Overview

This is a remote role that may be hired in several markets across the United States.

The Senior First Line Risk Manager is instrumental in the evaluation and identification of risks within the Information Technology (IT) organization of First Citizen Bank. The ideal candidate will be tasked with the oversight of a team of control testers and will employ a wide range of technical skills to assess the operational effectiveness and design of IT controls.

Responsibilities

• Ensure that control testing activities adhere to the Enterprise Standard.
• Manage the testing of IT control design and verify the operational efficiency of risk mitigation, monitoring, and reporting across the IT organization.
• Provide control testing expertise in the IT domains of Architecture, Infrastructure, Operations, Governance, Management, and Development.
• Identify opportunities for risk mitigation through control measures.
• Offer suggestions for the implementation of automated and repeatable controls.
• Establish strong relationships with the business owners, peer First Line Risk Managers, and Second Line of Defense.
• Submit a report to the executive leadership that includes the results, recommendations, and progress of the control testing.
• Ensure that control testing procedures and job aids are maintained.
• Oversees the recruitment, training, and development of personnel.

• Risk Activities - Ensures appropriate and effective collaboration between BU and Risk Management department. Provides BU risk considerations for business/strategic plans. Manages timely identification and escalation of risks and issues and consults with BU management surrounding key risk management issues, ensuring bank and regulatory alignment. Oversees issues management for the BU (corrective action, issue tracking, and reporting), including Risk Acceptance. Reviews and implements internal controls, ensuring control testing is in place and results are in line with Control Standards. Participates in risk identification and assessment processes and risk-related trainings.
• Managerial Functions - Establishes and monitors expectations to achieve company and department goals. Makes recommendations on appropriate changes to team policies, procedures, and efficiencies to meet objectives. Manages the performance, training, and evaluation of assigned staff. Maximizes department achievements by providing professional development. Participates in mandatory risk training and educates BU personnel on key risk programs and topics.
• Risk Oversight - Reviews BU Risk Reports that provide a comprehensive view of risks that impact the BU and clarify risks and control performance. Analyzes and summarizes trends in BU Risk Management, identifies Top and Emerging Risks and reports to BU Leadership. Manages the tracking and reporting of key indicators and limits to ensure timely escalation of breaches as required by the Risk Appetite Framework (RAF). Monitors and verifies the incorporation of Risk Limits into core BU processes.
• Risk Governance - Participates in relevant risk governance group meetings utilizing strong understanding of the BU operations, risks, controls and related laws and regulatory guidance. Provides feedback and coordinates on relevant governance documents to support BU activities and manage risk. Implements program policies, standards, and procedures.

• 5+ years of IT Control Testing experience.
• Knowledge of standard risk management or control frameworks such as COBIT, NIST ISO, FFIEC, and ITIL is required.
• Knowledge of financial sector regulatory practices for a large financial institution.
• Knowledge of FFIEC handbook is preferred.
• 5+ years' people leadership experience. Oversee recruitment, training and development of personnel.
• Advance written, verbal communication skills. Experience writing executive communications.
• updateing job aids, processes, procedures