Synchrony - Alpharetta, GA
posted 5 months ago
We are seeking a highly skilled and knowledgeable Risk Manager to join our Second Line of Defense (2LoD) team, focusing on Information Security and Business Resiliency. This role is responsible for overseeing information security and organizational resiliency risks at Synchrony, including those at third-party service providers. The Risk Manager will independently identify, assess, monitor, and report on risk management practices, providing guidance to improve them. This position reports to the VP, Operational Risk - IS & Resilience Oversight Leader. In this role, you will collaborate with cross-functional risk teams to monitor, challenge, and test the effectiveness of information security and resilience programs. You will assess Information Security measures, including Data Protection, Identity & Access Management, Resiliency, Disaster Recovery, and Business Continuity capabilities. Additionally, you will measure and report on technology resilience to support business continuity. You will plan and execute independent risk assurance engagements, overseeing and challenging the first line of defense's third-party risk assessment processes, including monitoring and investigating operational risk incidents. Your responsibilities will also include providing oversight and effective technical challenges to Information Security and Resilience teams to develop and implement controls for Public Cloud Migrations, ensuring compliance with security standards and best practices. Conducting targeted, point-in-time technical risk assessments and evaluating risks associated with changes to business strategic initiatives, processes, and controls will be a key part of your role. You will work to align tasks with the Information Risk Oversight Framework (IROF) to plan, track, and report on risks and control effectiveness, while also monitoring information risks and associated risk appetite thresholds, reporting findings to governing committees and sub-committees. Engaging and communicating with regulators as needed to inform on Synchrony's Information Security and Resiliency programs will also be part of your responsibilities.
Match and compare your resume to any job description
Start Matching