-
Risk Manager
1 week ago
The Ladders Columbus, United StatesDescription · The Technology Segment Risk Manager (IAM - Identity & Access Management) will work with business segment management to ensure that the overall risk function is effectively supporting strategic goals. The IAM Risk officer will be responsible for developing and partn ...
-
Risk Manager
6 days ago
Kindred Healthcare Columbus, United StatesAt St. Francis-Emory Healthcare, we recognize that our patients deserve qualified, engaged, and competent healthcare professionals. And we know that our healthcare professionals deserve a working environment that is safe, leaders who are visible and Risk Manager, Manager, Healthc ...
-
Risk Manager
3 weeks ago
Huntington Bancshares, Inc. Columbus, United StatesDevelop and implement strategies related to IAM to ensure alignment with the organizations overall security objective. Define the IAM framework, policies and standards based on industry best practices and regulatory requirements. Define, assess, and Risk Manager, Manager, Risk, A ...
-
Enterprise Risk Management
4 weeks ago
Western Alliance Bank Columbus, United States Full timeJob Title: · Enterprise Risk Management (ERM) Senior Analyst Location: · CityScape What you'll do: · The Senior Enterprise Risk Management (ERM) Analyst will work within the bank's second line of defense and will be responsible for supporting the operational risk management ...
-
American Electric Power Company, Inc. Columbus, United StatesAEPs Enterprise Risk organization provides a unique opportunity for meaningful growth in an environment with high visibility to senior and executive level leaders where depth and breadth of knowledge and skills are acquired through building relation Analyst, Management, Risk, Con ...
-
American Electric Power Columbus, United States**Job Posting End Date** · Please note the job posting will close on the day before the posting end date. · **Job Summary** · AEPs Enterprise Risk organization provides a unique opportunity for meaningful growth in an environment with high visibility to senior and executive le ...
-
Risk Business Manager
1 week ago
Insight Global Columbus, United StatesDay to Day: · The Segment Risk Business Manager reports to the Segment Risk Program Manager and will have responsibility for leveraging data to create and maintain reporting to help drive business decisions and execute findings management, control effectiveness and business read ...
-
Risk Management Analyst
3 weeks ago
American Electric Power Columbus, United States**Job Posting End Date** · Please note the job posting will close on the day before the posting end date · **Job Summary** · Job responsibilities entail working closely with various groups/departments (Structuring, Settlements, Accounting, Credit, Legal, Market Risk Oversight, ...
-
Risk Manager
3 weeks ago
Piedmont Healthcare Corporate Columbus, United States: · JOB PURPOSE: · Responsible for gathering, analyzing and managing risk management data, and preparing reports to management and outside agencies as required. Participates in the review, investigation and evaluation of actual and potential claims. Serves as a resource to staf ...
-
Credit Risk Management Analyst
1 week ago
American Electric Power Company, Inc. Columbus, United StatesWe are looking for a talented and motivated individual to help create the future of energy and customer solutions, while protecting AEP through the administration of the company's Commercial Risk Policy under limited supervision. Individual will be p Risk, Management, Analyst, Cr ...
-
Risk Management Specialist Sr
3 weeks ago
Huntington Bancshares, Inc. Columbus, United StatesHelp support exam management for Regulatory Relations, which includes nearly 60 enterprise-wide exams annually. Work closely with our primary regulators OCC, FRB, CFPB. Coordinate and facilitate exam meetings and interact with stakeholders on exam Management, Specialist, Risk, Bu ...
-
Credit Risk Management Analyst
1 week ago
American Electric Power Columbus, United States**Job Posting End Date** · Please note the job posting will close on the day before the posting end date · **Job Summary** · We are looking for a talented and motivated individual to help create the future of energy and customer solutions, while protecting AEP through the admi ...
-
Western Alliance Bank Columbus, United States Full timeJob Title: · Product/Services Risk Management Associate Director Location: · CityScape What you'll do: · The Product/Service Risk Management Associate Director will be responsible for developing and implementing the Bank's product/service risk evaluation process and lifecycl ...
