduce risk. Provides executive management and risk transparency to the Board and RBC through the bank's enterprise risk profile which aggregates IT and Resilience risks. WHAT WILL YOU DO? Oversee IT & Resilience risk management practices covering all facets of the IT and Resilience Risk Frameworks; provide interpretation and counsel on policies. Responsible for leading the IT & Resilience risk management program. Provides technical and best practice guidance on IT & Resilience risk management, taking into account specific business platform and process complexities and issues. Manage the functions and team of professionals who oversee all aspects of IT & Resilience Risk. Provides input into the setting of risk appetite based on platform specific differences and specific business considerations. Develops and reports the quarterly enterprise IT & Resilience risk profiles. Reviews IT & Resilience control processes along with associated documentation, and reporting. Reviews key audit, regulatory and client due diligence to develop and communicate risk themes, and solutions to the business. Establish effective monitoring practices to ensure adherence to the IT & Resilience risk management frameworks and policies, and assist business in the identification of issues. Review and maintain all program policies and standards for alignment to US regulatory expectations such as the FFIEC Guidelines. Advise and collaborate with IT and the business on appropriate ways to strengthen controls in non-compliant areas. Advise and assist first line of defense in IT & Resilience Risk mitigation planning activities. Provide credible challenge to 1LOD colleagues, ensuring safeguard and risk mitigation measures are upheld in decision making and adherence to 2LOD policies and standards. Provide ongoing IT & Resilience Risk Management governance and direction for the technology production and operations business process environments. Manage, develop, and play a leadership role for staff. Develop a high-performing team. Manage the personnel processes for employees, including selection, training, performance management, development, and retention. Fosters an environment where colleagues are empowered and have the opportunity to develop and grow. Engage with domain leads for Information Technology, Information Security, Disaster Recovery, Business Continuity, Crisis Management, Operational Resilience, Infrastructure, Data Quality, Performance & Scalability, Change Management, and Application Development to provide technical domain advice, as appropriate. Work effectively with the bank's senior executives, RBC's IHC and GRM executives. Develop and maintain key business relationships in order to provide advice and oversight on new initiatives. Provides regular reporting of IT & Resilience risk as required by CNB's Board, RBC's IHC, and the CUSO governance committees. Responsible for the overall direction and success of the 2LOD IT & Resilience Risk Management program. WHAT DO YOU NEED TO SUCCEED Required Qualifications Bachelor's Degree or equivalent Minimum 10 years in IT & Resilience Risk roles in Banking or Financial Services. Minimum 8 years in a Managerial/Supervisory role. Additional Qualifications Graduate degree in business or related discipline and / or MBA, CIA, or other professional related qualification. Extensive knowledge of and experience in IT & Resilience Risk Governance and Compliance. Solid understanding of City National Bank and RBC's USA region, including a breadth of business content experience across the platform and region. Strong leadership skills. Strategic mindset, with excellent knowledge and understanding of the financial industry. Highly developed ability for conceptual thinking. Excellent communication and presentation skills. Well-developed impact and influence skills. Proven track record of building strong relationships across business functions. Extensive knowledge and experience in regulatory guidance, most importantly for the OCC and FFIEC guidelines. Strong presentation skills involving large and of varying IT & Resilience background audiences; ability to adjust message and filter details based on audience. Demonstrated ability to interact effectively, internally and externally, with the most senior representatives of organizations, regulators and vendors. Strong Microsoft Excel, PowerPoint, and report writing skills, including the ability to evaluate the usefulness of data and use it in meaningful communication. WHAT'S IN IT FOR YOU? Compensation Starting base salary: $200,000 - $340,000 per year. Exact compensation may vary based on skills, experience, and location. This job is eligible for bonus and/or commissions. Benefits and Perks At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues including: Comprehensive healthcare coverage, including Medical, Dental and Vision plans, available the first of the month following start date Generous 401(k) company matching contribution Career Development through Tuition Reimbursement and other internal upskilling and training resources Valued Time Away benefits including vacation, sick and volunteer time Specialized health and family planning benefits including fertility benefits, and cancer, diabetes and musculoskeletal support programs Career Mobility support from a dedicated recruitment team Colleague Resource Groups to support networking and community engagement Get a more detailed look at our Benefits and Perks . ABOUT US Since day one we've always gone further than the competition to help our clients, colleagues and communities flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies. To learn more about City National and our dynamic company culture, visit us at About Us . INCLUSION AND EQUAL OPPORTUNITY EMPLOYMENT City National Bank fosters an inclusive environment where all forms of diversity are valued and leveraged to make us a better company and employer. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status or other basis protected by law. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Represents basic qualifications for the position. To be considered for this position, you must at least meet the required qualifications. accepts applications on an ongoing basis, until filled. Unless otherwise indicated as fully remote, reporting into a designated City National location is an essential function of the job.
