Technology Risk Specialist

Overview

The Technology Risk Specialist is responsible for providing oversight, consulting and risk management assessment / support, and reporting functions relative to Comerica's Lines of Business (LOBs) and other divisions. The role utilizes specialized skills to engage with business partners and shared services stakeholders to drive awareness and compliance with the bank's enterprise risk management framework, policies and standards; ensure independent risk assessments, oversight and consulting support to promote proactive risk identification, mitigation and remediation of risk, and protect customers' and the Bank's data and other assets. Geographical locations may include any site where IT activities are occurring.

Position Responsibilities

• Execute Second Line of Defense (SLOD) risk management functions relative to Technology Risk and Information Risk / Security risk management by working with LOBs and other bank stakeholders to risk review areas and related processes, providing credible challenge regarding risk assessments, controls, strategic direction and other activities pertaining to the LOBs and Comerica.
• Ensure awareness of technology and information risk / security risks in the LOBs / Comerica and provide consulting support and direction to drive proactive risk identification, mitigation / remediation, and accurate monitoring and reporting.
• Stay informed about current technology, information risk / security risk management top line and emerging risks, industry best practices, controls and solutions.
• Support development / documentation of required SLOD risk management functions / routines and controls, including deriving accurate and complete technology risk and information risk / security profiles.
• Provide risk management reporting of noted risks, support mitigation / remediation plans, and assist in the execution of SLOD functions with business partners.
• Prepare related reporting to ensure enterprise / management / board level awareness of Technology Risk, Information Risk / Security Risk Management profiles at aggregate and dis-aggregate levels.
• Engage with Bank stakeholders / divisions to ensure awareness, documentation, and accurate reporting of identified and potential risks (top line and emerging risks) impacting Comerica LOBs / functions from a Technology Risk, Information Risk / Security Risk perspective.
• Execute SLOD reviews and provide credible challenge to complete regulatory risk assessments in compliance with guidelines / requirements and / or certifications (e.g., PCI DSS, FFIEC, State Certifications).
• Act as a Subject Matter Expert in technology and information risk topics to support all SLOD functions, assessments, reviews, audits and related responsibilities of the second line of defense.

Position Qualifications

Licenses & Certifications

Work Category & Hours

Salary

To Be Determined Based on Individual Experience

About Comerica

Comerica is an Equal Opportunity Employer – disability / veteran.

Comerica Incorporated (NYSE : CMA) is a financial services company headquartered in Dallas, Texas, and strategically aligned into three major business segments : Commercial Bank, Retail Bank, and Wealth Management. Comerica Bank locations can be found in Arizona, California, Florida and Michigan, with select businesses operating in several other states, as well as in Canada and Mexico.

Upon offer, Comerica conducts a comprehensive background and fingerprint check. Your fingerprints will be used to check the criminal history records of the FBI and may be enrolled in the FBI's RAP Back service.

J-18808-Ljbffr