Our client is a top-tier International Investment and Commercial Bank. Data Resilience is the ability to provide critical services to our client’s customers, affiliates, and counter-parties, during sustained or significant operational disruption related to data (i.e. quality) or information (i.e. data that has consumable business value to an end-user). The risk type focuses on confidentially, integrity, and availability through the data lifecycle - notably, data risk oversight related to legal (i.e. data privacy) and regulatory compliance (i.e. data localization, record management) topics are beyond the scope of this role.

The Data Resilience Manager will serve as a specialist as part of the client's second line of defense Operational and Resilience Risk team. The role holder will contribute their expertise in information technology, data quality monitoring (rules ensuring data is complete and accurate), data dictionaries (rules for validating data at capture or during maintenance), and data lineage (flow of data from system-to-system) to provide robust, credible, insightful and constructive oversight and challenge to first line of defense IT stakeholders. The role enables business-facing Operational and Resilience Risk teams to provide tailored expertise to risk owners.

Responsibilities:

• Risk Management Expert: Specialist in information technology for data security and/or data quality, data simplification, data analytics, commercialization of data.
• Risk Taxonomy: Support the design, socialization, and implementation of the data-related elements of client’s Information Technology and Cybersecurity risk and control taxonomy. Ensure robust oversight and credible challenge with clear expectations set with IT and business data Control Owners. Works closely with the first line of defense (including USA Chief Data Officer their respective teams) to agree required outcomes and remediation priorities.
• Risk Appetite: Monitor US Resilience Risk Appetite and oversee first line of defense reporting to governance committees. Work with US ORR Business and Functions teams to ensure US businesses understand the impact of any Resilience Risk appetite breaches that require changes to controls, resources and business operations.
• Risk Policy: Provide subject matter expertise and credible challenge on US Resilience Risk policy dispensations and risk acceptances.
• Change and Event Incident Oversight: Support the guidance, oversight and challenge of key data-related Information Technology and Cybersecurity Risk issues, material internal incidents, external events, and strategic bank change programs to ensure risks are quantified and appropriate actions are taken.
• Risk Position and Challenge Papers: Help prepare evidence-based papers pertaining to data-related Information Technology and Cybersecurity Risk positions to US boards, Risk Management Meeting (RMMs), Control Environment Management Meeting (CEMMs), and related forums.
• Regulatory Awareness: Apply guidance on client''s adherence to data-related legislation and regulations from government organizations, regulators, and industry organizations.

Qualifications:

• Subject matter expertise in one or more resilience technology risk categories (i.e. data security), including understanding of industry best practices, frameworks, and regulatory guidelines
• Understanding of risk management principles
• Ability to engage with first line of defense stakeholders
• Strong written communicator
• 3-5 years experience in related technology role(s)
• Bachelor’s degree and/or professional certificate in related discipline
• IT, IT security, an/or risk management certifications preferred (including CRISC)