-
Nationwide Private Client Columbus, United States Full timeAs a team member in the Finance and Internal Audit department at Nationwide, the opportunities are endless You can grow and learn in diverse areas across many disciplines such as Advanced Analytics, Investments, Actuarial, Accounting, Risk Management, Critical Business Advisor an ...
-
Private Bank Risk Manager, Senior
1 week ago
Huntington Bancshares, Inc. Columbus, United States· Summary: · Huntington's Private Bank Risk Manager, Senior is responsible for oversight and administration of operational and regulatory risk strategy programs for a major business segment and/or region with significant span of control. · Duties & Responsibilities: · Evaluate e ...
-
Senior Cyber Risk Management Professional
2 days ago
Fiserv Columbus, United StatesCalling all innovators find your future at Fiserv. Were Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world. We connect financial institutions, corporations, merchants, and consumers to Risk, Management, Technology, Sen ...
-
Director of Risk Management and
3 weeks ago
Construction Resources Management Columbus, United StatesCONSTRUCTION RESOURCES MANAGEMENT · Director of Risk Management and · WAUKESHA , · Wisconsin · Apply Now · JOB REQUIREMENTS: Director of Risk Management and Insurance ConstructionResources Management \| Waukesha, WI Full Time Construction ResourcesManagement, part of the Wal ...
-
Risk Management Analyst
3 weeks ago
American Electric Power Company, Inc. Columbus, United StatesEntail working closely with various groups/departments (Structuring, Settlements, Accounting, Credit, Legal, Market Risk Oversight, Trading, etc.). Job Description. ESSENTIAL JOB FUNCTIONS: 1) Provide support for daily reporting on profit/loss and po Analyst, Management, Risk, Ac ...
-
Huntington Bancshares, Inc. Columbus, United StatesThe Issues Risk Management Operational Excellence Sr Manager is responsible for developing the technology strategy and supporting the implementation of technical solutions to support the Issues Risk Management policy and procedure. Duties & Responsib Risk, Product Manager, Manage ...
-
Citizens Franklin, United StatesJob Description · Description · The Sr. Risk Manager role is responsible for providing oversight and governance of technology risks to ensure that the organization operates in a safe and sound manner within regulatory expectations. The candidate will join a first-line-risk team w ...
Secure by Design Risk Manager, Sr - Columbus, United States - Huntington Bancshares, Inc.
Description
Summary:
Looking for an experienced SDLC and API engineer or architect to work as a SDLC API risk manager supporting Huntington's transformation and use of cloud technologies and traditional on prem data centers.
As a risk manager, you will work with the Huntington operations and engineering teams to help them design and build SDLC processes and policies, API development utilizing best practices from the OWASP, ITIL, ISO standards, NIST framework, BSIMM, and the cloud platform providers recommended best practices.
You will be responsible for identifying potential deficiencies, assisting the business segment in audit findings and responses, reviewing remediation plans, and be a trusted advisor to identify risk to the company.
Description:
Huntington is on a journey to move applications and infrastructure computing to leverage various Cloud provider services. This SDLC risk position is tasked with partnering with the engineering segments providing risk support and control design implementation. This resource will help ensure engineering processes are following defined governance processes, standards, and control requirements.
As a SDLC Security Risk Manager, you'll be a subject matter expert in SDLC process, API gateway solutions and software that will balance the need for speed and flexibility of infrastructure deployments while ensuring Huntington is protected against ongoing and potential security threats.
Seeking an individual who has supported financial services and help assess and help develop their SDLC and API strategy, cybersecurity and IT risk management programs against regulatory requirements and industry best practices.
This person will be influential to SDLC and API platforms and help build compliant governance programs.Responsibilities:
Provides Risk Management leadership for the Bank's public SDLC and API implementations to refine the risk strategy for architecture and implement policies and standards to ensure conformance with Risk Governance and Risk Appetite Framework.