OPERATIONAL RISK BUSINESS OVERSIGHT MANAGER I - Technology WHAT IS THE OPPORTUNITY? Operational Risk Management (ORM) is responsible for providing independent and objective oversight of the management of risks arising from City National Bank's business processes, people, systems or external events. The Operational Risk Business Oversight (ORBO) team is responsible for providing advisory and oversight, with a particular focus on strengthening operational risk management efforts in the first line of defense (1LOD) to support decision-making, primarily covering CNB Technology and Innovation. The ORBO Manager 1 is responsible for challenging the quality, sufficiency, and completeness of 1LOD operational risk management practices against ORM Framework requirements for assigned coverage areas and communicating outcomes through escalation and reporting to management as necessary. This position provides an excellent opportunity to strengthen the operational risk management framework, which includes risk identification and assessment; risk measurement; risk controls; and risk monitoring and reporting to improve operational resilience. WHAT WILL YOU DO? Review and challenge operational risk practices against CNB operational risk framework and policies, including but not limited to 1LOD output of risk identification assessments and scenario analysis, Risk and Control Self Assessments (RCSA's), Key Risk Indicators (KRI's), material existing and emerging exposures, Operational Risk Events (ORE) reporting, and issue resolution. Review and challenge of controls implemented. This includes providing feedback to risk and control owners and control assessment teams related to the following control management activities: control identification to match appropriate controls with identified risk exposures to lower the residual risk level; completeness and robustness of control documentation; reasonableness of control assessment approach and sample selection; consistency of design effectiveness and operating effectiveness conclusions with supporting evidence; and appropriateness of documented issues and action plans to remediate identified control failure. Review and challenge remediation initiatives to ensure operational risk exposures associated with known control deficiencies are addressed. This includes providing challenge throughout the Issue Management Lifecycle, which may include issue data details; root cause analysis; action plan; material issue changes; management's completion of the required and/or committed corrective actions with supporting evidence; and sustainability. Understand material existing and emerging risks which align with assigned business or corporate unit(s) to ensure operation within risk appetite and fair representation of the operational risk profile Provide advisory, oversight, and challenge to 1LOD development and implementation of business processes, procedures, and controls to adhere to operational risk governance requirements Credibly challenge 1LOD risk monitoring and reporting and related protocols, in conjunction with risk type teams, including metric trigger explanations and associated action plans Review and challenge self-identified issues and escalation in assigned coverage areas, including challenge of issue ratings, corrective action plans, due date extensions, and thematic issues in accordance with the CNB Issue Management Policy Influence and monitor progress of action plans to improve the risk and control environment arising from risk assessments, risk monitoring, internal and external events, and regulatory exams Exhibit high attention to details in identifying, aggregating, and communicating issues and control gaps to appropriate stakeholders Ensure work is produced and documented in alignment with quality and content requirements Provides clear and transparent updates on status of assignments. Exercises independent judgment in identifying and assessing risk Prepares, reviews, and presents review and challenge results to ORM Leadership, including outlining the risk of deficiencies Ensures observations and findings are documented and escalated to appropriate leadership Exercises effective communication and promotes positive client relations with business line colleagues and management Maintains authoritative knowledge and understanding of laws and regulations, regulatory guidance, policy, and procedures for operational functions covered Maintain familiarity with, and technical expertise with assigned business unit(s) organizational structure, personnel, activities and products, new product development, financial performance, and risk and problem areas Act as an internal advisor to business and corporate units regarding the ORM framework, tools, policies, procedures, and reporting metrics. Provides 2LOD audit and regulatory exam support Executes additional departmental initiatives and other duties as assigned WHAT DO YOU NEED TO SUCCEED? Required Qualifications Bachelor's Degree or equivalent Minimum 7 years of experience in the financial services industry Minimum 5 years of experience in risk management, technology risk management, compliance, or IT audit Minimum 3 years of IT control assurance experience Additional Qualifications Bachelor's degree or higher preferably in computer science (with a concentration in info/cyber security), management information technology, accounting, auditing, and other professional qualifications such as CISA, CPA, CIA, etc. Strong business knowledge of financial services Understanding of Risk Management/Operational Risk Management and Technology Risk Management Strong knowledge of internal control management practices