Job Detail

GCO Senior Risk Advisor I (Cybersecurity Technology) - Truist
Raleigh, NC
Posted: Sep 26, 2024 03:52

Job Description

The position is described below. If you want to apply, click the Apply Now button at the top or bottom of this page. After you click Apply Now and complete your application, you'll be invited to create a profile, which will let you see your application status and any communications. If you already have a profile with us, you can log in to check status.

Need Help? (https://www.brainshark.com/bbandt/careers-site-faq)

If you have a disability and need assistance with the application, you can request a reasonable accommodation. Send an email to Accessibility (careers@truist.com?subject=Accommodation%20request)

(accommodation requests only; other inquiries won't receive a response).

Regular or Temporary:

Regular

Language Fluency: English (Required)

Work Shift:

1st shift (United States of America)

Please review the following job description:

We are a financial services company offering a wide array of opportunities across many functions. Our purpose is to inspire and build better lives and communities. This is our why. This is our reason for being. It guides us, motivates us, and influences everything we do.

The Enterprise Technology Governance and Controls team is a first line risk management function that manages risk arising from the exposures and business activities within Business Units.

We are looking for a results-driven technology risk management expert who is looking to grow their career with us. Our team works together to achieve amazing results, we share a sense of purpose and belonging that goes beyond the day-to-day, and we have a passion for applying sound risk practices to enable our business units to inspire and build better lives and communities.

The Cybersecurity Risk Advisor is responsible for providing first line of defense end-to-end risk management support within the Enterprise Technology Governance and Control Cyber Risk Advisor Team. The risk management services provided include identifying existing and emerging risks, evaluating the magnitude of such risks and related business ramifications, participation in managing the mitigation or acceptance of the identified risks, and development and implementation of suitable monitoring processes related to identified risks.

The ideal candidate will have extensive formal risk management experience coupled with a foundational understanding of cybersecurity to include Cyber Operations, Cyber Technology, Vulnerability Management, Data Protection, and Identify and Access Management.

Partner with the broader Cyber Risk Advisor Team and aligned Cybersecurity Capability Areas to:

  • Influence, advise, and challenge the actions to identify, escalate, and remediate risk.

  • Work with the aligned Cybersecurity team to properly document identified risks, develop remediation plans, monitor risk remediation, and document closure to assure successful validation/closure.

  • Review materials and prepare the team to participate in working groups and committee meetings (Enterprise Technology and Operations Risk Committee, Regulatory Continuous Monitoring, etc.).

  • Establish and maintain working relationships with line of business leaders and second line, third line of defense risk partners.

  • Evaluate control weakness or key indicators exceeding risk limits and perform root cause analysis.

  • Identify and monitor risk governance exceptions, issues, controls, and assessments across the aligned cybersecurity capability area to develop an aggregate risk view.

  • Communicate and present materials in various forums.

  • Prepare for and coordinate regulatory exams and audits and associated responses.

  • Promote, influence and challenge risk management expectations.

  • Provide appropriate training and awareness to promote positive risk culture.

  • Provide regular reporting to drive awareness of holistic risk exposure.

Required Qualifications:

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

  • Bachelor's degree in Accounting, Business, Finance or related field, or equivalent education and related training.

  • 8+ years of experience in a financial institution with emphasis on risk management or equivalent work experience and training.

  • Strong knowledge of SOX and other industry-related regulatory requirements.

  • Strong knowledge of operational and other non-financial risks.

  • Ability to assess levels of adherence/execution and identify risk/control improvement opportunities in risk management principles/controls, broad based business practices, and Business Unit activities/processes.

  • Strong written and verbal skills.

  • Solid problem solving skills in complex environments.

  • Excellent time management and organizational skills with the ability to operate without close supervision; Capable of handling multiple projects concurrently.

  • Demonstrated proficiency in basic computer applications, such as Microsoft Office software products.

  • Ability to travel, occasionally overnight

Preferred Qualifications:

  • Demonstrated experience in formal risk roles (e.g., Business Unit Risk Management, Technology Risk Oversight, Audit)

  • Cyber Governance, Risk, and Compliance experience

  • Risk-related internal or industry certifications (e.g., GRCP)

  • Cyber Security certifications (e.g., CISM, CISSP)

  • Foundational experience in cybersecurity

  • Proficiency and knowledge in ARCHER GRC Platform is a plus

  • Comfortable operating in an environment with a high degree of change

  • Previous banking or relevant experience in highly regulated industries

  • Broad risk and regulatory knowledge with an emphasis on: Credit, Market, Liquidity, Compliance, Operational, Reputation and Strategic Risks.

  • Strong leadership and communication skills.

  • Ability to think critically and strategically, multi-task, and drive change.

  • Strong quantitative, governance, and analytic abilities.

General Description of Available Benefits for Eligible Employees of Truist Financial Corporation: All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position. Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates. Teammates also receive no

. Depending on the position and division, this job may also be eligible for Truist's defined benefit pension plan, restricted stock units, and/or a deferred compensation plan. As you advance through the hiring process, you will also learn more about the specific benefits available for any non-temporary position for which you apply, based on full-time or part-time status, position, and division of work.

Truist supports a diverse workforce and is an Equal Opportunity Employer that does not discriminate against individuals on the basis of race, gender, color, religion, citizenship or national origin, age, sexual orientation, gender identity, disability, veteran status or other classification protected by law. Truist is a Drug Free Workplace.

EEO is the Law (https://www.eeoc.gov/sites/default/files/2022-10/EEOC_KnowYourRights_screen_reader_10_20.pdf)

Pay Transparency Nondiscrimination Provision (https://www.dol.gov/sites/dolgov/files/OFCCP/pdf/pay-transp_%20English_formattedESQA508c.pdf)

E-Verify (https://e-verify.uscis.gov/web/media/resourcesContents/E-Verify_Participation_Poster_ES.pdf)



Job Detail

  • Location:
    Raleigh, NC
  • Company:

Company Overview

Truist

Raleigh, NC