Job Description
Description What Part Will You Play?
Change support and consultation
* Guide Change Owners in classifying change types and completing intake requirements (e.g., change impact, sub-risks)
* Provide expert consultation on risk assessment results, helping interpret implications and prioritize remediation activities
* Ensure intake and risk assessment steps are completed in a timely manner
Control design and documentation
* Advise Change Owners on developing and documenting control plans that align with enterprise expectations and regulatory standards
* Offer practical examples and expert guidance to ensure documentation is complete
* Support completion of control design and documentation in a timely manner
Control execution and implementation
* Support Change Owners in executing and evidencing controls effectively
* Partner with Change Owner and SMEs to remediate gaps identified by 2LoD
Verification and monitoring
* Provide review of controls for design and operating effectiveness prior to review by subject-matter experts
* Track adoption of control requirements and escalate where improvements are needed
Change enablement
* Act as a change enabler by embedding risk and control requirements early in the product development lifecycle and SLA processes
* Accelerate execution timelines by ensuring requirements are identified, communicated, and integrated into roadmaps
* Serve as a conduit between business units and 2LoD oversight, ensuring alignment on risk expectations and smooth handoffs
Reporting and Trend Analysis
* Track and report, with the help of tooling, on all risks and changes in a given domain or focus area
* Build expertise in domain/focus area on risks and controls for particularly business and identify trends and improvements where appropriate
What Are We Looking For in This Role?
Minimum Qualifications
* 6–10 years of experience in operational risk management, compliance, audit, or related functions in financial services or payments industries.
* Demonstrated track record of driving and implementing change in risk or control functions or related efforts in a business line
* Strong knowledge of risk frameworks, such as SOX, PCI-DSS, FFIEC, OCC guidelines, and global payments regulation
* Ability to translate risk and control requirements into business-friendly solutions
* Strong analytical skills and experience evaluating process effectiveness
* Excellent communication and influencing skills, with the ability to gain buy-in from diverse stakeholders
* Problem-solving mindset with a focus on pragmatic, sustainable solutions
* Ability to manage competing priorities in fast-paced, global environments