Design and Assessment VP
Company: MUFG
Location: Dallas
Posted on: January 26, 2023
|
|
Job Description:
Do you want your voice heard and your actions to count?Discover
your opportunity with Mitsubishi UFJ Financial Group (MUFG), the
6th largest financial group in the world. Across the globe, we're
160,000 colleagues, striving to make a difference for every client,
organization, and community we serve. We stand for our values,
building long-term relationships, serving society, and fostering
shared and sustainable growth for a better world.With a vision to
be the world's most trusted financial group, it's part of our
culture to put people first, listen to new and diverse ideas and
collaborate toward greater innovation, speed and agility. This
means investing in talent, technologies, and tools that empower you
to own your career.Join MUFG, where being inspired is expected and
making a meaningful impact is rewarded.This is a hybrid position.
The selected colleague will work at an MUFG office an average of
two to three days per week with the remainder worked remotely.In
this role, you will focus on internal and external compliance
requirements, activities, and deliverables to ensure that
Operations & Technology meets regulatory and audit milestones.
Responsibilities include engaging with regulators and/or leaders
from other functions, including audit and compliance, and
collaborating with Operations & Technology colleagues to prepare or
review content prior to submission and manage follow-up actions;
establishing processes, templates, and stakeholder matrices for
activities; creating roadmaps aligned to recurring and ad hoc
milestones; ensuring stakeholders execute appropriately and meet
milestones on time; tracking, escalating, and/or remediating risks
and issues; and developing and executing executive-level
reporting.This role is a key member of a first line risk and
controls team dedicated to the transformation program. You will
work with other team members to partner with the transformation
team to design, implement, and assess key risk and control elements
included in the transformation technology projects. The team is
responsible for advising and assessing the technology risk and
control environment incorporated into tech projects, identifying
improvement opportunities, reporting and monitoring key risk
metrics, and providing governance with respect to all risk and
control matters.RESPONSIBILITIESDrive implementation and
sustainment of information technology and information security
control frameworkEvaluate and benchmark technology process
execution against outstanding standards (COBIT, NIST 800-53,
Federal Financial Institutions Examination Council (FFIEC)
etc.)Manage the execution of front line controls self-assurance and
risk assessment activities (ad hoc controls review, business
process management (BPM), risk and control self-assessments (RCSA))
and independent risk and audit activities as neededConsult on
controls design and efficiency with technology partners in support
of their commitments to align with all applicable laws,
regulations, and internal policies and proceduresDrive risk
culture; influence self-identification and disclosure of control
self-assurance gapsEnsure gaps are addressed via remediation plans
that adhere to issues management mandates: timely issue and
corrective action submission, accurate root cause identification,
corrective action monitoring, on time closure, no failed
validations, and no repeat issueMonitor and evaluate emerging risk,
internal operational trends, and external risk events for potential
impact to control environmentPrepare risk analysis and risk
mitigation recommendationsSupport technology risk governance by
ensuring our control environment performance is reported and has
risk management plans in place for critical issuesSupport the
preparation of risk and controls governance materials as
neededDesign and assist in implementation of key controls, industry
standards, policies, and/or procedures within the transformation
technology environmentAssist in assessment of risk and control
alignment with specific technology control frameworks and the
internal risk, threat, and control libraryPartner with
transformation to continuously improve the overall risk posture of
delivered features, functions, and capabilitiesParticipate in the
development, design, and implementation of control testing and risk
monitoring programsCollaborate with business partners to facilitate
remediation of identified risk and control issuesEngage with
multiple stakeholders and collaborate with key business partners,
risk management. and internal auditQUALIFICATIONSUndergraduate
degree plus 6+ years in technology, information security,
operational risk management, or related rolesPreferred:
professional certifications such as Certified Information System
Auditor (CISA), Certified in Risk and Information Systems Control
(CRISC), Certified Information Systems Manager (CISM), Certified in
the Governance of Enterprise Information Technology (CGEIT), CSX,
Certified Information Systems Security Professional (CISSP),
Information Technology Infrastructure Library (ITIL), Control
Objectives for Information and Related Technology (COBIT),
etc.Cloud Service Provider (CSP) certifications desired (i.e.
Amazon Web Services (AWS) Cloud Practitioner, AWS Specialty -
Security), relevant professional certifications a plus6-8 years
experience in IT or operations risk and control or audit function6
plus years of experience in information technology, information
security, and/or operational risk management, (Includes operations,
operational risk management, compliance, audit, and third party
risk management within technology and/or information security), or
a combination thereof, or other highly regulated
environmentExperience with critical data elements (CDEs) and data
lineageUnderstanding of data quality, data quality monitoring, and
data maturity modelsKnowledge and implementation experience with
industry best practices and frameworks such as: Committee of
Sponsoring Organizations of the Treadway Commission (COSO), COBIT,
National Institute of Standards and Technology (NIST)-800-53,
Cybersecurity Horizontal Reviews, and ITIL in complex
environmentKnowledge of critical domestic and international banking
regulations (Reg W, Basel II, Federal Financial Institutions
Examination Council (FFIEC), General Data Protection Regulation
(GDPR), etc.) and experience with enforcement agencies oversight
activities (regulatory examinations, matters requiring attention
(MRAs), consent orders, etc.) within a global systemically
important financial institution's information technology and
information security environmentsExperience with executing
technology and/or information security risk assessment/testing
methodologies, evaluating the adequacy and efficiency of internal
controls; and identifying issues resulting from internal and/or
external compliance examinationsExperience with process
documentation, risk and control assessments, and
designing/executing IT General Controls (ITGC) test
scriptsUnderstanding of the regulatory environment and regulations
related to technology risk, and Office of the Comptroller of the
Currency (OCC) and Federal Reserve Board (FRB) expectationsCombined
experience in IT external audit, IT internal audit, and technology
risk and/or ITGC assessment for compliance with Sarbanes-Oxley
(SOX)The typical base pay range for this role is between $115K -
$145K depending on job-related knowledge, skills, experience and
location. This role may also be eligible for certain discretionary
performance-based bonus and/or incentive compensation.
Additionally, our Total Rewards program provides colleagues with a
competitive benefits package (in accordance with the eligibility
requirements and respective terms of each) that includes
comprehensive health and wellness benefits, retirement plans,
educational assistance and training programs, income replacement
for qualified employees with disabilities, paid maternity and
parental bonding leave, and paid vacation, sick days, and
holidays.The above statements are intended to describe the general
nature and level of work being performed. They are not intended to
be construed as an exhaustive list of all responsibilities duties
and skills required of personnel so classified.We are proud to be
an Equal Opportunity/Affirmative Action Employer and committed to
leveraging the diverse backgrounds, perspectives and experience of
our workforce to create opportunities for our colleagues and our
business. We do not discriminate on the basis of race, color,
national origin, religion, gender expression, gender identity, sex,
age, ancestry, marital status, protected veteran and military
status, disability, medical condition, sexual orientation, genetic
information, or any other status of an individual or that
individual's associates or relatives that is protected under
applicable federal, state, or local law.#LI-Hybrid
Keywords: MUFG, Dallas , Design and Assessment VP, Accounting, Auditing , Dallas, Texas
Click
here to apply!
|