Language Fluency: English (Required)

Work Shift:

1st shift (United States of America)

Job Grade:

112

Please review the following job description:

Engage with Corporate Cyber Security (CCS) leadership in its management of risks and controls as well as its execution of risk program requirements. Execute, facilitate and/or monitor execution of Audit & Regulatory Program requirements within CCS. Provide risk advice and influence to CCS. Aggregate, integrate, correlate, and report risks for CCS. Identify and opine on remediation to address weaknesses related to inadequate or failed processes, people, and systems, or external events and ensure effective remediation.

Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time. 

Provide expertise in the development and support of the Regulatory & Audit program including guiding the requirements review through partnership with functional areas throughout the enterprise, interpreting results and communicating key information from derived reporting. Coordinate various aspects of examination responses including artifact collection, drafting narratives, presentation creation, meeting organization, etc. to ensure compliance with requirements and guidelines. Collaborate with CCS and risk personnel to develop effective management responses and remediation plans to ensure that target dates are met and that residual risk is communicated and found acceptable by senior management. Consistently deliver and execute on the designated processes to effectively address Regulatory & Audit requirements. Provide expertise in translating regulatory requirements into practical, workable plans; prepare critical submission documentation and communicate with regulatory agencies, where applicable. Act as a point of contact between CCS and other functional areas. Maintain knowledge of and monitor changes in pertinent laws, regulations, and guidance to effectively interpret external developments and inform/educate internal stakeholders.

1. Provide risk advice and serve as risk Subject Matter Expert (SME) to CCS to promote and strengthen compliance with applicable regulations, policies, procedures and risk program requirements.

2. Partner with first and second line of defense teammates across assigned business areas in identifying, escalating and in remediating risk control gaps to ensure compliance with Enterprise Risk Management programs and policy.

3. Aggregate, report and communicate risk results to inform teammate stakeholders of the existing risk environment and escalate material concerns to CCS leaders and committees.

4. Monitor & report on emerging risks potentially impactful to CCS partners and Truist. 

5. Understand CCS goals, provide risk management expertise in strategic projects and seek engagement from appropriate Subject Matter Experts (SME's) and BURM peers for guidance and input.

6. Foster a spirit of continuous improvement and offer recommendations to refine and/or enhance cybersecurity and GCO processes as necessary.

7. Other activities and special projects, as deemed required.

Required Qualifications:

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

1. Bachelor’s degree in Accounting, Business, Finance or related field, or equivalent education and related training
2. 8 years of experience in a financial institution with emphasis on risk management or equivalent work experience and training
3. Strong knowledge of SOX and other industry-related regulatory requirements.

4. Strong knowledge of operational and other non-financial risks.

5. Ability to assess levels of adherence/execution and identify risk/control improvement opportunities in risk management principles/controls, broad based business practices, and Business Unit activities/processes.

6. Strong written and verbal skills

7. Solid problem-solving skills in complex environments
8. Excellent time management and organizational skills with the ability to operate without close supervision; Capable of handling multiple projects concurrently
9. Demonstrated proficiency in basic computer applications, such as Microsoft Office software products
10. Ability to travel, occasionally overnight

Preferred Qualifications:

1. Regulatory experience

2. Audit experience
3. Strong knowledge in field of cybersecurity

4. Certified in at least one of the following: PMI-RMP, CRISC, CISA, CGEIT, CIA and/or CISM

General Description of Available Benefits for Eligible Employees of Truist Financial Corporation: All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position. Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates. Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays. For more details on Truist’s generous benefit plans, please visit our Benefits site. Depending on the position and division, this job may also be eligible for Truist’s defined benefit pension plan, restricted stock units, and/or a deferred compensation plan. As you advance through the hiring process, you will also learn more about the specific benefits available for any non-temporary position for which you apply, based on full-time or part-time status, position, and division of work.