Non-Financial Risk Management – Americas IT Risk & IS Risk Lead - Director

Job Description:

Job Title Non-Financial Risk Management – Americas IT Risk & IS Risk Lead

Corporate Title Director

Location New York, NY

Overview

The Americas Information Technology (IT) Risk & Information Security (IS) Risk Lead to join the 2nd Line of Defense (2LoD), Non-Financial Risk Team. Non-Financial Risk Management (NFRM) defines the Non-Financial Risk Framework to appropriately identify, assess, mitigate, monitor, report and escalate non-financial risks, managing more than 90 non-financial risk types. The Risk and Control Assessment, Risk Appetite and Operational Resilience programs are the key components of Non-Financial Risk to enable effective risk profiling, monitoring and management of operational risks designed to assist Senior Management within the organization to determine whether their operational risks are being managed and controlled adequately.

What We Offer You

• A diverse and inclusive environment that embraces change, innovation, and collaboration

• A hybrid working model, allowing for in-office / work from home flexibility, generous vacation, personal and volunteer days

• Employee Resource Groups support an inclusive workplace for everyone and promote community engagement

• Competitive compensation packages including health and wellbeing benefits, retirement savings plans, parental leave, and family building benefits

• Educational resources, matching gift and volunteer programs

What You’ll Do

• Lead the NFRM IT Risk & IS Risk team for the Americas that oversees IT Risk, IS Risk, Business Continuity Management (BCM) Risk, Data & Records Risk, and Resiliency risk for the region

• Define and implement IT & IS Risk Framework & Policies

• Provide reporting into Risk Governance

• Monitor 1st Line of Defense (1LoD) adherence to 2LoD risk policies, external regulations and industry standards

• Set and monitor IT & IS Risk Appetite at Group, Division and Region levels

• Review and challenge 1LoD risk reduction plans (incl. adherence to 4 zone model)

How You’ll Lead

• Lead the team for the Americas to facilitate risk management across IT Risk, IS Risk, BCM Risk, Data & Records Risk, and Resiliency risk for the region

• Lead regulatory exams around IT Risk, IS Risk, BCM Risk, Data & Records Risk, and Resiliency risk for the region

• Lead the efforts performing independent Thematic and Targeted Reviews to identify new/emerging risks that may impact the risk position

• Lead the effort to identify operating conditions for the region to facilitate risk appetite monitoring

Skills You’ll Need

• Extensive experience in Operational Risk Management

• Expertise in risk and control assessment, risk appetite, and other operational risk framework elements

• Review and challenge 1LoD Threat Based Scenario Analysis and Penetration Testing (incl. opinion on external parties)

• Review and challenge the 1LoD RCA assessments

• Define 2LoD Control Objectives based on industry frameworks (IT: COBIT 2019, IS: ISO27001)

Skills That Will Help You Excel (5 Bullets)

• Certifications in the following: CRISC, CISM, CDPSE, AI Fundamentals, Cloud Fundaments, ClCISO

• Work in close collaboration with Global Frameworks team to facilitate integration of regional requirements into global framework and to ensure that industry best practices are integrated into framework

• Update policies and procedures for updated framework components

• Experience in leading cross-functional teams to execute transformational initiatives and embed business-as-usual processes

• Proven track record of presenting to senior management, internal audit and regulators

Expectations

It is the Bank’s expectation that employees hired into this role will work in the New York office in accordance with the Bank’s hybrid working model.

Deutsche Bank provides reasonable accommodations to candidates and employees with a substantiated need based on disability and/or religion.

The salary range for this position in New York, NY is $170,000 to $280,500. Actual salaries may be based on a number of factors including, but not limited to, a candidate’s skill set, experience, education, work location and other qualifications. Posted salary ranges do not include incentive compensation or any other type of remuneration.

Deutsche Bank Benefits

At Deutsche Bank, we recognize that our benefit programs have a profound impact on our colleagues. That’s why we are focused on providing benefits and perks that enable our colleagues to live authenti­cally and be their whole selves, at every stage of life. We provide access to physical, emotional, and financial wellness benefits that allow our colleagues to stay financially secure and strike balance between work and home. Click here to learn more!

Learn more about your life at Deutsche Bank through the eyes of our current employees: https://careers.db.com/life

The California Consumer Privacy Act outlines how companies can use personal information. If you are interested in receiving a copy of Deutsche Bank’s California Privacy Notice please email HR.Direct@DB.com.

#LI-HYBRID

#LI-ONSITE

We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively.

Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group.

We welcome applications from all people and promote a positive, fair and inclusive work environment.

Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status or other characteristics protected by law. Click these links to view Deutsche Bank’s Equal Opportunity Policy Statement and the following notices: EEOC Know Your Rights; Employee Rights and Responsibilities under the Family and Medical Leave Act; and Employee Polygraph Protection Act.