Enterprise Technology Risk Management, Assistant Vice President

Who we are looking for

We are looking for an experienced Risk Management and Controls Assurance, Assistant Vice President to help maintain and mature our Technology Risk Management Programs.

Our second line technology risk function is vital to State Street to ensure Information Technology risks and controls are well managed helping our business to deliver applications and services to our clients. We’re supporting the company’s digital transformation and expanding business capabilities using industry best practices and advanced technologies such as cloud, artificial intelligence alongside best in class Information Technology Service Management. This role is based out of Quincy, Massachusetts.

Due to the role requirements this job needs to be performed primarily in the office with some flex work opportunities available.

Why this role is important to us

The team you will be joining plays an important role in the overall success of the organization. Across the globe, institutional investors rely on us to help them manage risk, respond to challenges, and drive performance and profitability; regulators rely upon us to provide assurance that the bank operates in a manner that is compliant with key banking regulations to properly manage risks to the company and the global financial systems. To make that happen we need teams like yours to help navigate employees and the organization as a whole. In your role, you will help us build resilience and execute day to day deliverables at our best. Join us if making your mark in the financial services industry from day one is a challenge you are up for.

What you will be responsible for

As an Enterprise Technology Risk Management, Assistant Vice President you will:

• Engage with First Line technology activities and lead technology and cyber risk assessments focusing on Cyber Incident Management Threat Intelligence, Network Security & Configuration, SIEM, Security Operations Center (SOC).
• Identify gaps and perform Technology Risk Assessments across the technology and cyber process taxonomy inclusive of policies, standards, processes, and controls for security operations.
• Identify, document, communicate and identify ownership of gaps and risks.
• Monitor gap remediations to closure, including advisory items.
• Review and assess KRI/KPI metrics for appropriate coverage and validity.
• Document and follow-through till closure of real time review and challenge executed in risk committees.
• Validate assigned regulatory findings, select first line self-identified issues.
• Identify efficiencies and strengthen the process and control environment.
• Support control assurance to include design and operating effectiveness.
• Assist in driving maturity of assurance practices through training, mentoring and collaborating.
• Provide transparency into work progress through regular status updates.
• Lead junior staff in designated risk management and compliance projects.
• Learn new and complex environments, processes, and technologies.
• Stay abreast of industry developments including but not limited to changes in regulations.
• Coordinate or lead various ad-hoc requests, projects.
• Develop overall technology / product / business unit knowledge of State Street Corporation.

What we value

These skills will help you succeed in this role

• Experience in managing small to medium initiatives.
• Able to effectively balance multiple tasks.
• Able to work both collaboratively and independently.
• Aptitude for researching and identifying emerging technology risks including learning new and complex environments, processes, and technologies.
• Excellent written and spoken communication.
• Self-learning and training to ensure skills and knowledge are in line with responsibilities.

Education & Preferred Qualifications

• Bachelor’s degree in Computer Science/Information Systems, Risk Management or a related field, or equivalent experience
• 5+ years of experience with IT risk, audit or technology operations
• Professional designation a plus (e.g. CISA, CISM, CISSP, CRISC)
• Experience with supporting various Security Architectures, Defense in Depth Strategy, Cloud environments (AWS, Azure, GCP, OCI), Cybersecurity tools
• Knowledge of IT frameworks such as NIST, ISO, COBIT, ITIL a plus
• Familiarity in Information Security Frameworks including the ISO 27000 family, NIST, Cloud CCM
• Proficient in Microsoft Office suite including data analytics in Excel and/or Access
• Experience with IT GRC platforms (Archer), Splunk, EDR, SIEM, Network Management tools
• A strong understanding of Technology and Cyber Risk Management to influence leaders on the need to embrace risk reduction initiatives and controls.
• Strong understanding of control frameworks.

Additional requirements

While majority of the time you will work from your primary location, some domestic and international travel may be required to a variety of locations where State Street operates. 

Are you the right candidate? Yes!

We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them. Although each vacancy details what we are looking for, we don’t necessarily need you to fulfil all of them when applying. If you like change and innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit.

About State Street

What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we’re making our mark on the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.

Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks. You’ll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.

Inclusion, Diversity and Social Responsibility. We truly believe our employees’ diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you.

State Street is an equal opportunity and affirmative action employer.

Discover more at StateStreet.com/careers

Salary Range:

The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.

Job Application Disclosure:

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

State Street's Speak Up Line