Enterprise Operational Risk - Risk Management - Director (Technology Risk Oversight)

Enterprise Operational Risk - Risk Management - Director (Technology Risk Oversight)

Vacancy expired!

Job Description

In this compelling leadership position, you will lead efforts to develop and implement strategic plans for assessing and identifying potential risks that may threaten our reputation, safety, security, and/or financial success, as well as work with leadership to communicate and collaborate with key stakeholders across the enterprise, and understand business objectives.

Under the integrated technology function within Enterprise Operational Risk Management, the Director (Technology Risk Oversight) will strategically manage and direct a team of risk professionals to effectively coordinate, communicate, and drive governance, risk management activities, and project management across Fannie Mae's second-line of defense Data, Technology, Cybersecurity, and Resiliency (DTCR) Risk Management program. The incumbent will primarily direct effective oversight and challenge for Technology Infrastructure and Application operations and management. This position will also collaborate with peer DTCR Directors to deliver cross-functional, end-to-end risk oversight, identification, assessment, and monitoring across all technology related domain areas, including cyber security, business resiliency and data management.

The Enterprise Operational Risk - Risk Management - Director (Technology Risk Oversight) will provide effective oversight and challenge of risk management activities. As the Technology domain risk lead (with a focus on technology infrastructure and application operations), you will be responsible for cross-functional technology-related initiatives for risk oversight, identification, assessment, and monitoring. The role will offer you the flexibility to make each day your own, while working alongside people who care so that you can deliver on the following responsibilities:

• Direct the team responsible for determining business areas that pose potential technology risks to the enterprise, and assist leadership with developing a process to identify threats (e.g. leveraging an effective risk management framework)
• Direct team efforts to evaluate the impact of proposed technology risks to the enterprise.
• Oversee information monitoring and processes to reduce risk using rigorous analysis, and may assist with implementing updates and changes to the process.
• Develop and maintain strong relationships with risk partners and other second-line enterprise risk management functions to drive meaningful technology-risk reductions and escalation of risks, as needed. Direct efforts to document resolutions and control guidelines.
• Partner with second-line risk management functions to help ensure proper execution of established frameworks, policies, standards, strategies (including risk appetite, RCSA). Leverage knowledge of the mortgage industry, mortgage product types and mortgage securitization to ensure effective management of risk.
• Actively identify, assess, respond and escalate risks associated with Technology Infrastructure and Applications, as appropriate. Understand, adhere to and bolster Technology Infrastructure and Applications risk governance across first-line activities including the implementation of the three lines of defense model
• Drive activities designed to comprehensively assess risks and gather insights from issues and events across technology business areas to provide an aggregated risk assessment. Oversees internal governance processes (includes reporting, issue management, policy/standard review, risk identification, risk assessments, and risk monitoring).
• Oversee activities by which risk owners identify new, material, emerging, or changing Technology Infrastructure and Application risks stemming from business activities or external events. Activities include Risk and Control Self-Assessments (RCSA), risk opinions for Key Business Decisions (KBD), and Material Risk Identification in accordance with policies and standards.
• Confer with first-line management and risk partners to assess technology capabilities, analyzing processes, and risk exposure to drive the implementation of appropriate risk management controls. Lead presentations and workshop sessions on Technology Infrastructure and Applications risk management activities, process analysis, risk identification, assessment, control, and mitigation.
• Where required by internal policies or external agencies, develop management, regulatory and internal reporting and monitor risk metrics/indicators. Including, developing and presenting risk perspectives on emerging, changing or out-of-appetite risk profiles for senior management audiences. Inform policies, standards and procedures to maximize effective management of risks related to Technology Infrastructure and Application operations and minimize risk exposure
• Lead team activities to confer with business unit staff by scoping business problems, analyzing processes, risk exposure and sharing lessons learned. Identify problem drivers and reinforce operational procedures with appropriate internal controls.
• Identify gaps and inform solutions identified resulting from inadequate internal processes, systems or human errors associated with Technology Infrastructure and Applications
• Mentor and coach a team of professionals and provide performance feedback.
• Institute and maintain measures to help ensure the team's high quality delivery of risk management services and work products.

Qualifications

• Bachelor's Degree or equivalent required / Masters preferred; IT/IS/Computer Science preferred

• 10+ years of related Technology Infrastructure and Application operations and risk management experience; 15+ years preferred Relevant work within a financial services, capital markets, insurance organization or in an operational risk role within a regulatory organization

• Strong technology operations and risk management knowledge/skills in disciplines such as IT architecture, cloud computing and governance, agile development, secure development operations, IT asset management configuration and change management, production support, networking, systems development, and/or lifecycle development.
• Demonstrated ability to function in a similar role within a large and complex organization
• Excellent communication, team-building, relationship management and interpersonal skills
• Excellent project management skills; self-motivated

Additional Information

The future is what you make it to be. Discover compelling opportunities at Fanniemae.com/careers.

Fannie Mae is an Equal Opportunity Employer, which means we are committed to fostering a diverse and inclusive workplace. All qualified applicants will receive consideration for employment without regard to race, religion, national origin, gender, gender identity, sexual orientation, personal appearance, protected veteran status, disability, age, or other legally protected status. For individuals with disabilities who would like to request an accommodation in the application process, email us at [emailprotected]