Senior Technology Control Manager (SVP)-Hybrid

The Engineering and Architecture Practice (EAP) organization is responsible for defining and developing best-of-breed technology solutions. This includes Cloud, automated controls, Cyber Security, and developer capabilities.  The EAP In Business Senior Technology Risk and Control manager is part of the 1st line of defense and is primarily responsible for partnering with Senior Tech Management team to ensure sound Technology controls and practices are in place. The primary responsibilities are to provide oversight on the Engineering, Tech Architecture, Business Architecture Technology control effectiveness, and to partner with senior development heads on driving/challenging technical designs, architecture principles, and engineered solutions.

The Senior Technology Control Manager applies in-depth understanding of latest Technologies, Best Practices, Risk, and the businesses impact. Excellent communication skills required to advise and influence internally, often at senior levels. Some external communication may be necessary. The Senior Technology Control Manager will so provide input into Policy/procedure formulation.

Responsibilities:

• Act as the Subject Matter Expert (SME) on Technology Risk and Controls. Advise the senior Technology mgmt. team on how to apply technology solutions to mitigate risks.
• Establishes and oversees the applications of Technology risk policies, and governance processes to create lasting solutions for minimizing losses from failed internal processes, inadequate controls, and emerging risks.
• Responsible for influencing the technology partners and for establishing strong working relationships with Application Development units, Production Management, Information Security, Continuity of Business, as well as other Business/Operations/Infrastructure Risk Management teams. Coordinate alignment of processes across regions, and lines of business where possible.
• Independently assess’ risks and develop recommendations to drive actions to address the root causes that persistently lead to improving the internal control environment. Establish operational excellence through creative thinking and by challenging both historical and proposed practices.
• Resolves transactional level escalations coming from internal partners
• Develops and maintains relationships across the business users and Lines of Defense to better understand changes in the enterprise risk and control framework and respond to changes in the internal and external business environment
• Must be able to operate independently and with a limited level of direct supervision.
• Results oriented and action driven. Must be able to exercise independence of judgement and autonomy.
• Provide oversight to the Management Control assessment process review to maintain acceptable audit ratings for the EAP organization.
• Must be comfortable driving discussions with the 2nd, and 3rd lines of Defense functions in the implementation, monitoring, and reporting of risk remediation programs and processes and to establish and/or improve engagement and interaction models.
• Engage with application owners and management team to define corrective action plans, and to monitor progress to ensure R&C issues and initiatives are addressed timely.

Qualifications:

• Strong Technical background is a must, Software development background Is required
• Prior experience with Application and Data Architecture is highly desirable
• Knowledge of emerging technologies such as containers, Cloud (AWS/Google), Artificial Intelligence/Machine Learning, Automation is preferred
• Experience in implementing codified controls is a plus
• Experience working with DevOps teams is preferred
• Strong (10+ years) Technical Risk Management background and Audit Background is a Must.
• Must have prior experience interfacing directly with 2nd, and 3rd line of defense, and is able to independently manage the relationship.
• Bachelor’s Degree preferred or 10 -12 years professional experience, 6 of which is relevant to technology risk management/technical audit
• Ability to independently manage transformation efforts and/or key initiatives from start to finish.
• Superior communication, facilitation, and consensus-building skills
• Organizational awareness with ability to influence stakeholders to achieve results

Education:

• Bachelor’s/University degree is preferred or 10 plus years professional experience in Risk and Technology Management. Technical Certification is a plus

-------------------------------------------------

Job Family Group:

-------------------------------------------------

Job Family:

------------------------------------------------------

Time Type:

------------------------------------------------------

Primary Location:

------------------------------------------------------

Primary Location Salary Range:

------------------------------------------------------

Citi is an equal opportunity and affirmative action employer.

Qualified applicants will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.

Citigroup Inc. and its subsidiaries ("Citi”) invite all qualified interested applicants to apply for career opportunities. If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity review Accessibility at Citi.

View the "EEO is the Law" poster. View the EEO is the Law Supplement.

View the EEO Policy Statement.

View the Pay Transparency Posting