Overview
This is a remote role that may be hired in several markets across the United States.
This role provides Cybersecurity oversight specific to the Cyber Operations area, drives organizational change through the development and implementation of the Enterprise Risk Management and Operational Risk Management frameworks. Oversees Cybersecurity metrics, data, and reporting that enhances the identification and management of risk. Directs the effective monitoring and enhancement of frameworks through innovative tools or processes. Responsible for review and effective challenge of issues, key strategies, and material risk-related efforts. Builds influential relationships with senior management and supports management or board committees. Provides expert consultation on risk metrics, monitoring, reporting, cybersecurity, and technology solutions to improve framework capabilities. Develops collaborative partnerships with internal departments, external auditors, regulatory agencies, and other stakeholders to enhance cross-functional risk management capabilities.
Want more jobs like this?
Get jobs in Raleigh, NC delivered to your inbox every week.
Responsibilities
- Risk Management - Leads the planning, execution, and ongoing review of Enterprise and Operational Risk Management programs. Oversees all associates and processes within the programs. Directs monitoring activities for the identification and management of risk, including oversight of Bank cybersecurity processes and other areas with potential exposure. Drives the implementation of program policies, standards, and procedures. Partners with key business stakeholders to ensure compliance with program requirements. Maintains productive relationships with senior management to direct appropriate communication from leadership to associate teams.
- Business Support - Provides risk expertise and support for business programs, initiatives, and committees. Serves as an advisor on risk best practices, processes, and regulatory requirements. Manages risk education and training through partnership with business units. Directs presentations, workshops, and other trainings as necessary. Develops active relationships within professional networks to stay current on emerging issues and regulatory requirements. Communicates risk vision and regulatory requirements to business stakeholders.
- Managerial Functions - Establishes and monitors expectations to achieve company and department goals. Makes appropriate changes to team policies, procedures, and efficiencies in order to meet objectives. Manages the performance, training, and evaluation of assigned staff. Maximizes department achievements by providing professional development.
- Reporting - Develops and implements tools or processes which enhance risk reporting capabilities. Oversees the documentation of risk metrics and data in order to provide reports for executive leadership.
- Assessment and Exam Support - Works closely with regulatory agencies and assists regulatory exams. Ensures that all auditing or exam preparatory needs are met.
Bachelor's Degree and 10 years of experience in Enterprise or Operational Risk Management, Cybersecurity, Technology, Audit, Regulatory or External Consulting (internal or external) OR High School Diploma or GED and 14 years of experience in Enterprise or Operational Risk Management, Cybersecurity, Technology, Audit, Regulatory or External Consulting (internal or external)
Preferred Area of Experience: Cybersecurity Operations, Data Protection, Vulnerability Management
Preferred Certifications: CRISC, CISA or CISSP
Additional required skills:
- Knowledge of operational and enterprise risk management including identification, assessment, and escalation of risk issues
- Ability to track and coordinate large, complex processes
- Knowledge of regulatory guidance pertaining to enterprise and operational risk as well as risk control frameworks
- PC Skills including Microsoft Visio, Excel, and PowerPoint
The base pay for this position is generally between $150,000 and $250,000. Actual starting base pay will be determined based on skills, experience, location, and other non-discriminatory factors permitted by law. For some roles, total compensation may also include variable incentives, bonuses, benefits, and/or other awards as outlined in the offer of employment.
First Citizens benefits programs are designed to meet our associates where they are in life. Full-time associates (20+ hours) are offered a comprehensive benefits program, with customized offerings, including those designed to support families, however defined. More information regarding our benefits offerings can be found here: https://jobs.firstcitizens.com/benefits.