Data Management Subject Matter Expert (SME) - Lead

Americas Risk Department

The Americas Risk Department, as a second line of defense organization, provides common risk management oversight and services to all businesses and legal entities across Mizuho U.S. Operations (MUSO). Effectively managing risk on a consistent and holistic basis is critical to Mizuho's success in the Americas and in meeting evolving regulatory expectations. The Non-Financial Risk (NFR) Team has built a repeatable and sustainable operational risk framework across the enterprise and is now expanding to include a dedicated focus on Data Management.

Position: Data Management Lead (Operational Risk Management)

We are seeking an experienced Data Management SME to join the NFR team as a key contributor to the second line of defense oversight of the bank's Data Management risk. In this role, you will provide independent review and challenge of first line Data Management practices-including data governance, data quality, metadata management, and data architecture-ensuring alignment with internal policies, regulatory expectations (e.g., BCBS 239, GDPR, CCPA), and industry standards (e.g., DAMA-DMBOK, DCAM, DMM).

• Provide independent oversight of the enterprise Data Management framework, challenging the first line's implementation of data governance, data quality controls, metadata standards, data lineage, and architecture practices.
  
• Review and challenge the first line's self-assessments (e.g., RCSAs), issue management, risk acceptances, and process maps to ensure proper identification and treatment of data-related risks.
  
• Evaluate and challenge proposed changes or enhancements to data-related policies and standards; confirm alignment with applicable regulations and industry frameworks.
  
• Conduct independent deep dives and thematic reviews on Data Management risk areas (e.g., data quality monitoring, lineage tracking, metadata integrity) and track the remediation of identified gaps.
  
• Escalate significant or unresolved data-related risks to senior leadership and governance committees to ensure transparency and prompt corrective action.
  

• Execute continuous risk monitoring activities across the Data Management domain using metrics, KRIs, issues, incidents, and trend analysis to assess the effectiveness of the control environment.
  
• Review the design and operational effectiveness of KRIs and related metrics; assess breach thresholds and evaluate escalation protocols.
  
• Independently assess the impact of significant data-related risk events and collaborate with NFR leadership to determine root causes and systemic implications.
  
• Recommend enhancements to the Data Management control framework to address identified gaps, emerging risks, or weaknesses.
  
• Validate that remediation actions taken by the first line effectively address root causes and comply with regulatory expectations.
  

• Represent NFR in data-related governance forums, committees, and working groups, providing an independent perspective and documenting observations, recommendations, and concerns.
  
• Support preparations for internal and external examinations (e.g., by regulators or internal audit) and contribute to the development of responses and remediation strategies related to Data Management.
  
• Advise risk and business stakeholders on emerging regulatory expectations and industry trends impacting the Data Management landscape.
  
• Prepare and deliver clear, concise reporting and presentations for senior management and regulatory stakeholders on Data Management risks, findings, and oversight outcomes.
  

• Partner with other teams (e.g., Compliance, Legal, IT Risk) to provide a cohesive view of data risk and ensure consistent application of oversight standards across risk domains.
  
• Collaborate with NFR colleagues to integrate data-related risks into broader non-financial risk initiatives and thematic reviews.
  
• Coordinate with first line Data Governance and Technology teams to clarify risk ownership, challenge risk mitigation plans, and support maturity uplift efforts while maintaining independent oversight.
  
• Monitor emerging data technologies, evolving regulatory requirements, and industry best practices to advise on potential impacts to the bank's Data Management controls.
  
• Champion a culture of data risk awareness by providing constructive feedback, coaching first line teams, and sharing insights on best practices and emerging data risk trends.
  

• Bachelor's or Master's degree in Data Management, Information Systems, Risk Management, Computer Science, or a related discipline.
  
• Minimum of 5+ years of experience in Data Management, Data Governance, or Information Risk within financial services.
  
• Direct experience in a second line, audit, compliance, or oversight function is strongly preferred.
  
• Strong knowledge of risk management processes, data control environments, and regulatory frameworks applicable to data (e.g., BCBS 239, GDPR, CCPA).
  
• Experience performing credible challenge and risk-based reviews of first line processes and controls.
  
• Certified Data Management Professional (CDMP), DAMA certification, or equivalent data governance credentials are highly desirable.
  
• Strong critical thinking, analytical, and risk assessment capabilities.
  
• Excellent verbal and written communication skills, with the ability to deliver technical content to senior stakeholders in a clear, business-oriented manner.
  
• Proven ability to build relationships and influence across functions while maintaining independence of judgment.
  
• Familiarity with KRI design, risk appetite metrics, and risk monitoring tools.
  
• Advanced proficiency in Microsoft Excel and PowerPoint for risk reporting and executive communications.
  
• High ethical standards, sound judgment, and a commitment to continuous improvement.