Director, IT Risk Management

Every day, Global Payments makes it possible for millions of people to move money between buyers and sellers using our payments solutions for credit, debit, prepaid and merchant services.  Our worldwide team helps over 3 million companies, more than 1,300 financial institutions and over 600 million cardholders grow with confidence and achieve amazing results.  We are driven by our passion for success and we are proud to deliver best-in-class payment technology and software solutions.  Join our dynamic team and make your mark on the payments technology landscape of tomorrow. 

Director, IT Risk

Summary of This Role

Manages the development, implementation, and enforcement of the IT Risk program, including but not limited to risk analysis, risk intake management, risk and issue management, and risk assessments.  Plans, directs, and administers all risk management and risk assessment functions related to technology risks. This may include establishing risk tolerance guidelines and policies and ensuring the risk exposure of the organization is within these guidelines. Develops processes for effective and efficient reporting and data analysis to minimize risk exposure. Consults on an ongoing basis on related issues with managers and executives. Ensures conformance with applicable laws and regulations and ensures regular training is conducted on compliance issues.

What Part Will You Play?

• Leads and mentors team members in their personal and professional development of IT risk management practices, with an emphasis on performing IT risk assessments and overseeing risk/issue management.  Utilizes technical skills or aptitude to identify and address issues in various technology stacks, features, and/or components.

• Controls, delivers and manages IT risk activities across the company. Leads risk assessments, including the identification, examination and analysis of IT applications, processes, and systems, and their overall mitigation control effectiveness.  Directs and participates in the IT risk assessment roadmap, outlining technology topics and areas of the company where quarterly risk assessment reviews are needed.  In doing so, identifies gaps, potential emerging threats, potential financial exposure and client impact, and collaborates with stakeholders in their creation of remediation action plans.  

• Leads and performs complex risk assessment initiatives such as Single Point of Failure (SPOF) assessments as part of the merger and acquisition process.  May require international travel.

• Enforces and administers an established and centralized risk management repository related to compliance, conformance and quantified key risks, within risk tolerance guidelines and with defined mitigation measures.

• Develops and provides business unit, executive, and Board of Director IT risk reporting that meets regulatory requirements and assists internal risk-based decision making via governance presentations. Presents effective and efficient reporting updates on IT risk priorities and procedures. Monitors significant risks to ensure they are actively managed and reported.

• Designs, develops, implements and continuously improves IT risk procedures, practices, processes and methodologies to maintain a proactive, risk-based compliance oversight program. Anticipates how the organization must adapt to changes in the industry to sustain competitive advantage.

• Develops operational risk policies and programs based on global regulatory guidelines, requirements and best practices related to technology industry standards. Evaluates changes to requirements and best practices to appropriately incorporate into policies and programs. Assesses, monitors and verifies implementation of IT risk management processes.

• Not an exhaustive list; other duties as assigned; additional working hours when necessary; some travel

What Are We Looking For in This Role?

Minimum Qualifications

Bachelor's Degree

• Relevant Experience or Degree in: related field of study from an accredited university is required; however, relevant experience in lieu of a degree may be considered.

• Typically a minimum of 10 years

• Related professional experience including a minimum of 5-6 years experience in a managerial position.

• Strong technical skill set or strong technical aptitude

• Assertive work ethic; demonstrates a passion for both the work and people - leading/developing others; strong multi-tasking skills; strong analytical skills; strong networking skills; strong communication skills, verbal and written; strong presentation skills for executive management and audit related engagements

Preferred Qualifications

• Master's Degree

• Related field of study from an accredited university.

• Prior Global Payments, payment or technology industry experience is preferred.

• Any preferred:  PCI Professional (PCIP), Systems Security Certified Practitioner (SSCP), CISSP (Certified Information Systems Security Professional), AWS Cloud Practitioner, Certified in Risk and Information Systems Control (CRISC), Certified Information System Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified in the Governance of Enterprise IT (CGEIT), GRC Professional (GRCP)

Global Payments Inc. is an equal opportunity employer. Global Payments provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, sex (including pregnancy), national origin, ancestry, age, marital status, sexual orientation, gender identity or expression, disability, veteran status, genetic information or any other basis protected by law. If you wish to request reasonable accommodations related to applying for employment or provide feedback about the accessibility of this website, please contact jobs@globalpay.com.