Serve as "voice of risk" for the Technology and Cybersecurity teams that integrate security into the SDLC process; establish and mature a risk management function to promote secure system development in both waterfall and agile methodologies.
Provide credible challenge on Management's governance and effective integration of security into system development.Interact with regulatory oversight teams and supporting external exams as required.
Ensure that emerging risks identified are socialized with key stakeholders and mitigation strategies are in place.
Identify areas of engagement based on level of investment, inherent risk, complexity of change and other risk factors, by partner with peers supporting Application teams, as well as 2nd and 3rd line oversight bodies.
Execute Risk Control coverage strategy, ensure appropriate risk mitigation actions are in place and escalate to management as appropriate.Assist with prioritizing and addressing roadblocks encountered. Leverage reporting to identify trends, themes and areas requiring improved controls.
Drive Manager's Control Assessment monitoring, quarterly approvals and improvements required and consult on the development and review of key risk metrics, controls, and control tests.
Provide security consultation and guidance on design practices and controls adoption. Perform technical security assessments, and analysis of design architectures to validate appropriateness of controls.Complete risk and control self-assessment including analysis of inherent risk, control environment, residual risks, segment risk appetite metrics, top and emerging risks, control effectiveness, metrics, findings, risk acceptances, and changes since last period according to Firm standards.
Update risk register when issues/findings identify new risks, significant changes to existing risks.Basic Qualifications:
10 years of combined technology experience in architecture, engineering, development, cyber security, compliance, audit, or risk based on the qualifications below:
Bachelor's degree in a computer science, engineering, or similar field.
3 years' experience engineering, development, architecture, or security.
3 years' experience with SDLC and API development, engineering, deployment pipelines, DevOps, DevSecOps.
3 years' experience with engineering standards, procedures, controls, and frameworks such as OWASP, BSIMM, ISO, Agile, Scrum, Waterfall or similar.
3 years' experience with software deployments in traditional data center and one or more cloud platforms AWS, Azure, GCP.3 years' experience with a primary development language such as Python, Java, .Net or other common frameworks.
2 Experience with SAST, DAST, IAST, MAST, SCA code scanning platforms.
2 years' experience in Cyber or IT Risk Management.
Preferred Qualifications:
Experience in migrating to cloud services and supporting SaaS, IaaS, IAC development.
Excellent communication skills required to negotiate internally, often at a senior level.
Some external communication may be necessary.
Willingness to learn, able to learn on the job and a desire to continually learn and develop new technical skills Strong written and oral communication skills.
Organized, responsive, and highly thorough problem solver Demonstrable Public Cloud Risk knowledge based on working in real-world environments & situations.
Understanding of security requirements, best practices, and execution in various cloud implementation scenarios: IaaS, PaaS, SaaS Mid-level professional with 5-10 years of experience in consulting, financial services, technology/fintech or government regulatory agency with an IT risk-related role.
Master's degree or relevant professional qualifications with Risk or Security management.CISSP, CISM, CISA, GIAC, CIPP/US or other security/privacy certifications preferred.
Cloud Certifications - CCSP, AWS, Azure or GCP certifications in security, architecture, or engineer.
#LI-Hybrid
#LI-SG1
Exempt Status:
(Yes
= not eligible for overtime pay) ( No = eligible for overtime pay)
Yes
Workplace Type:
Hybrid Huntington is an equal opportunity and affirmative action employer and is committed to providing equal employment opportunities for all regardless of race, color, religion, sex, national origin, age, disability, sexual orientation, veteran status, gender identity and expression, genetic information, or any other basis protected by local, state, or federal law.
Tobacco-Free Hiring Practice:
Visit Huntington's Career Web Site for more details.
Agency Statement:
Huntington does not accept solicitation from Third Party Recruiters for any position
#J-18808-Ljbffr
