Embedded Risk Manager

Skills

Familiarity with IT Infrastructure – Mainframe distributed cloud network disaster recovery automation ITIL processes Able to identify Audit control gaps in engineering platforms and processes Strong written and verbal communications and presentation skills Accountable to take necessary actions to continuously meet required deadlines and goals Convinces others by making a strong case bringing others along to their viewpoint; builds strong trusting relationships while being comfortable challenging ideas. Thinks boldly and out of the box generates new ideas and processes confidently pursues challenges Bachelor's degree preferred with Masters or equivalent experience

Description

Business Unit Description:

The Information Technology group delivers secure, reliable technology solutions that enable DTCC to be the trusted infrastructure of the global capital markets. The team delivers high-quality information through activities that include development of essential applications, building infrastructure capabilities to meet client needs and implementing data standards and governance.



Position Summary

The Principal Embedded Risk Manager (ERM) specializes in serving as a central point of contact and liaison aligned with IT that drives completion of, and adherence to, risk and control commitments, obligations, and requirements for their aligned departments; and is responsible for assisting stakeholders with the identification and timely remediation of risk. They are a top-level contributor that acts independently with minimal direction. The ERM’s ability to form strong relationships and communicate with a breadth and variety of management resources is critical. Attention to detail and strong time management skills are also required, along with juggling competing priorities.

Responsibilities

• Follow the DTCC processes and methodologies for risk management
• Learn to effectively use the tools required for risk management at DTCC such as PDMS / Archer
• Comply with existing risk and control commitments and requirements
• Liaison between and across the IT and the firm with the following control functions:
• • Internal Audit Department
• • Technical Risk Management
• • Operational Risk Management
• • Regulators / Regulatory Relations
• • IT Risk Community of Excellence
• • Management Control Testing.
• Drive successful and timely completion of commitments and requirements
• • Issues and Actions
• • TRM network and app pen test findings, FOSS findings
• • Risk acceptances and policy deviations
• • PDMS Policy and Procedures document reviews