and testing methodology with proven experience in controls management design and/or execution Strong knowledge of issue management practices with proven experience in issue resolution Ability to handle complexity and ambiguity Ability to deal effectively with conflict Well-developed influencing, analytical and problem-solving skills Must be able to convey complex concepts in a clear and concise manner Ability to work independently with effective time and project management Strong interpersonal/teamwork skills Strong communication (verbal and written), negotiation, and presentation skills required Demonstrated ability to think critically and facilitate change through collaborative effort Ability to work in a matrix environment WHAT'S IN IT FOR YOU? Compensation Starting base salary: $99,000 - $176,000 per year. Exact compensation may vary based on skills, experience, and location. This job is eligible for bonus and/or commissions. Benefits and Perks At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues including: Comprehensive healthcare coverage, including Medical, Dental and Vision plans, available the first of the month following start date Generous 401(k) company matching contribution Career Development through Tuition Reimbursement and other internal upskilling and training resources Valued Time Away benefits including vacation, sick and volunteer time Specialized health and family planning benefits including fertility benefits, and cancer, diabetes and musculoskeletal support programs Career Mobility support from a dedicated recruitment team Colleague Resource Groups to support networking and community engagement Get a more detailed look at our Benefits and Perks. ABOUT US Since day one we've always gone further than the competition to help our clients, colleagues and communities flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies. To learn more about City National and our dynamic company culture, visit us at About Us. INCLUSION AND EQUAL OPPORTUNITY EMPLOYMENT City National Bank fosters an inclusive environment where all forms of diversity are valued and leveraged to make us a better company and employer. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status or other basis protected by law. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Represents basic qualifications for the position. To be considered for this position, you must at least meet the required qualifications. accepts applications on an ongoing basis, until filled. Unless otherwise indicated as fully remote, reporting into a designated City National location is an essential function of the job.
12/02/2025
Full time
OPERATIONAL RISK BUSINESS OVERSIGHT MANAGER I - Technology WHAT IS THE OPPORTUNITY? Operational Risk Management (ORM) is responsible for providing independent and objective oversight of the management of risks arising from City National Bank's business processes, people, systems or external events. The Operational Risk Business Oversight (ORBO) team is responsible for providing advisory and oversight, with a particular focus on strengthening operational risk management efforts in the first line of defense (1LOD) to support decision-making, primarily covering CNB Technology and Innovation. The ORBO Manager 1 is responsible for challenging the quality, sufficiency, and completeness of 1LOD operational risk management practices against ORM Framework requirements for assigned coverage areas and communicating outcomes through escalation and reporting to management as necessary. This position provides an excellent opportunity to strengthen the operational risk management framework, which includes risk identification and assessment; risk measurement; risk controls; and risk monitoring and reporting to improve operational resilience. WHAT WILL YOU DO? Review and challenge operational risk practices against CNB operational risk framework and policies, including but not limited to 1LOD output of risk identification assessments and scenario analysis, Risk and Control Self Assessments (RCSA's), Key Risk Indicators (KRI's), material existing and emerging exposures, Operational Risk Events (ORE) reporting, and issue resolution. Review and challenge of controls implemented. This includes providing feedback to risk and control owners and control assessment teams related to the following control management activities: control identification to match appropriate controls with identified risk exposures to lower the residual risk level; completeness and robustness of control documentation; reasonableness of control assessment approach and sample selection; consistency of design effectiveness and operating effectiveness conclusions with supporting evidence; and appropriateness of documented issues and action plans to remediate identified control failure. Review and challenge remediation initiatives to ensure operational risk exposures associated with known control deficiencies are addressed. This includes providing challenge throughout the Issue Management Lifecycle, which may include issue data details; root cause analysis; action plan; material issue changes; management's completion of the required and/or committed corrective actions with supporting evidence; and sustainability. Understand material existing and emerging risks which align with assigned business or corporate unit(s) to ensure operation within risk appetite and fair representation of the operational risk profile Provide advisory, oversight, and challenge to 1LOD development and implementation of business processes, procedures, and controls to adhere to operational risk governance requirements Credibly challenge 1LOD risk