Lead - Technology Risk Controls (Remediation)

The Information Technology organization is the technological foundation of our business and works in collaboration with our partners from across the company. The team drives technology and digital transformation, partners with business leaders to design and execute new strategies through IT and operations services and ensures the necessary IT risk management and security measures are in place and aligned with enterprise architecture standards and principles.

About The Role

The Lead – Technology Controls Remediation will be responsible to assess, respond to, and monitor Technology Controls deficiencies. This role will provide coverage for regulatory issues with our technology partners and assist with regulatory exams, requests, and meetings.

Responsibilities

• Manages the remediation of technology controls deficiencies identified either through self identified processes or through regulatory reviews.
• Assessing and monitoring control deficiencies as change initiatives progress.
• Support regulatory considerations including but are not limited to SOX, SOC1/2, and other attest requirements.
• Ensure control issue remediation processes are designed to ensure that the underlying risk to the organization is being managed.
• Develops strong relationships and interacts with Enterprise Risk Management Senior Leadership, Business Unit Heads, Regional Leadership, Internal Audit, External Regulators, Legal and Compliance, Privacy, and IT teams to coordinate activities.
• Manages escalation of issues relating to delays or obstacles in enabling and maintaining a strong Technology Controls environment.
• Develops executive-level IT controls presentations to describe program approach and status and consults on key technology controls.
• Supports Technology Controls awareness and training programs to encourage the use of appropriate information practices by Corebridge staff, contractors, service providers, third party and offshore vendors.

Skills and Qualifications

• 10 years of experience within technology risk, control and governance, Internal Audit or SOX disciplines with increasing responsibility and work complexity to include progressive management roles in large, complex organizations.
• Strong expertise in collaboration, facilitation, and coordination of the mitigation of risks.
• Adept at navigating governance structures.
• Experience raising awareness of information and technology controls throughout an organization.
• Experience working with Financial Industry regulators and regulations preferred (e.g., SEC, PCAOB).
• Knowledge of information and technology controls management policies, methods, standards, tools, and processes (e.g., ISO, COSO, COBIT, NIST) as well as knowledge of compliance, legal, internal / external audit & regulatory requirements.
• Experience in the banking, financial services, or insurance industry is required.
• Demonstrate effective leadership skills.
• Understanding of metrics development and reporting. Strong problem solving and program execution skills. Ability to prioritize and drive difficult decisions among business partners.
• Ability to solve complex controls issues that span legal, compliance and regulatory obligations across various lines of business and shared service areas of the company.
• Strong interpersonal and oral/written communication skills, able to build relationships with people at all levels. Experience developing and delivering presentations to all levels of management. Strong ability to develop, lead and manage a professional staff.
• Maintains high standards, empowers others, and holds them accountable while actively engaging and inspiring them at the same time.
• Strong negotiation and influencing skills to align interests across diverse constituencies, including suppliers, internal business partners, and regulators.
• Drives for results — shows urgency and takes initiative, doesn’t let problem situations linger, and ensures service excellence and efficiency objectives are met.
• Ability to work under pressure and meet close deadlines.
• Bachelor’s degree or equivalent combination of education and related experience.