Senior Manager, Technology Risk Management

Your Opportunity

At Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us challenge the status quo and transform the finance industry together.

In Corporate Risk Management (CRM), our mission is to execute an independent and coordinated risk management program that supports delivery of predictable long-term financial and operational performance in order to produce successful client and shareholder outcomes.

In CRM’s Technology Risk Management (TRM) organization, we support CRM’s mission by managing information and technology risks to protect client assets, client information and firm assets.

Job Summary

Our Software Security and Penetration Testing (SSPT) team within TRM is seeking a technical and risk-focused Technology Risk Manager Senior.

This is an individual contributor role responsible for proactively identifying, measuring, assessing, and reporting risk exposure specific to the firm’s first line of defense Application Security and Software Development Life Cycle functions, and b) assessing ongoing adherence to policies, standards, controls, and best practices by conducting recurring and thematic tests and risk assessments of these functions.

Responsibilities Include

• Conduct oversight of first line of defense stakeholders, which includes collaborating with cybersecurity functions to align on risk management requirements, assess compliance with published policies, standards, controls, and best practices.
• Perform thematic testing, risk assessments, and conduct independent reporting where appropriate.
• Provide oversight of first line’s documented risks, controls, and issues.
• Partner with cybersecurity stakeholders throughout new initiatives and projects to assure compliance with internal policies and standards and consideration of best practices.
• Monitor cybersecurity risk reduction through metrics analysis and reporting.
• Work with internal auditors and regulators to articulate our application security and software development life cycle framework, execution progress, and how cybersecurity risks are managed at Schwab.
• Assist first line of defense with identification and mitigation strategies for areas of non-compliance with policies, standards, and controls.
• Build and maintain relationships across all three lines of defense, creating alignment regarding risks to the business units.
• Partner with risk, business, and technology leaders to identify key issues.
• Responsible for ad-hoc reporting and analysis, as requested by leadership, for assigned oversight projects.
• Additional projects and tasks may be included based on business needs and the regulatory environment.

What you have

To ensure that we fulfill our promise of challenging the status quo, this role has specific qualifications that successful candidates should have.

Required Qualifications :

• 5+ years of demonstratable experience in either cybersecurity, technology audit, or technology risk management.
• A firm understanding of and risk management experience with application security and software development life cycle.
• Ability to identify, assess, and prioritize potential risks.
• Understanding of risk assessment methodologies.
• Experience with reviewing and assessing compliance against cybersecurity policies, standards, and controls.
• Experience with data analysis and reporting.

Preferred Qualifications :

• Bachelor’s degree plus CISSP, CISM, CISA, CRISC, or equivalent certification.
• Experience in financial services industry.
• Ability to effectively communicate with technical and executive audiences, both oral and written.
• Strong interpersonal, analytical, problem-solving, influencing, prioritization, decision-making and conflict resolution skills.
• Experience working with partners at all levels and across functional lines, bringing diverse points of view together.
• Ability to thrive in a constantly evolving environment and meet critical commitments under pressure.

Why work for us?

Own Your Tomorrow embodies everything we do! We are committed to helping our employees ignite their potential and achieve their dreams.

Our employees get to play a central role in reinventing a multi-trillion-dollar industry, creating a better, more modern way to build and manage wealth.

Benefits : A competitive and flexible package designed to empower you for today and tomorrow. We offer a competitive and flexible package designed to help you make the most of your life at work and at home today and in the future.