monitoring and reporting and related protocols, in conjunction with risk type teams, including metric trigger explanations and associated action plans Review and challenge self-identified issues and escalation in assigned coverage areas, including challenge of issue ratings, corrective action plans, due date extensions, and thematic issues in accordance with the CNB Issue Management Policy Influence and monitor progress of action plans to improve the risk and control environment arising from risk assessments, risk monitoring, internal and external events, and regulatory exams Exhibit high attention to details in identifying, aggregating, and communicating issues and control gaps to appropriate stakeholders Ensure work is produced and documented in alignment with quality and content requirements Provides clear and transparent updates on status of assignments. Exercises independent judgment in identifying and assessing risk Prepares, reviews, and presents review and challenge results to ORM Leadership, including outlining the risk of deficiencies Ensures observations and findings are documented and escalated to appropriate leadership Exercises effective communication and promotes positive client relations with business line colleagues and management Maintains authoritative knowledge and understanding of laws and regulations, regulatory guidance, policy, and procedures for operational functions covered Maintain familiarity with, and technical expertise with assigned business unit(s) organizational structure, personnel, activities and products, new product development, financial performance, and risk and problem areas Act as an internal advisor to business and corporate units regarding the ORM framework, tools, policies, procedures, and reporting metrics. Provides 2LOD audit and regulatory exam support Executes additional departmental initiatives and other duties as assigned WHAT DO YOU NEED TO SUCCEED? Required Qualifications Bachelor's Degree or equivalent Minimum 7 years of experience in the financial services industry Minimum 5 years of experience in risk management, technology risk management, compliance, or IT audit Minimum 3 years of IT control assurance experience Additional Qualifications Bachelor's degree or higher preferably in computer science (with a concentration in info/cyber security), management information technology, accounting, auditing, and other professional qualifications such as CISA, CPA, CIA, etc. Strong business knowledge of financial services Understanding of Risk Management/Operational Risk Management and Technology Risk Management Strong knowledge of internal control management practices and testing methodology with proven experience in controls management design and/or execution Strong knowledge of issue management practices with proven experience in issue resolution Ability to handle complexity and ambiguity Ability to deal effectively with conflict Well-developed influencing, analytical and problem-solving skills Must be able to convey complex concepts in a clear and concise manner Ability to work independently with effective time and project management Strong interpersonal/teamwork skills Strong communication (verbal and written), negotiation, and presentation skills required Demonstrated ability to think critically and facilitate change through collaborative effort Ability to work in a matrix environment WHAT'S IN IT FOR YOU? Compensation Starting base salary: $99,000 - $176,000 per year. Exact compensation may vary based on skills, experience, and location. This job is eligible for bonus and/or commissions. Benefits and Perks At City National, we strive to be the best at whatever we do, including the benefits and perks we offer our colleagues including: Comprehensive healthcare coverage, including Medical, Dental and Vision plans, available the first of the month following start date Generous 401(k) company matching contribution Career Development through Tuition Reimbursement and other internal upskilling and training resources Valued Time Away benefits including vacation, sick and volunteer time Specialized health and family planning benefits including fertility benefits, and cancer, diabetes and musculoskeletal support programs Career Mobility support from a dedicated recruitment team Colleague Resource Groups to support networking and community engagement Get a more detailed look at our Benefits and Perks. ABOUT US Since day one we've always gone further than the competition to help our clients, colleagues and communities flourish. City National Bank was founded in 1954 by entrepreneurs for entrepreneurs and that legacy of integrity, community and unparalleled client relationships continues today. City National is a subsidiary of Royal Bank of Canada, one of North America's leading diversified financial services companies. To learn more about City National and our dynamic company culture, visit us at About Us. INCLUSION AND EQUAL OPPORTUNITY EMPLOYMENT City National Bank fosters an inclusive environment where all forms of diversity are valued and leveraged to make us a better company and employer. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sexual orientation, gender identity, national origin, disability, veteran status or other basis protected by law. It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability. Represents basic qualifications for the position. To be considered for this position, you must at least meet the required qualifications. accepts applications on an ongoing basis, until filled. Unless otherwise indicated as fully remote, reporting into a designated City National location is an essential function of the job.
