Risk Governance & Findings Management, Assistant Vice President

About the position

Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), one of the world's leading financial groups. Across the globe, we're 120,000 colleagues, striving to make a difference for every client, organization, and community we serve. We stand for our values, building long-term relationships, serving society, and fostering shared and sustainable growth for a better world. With a vision to be the world's most trusted financial group, it's part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility. This means investing in talent, technologies, and tools that empower you to own your career. Join MUFG, where being inspired is expected and making a meaningful impact is rewarded. The selected colleague will work at an MUFG office or client sites four days per week and work remotely one day.

Responsibilities

• Coordinate end-to-end management and oversight of technology findings remediation processes and reporting to align with threat and vulnerability management team objectives
• Assist with end-to-end process for technology findings management, including roles and responsibilities across remediation and validation, business unit risk, and findings owner teams
• Design and implement effective technology findings governance
• Develop process for assessment of emerging risks and threats, evaluation of current control effectiveness, and processes to address any gaps
• Establish management routines and procedures to ensure effective OTA-wide awareness, ownership, and execution of open findings and control gaps
• Maintain strong engagement across multiple stakeholders and collaborate with key senior business partners
• Recruit, develop, and retain key talent, ensuring that the resources dedicated to risk management are effective in carrying out the required functions
• Governance of Risk Appetite Statement (RAS) metrics across all entities, ensuring alignment with organizational risk appetite and strategic objectives
• Collaborate with key stakeholders to define and refine metric criteria, thresholds and escalation triggers
• Monitor and assess the accuracy, consistency and completeness of RAS metrics reporting to board-level executives and senior leadership
• Ensure compliance with regulatory and internal policy requirements related to RAS metrics and risk appetite reporting
• Develop dashboards, reporting and executive summaries to enhance the visibility of RAS metrics and their implications for decision making

Requirements

• Bachelor's degree required in technology, engineering, risk management, computer science, information systems or equivalent field
• Graduate degree preferred
• Preferred: Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or Certified in Risk and Information Systems Control (CRISC)
• 4-6 years of technology, risk, and control experience
• Preferred: experience in a financial institution, 'Big 4' audit, or other highly regulated environment
• 0-2 years of experience working at a major financial institution on audit and/or risk management initiatives/programs, including management responsibilities
• Knowledge of information technology risk and process frameworks, including COSO, COBIT, NIST, Cybersecurity Horizontal Reviews, and ITIL
• Knowledge of consumer banking, consumer lending, capital markets, commercial loans, trade services and payment operations etc.
• Familiarity with U.S. regulatory requirements, compliance, and governance
• Strong project management skills; includes an ability to independently drive work, and pragmatically solve problems
• Understanding of risk management, including experience executing risk assessments, testing, and evaluating processes and controls
• Prior supervisory and or management role with a focus on talent development
• Excel at developing and communicating key messages to senior managers and regulators
• Understanding of regulatory requirements and trends
• Understanding of designing and implementing risk related management, governance, and frameworks
• Maintain and create executive level reporting for senior stakeholders
• Outstanding communication skills; able to foster close and collaborative productive working relationships across the organization
• Ability to manage competing priorities in the risk environment
• Strong work ethic, ability to make decisions and work under tight deadlines; achievement-oriented and takes initiative
• Strong people management and influencing skills; proven strength in relationship development and leading through influence across multiple stakeholders
• Ability to deliver results within a complex environment; develop and drive best practices

Benefits

• Comprehensive health and wellness benefits
• Retirement plans
• Educational assistance and training programs
• Income replacement for qualified employees with disabilities
• Paid maternity and parental bonding leave
• Paid vacation, sick days, and holidays