Job Description
Use of this job is restricted to Control Executive groups with Front Line Risk Management. The Business Risk and Control team is responsible for partnering with the relevant business group to identify, assess, manage and mitigate current and emerging risk exposures associated with their activities and operations. Monitors, measures, evaluates, and reports on the impact of decisions and controls to the relevant business group and enterprise function. Consults and provides guidance to business groups on the development, implementation, and monitoring of complex business-specific programs to identify, assess, and mitigate risk. Consults and supports interpretation of policy, guidelines, and governance programs as the front line liaison to Independent Risk Management leaders for moderate to high risk and complexity enterprise risk programs. Provides a high level of risk management acumen to support the business in designing and implementing risk mitigation strategies, business processes and controls that mitigate risks and address regulatory requirements.
Develops and implements risk monitoring and risk reporting processes and controls. Monitors and reports on its risk concentration, current and emerging risk, and risk appetite. Aggregates, evaluates, reports on results and escalates where necessary. Designs and executes control effectiveness assurance program for Front Line-owned controls. Leads implementation of initiatives with moderate to high risk. Collaborates internally with business regarding risk management of business-specific risk programs. May interface with Audit, Legal, external agencies, and regulatory bodies regarding risk management of business-specific risk programs. May lead project/virtual teams and may mentor but does not manage other team members.
Market Skills and Certifications
Essential Qualifications
University degree in Business or related discipline.
Experience of 12 years overall with a minimum of 10 years relevant experience in a multinational financial institution or similar.
One or more certifications like CISSP, CRISC, CISA, CISM, and CGEIT.
Desired Qualifications
Certified Internal Auditor (CIA), Certified Information Systems Auditor, (CISA) Certification in Control Self-Assessment (CCSA), Certified Information Systems Security Professional, (CISSP) or other risk management discipline certification
Strong knowledge in Cloud Platforms, FedRamp, and associated Risk with Cloud deployment and migration
Strong knowledge of Secure Application Development Lifecycle, Agile Methodology, Continuous Integration and Deployment, and associated Risk
Strong knowledge of Application Lifecycle and Architecture Management, and associated Risk
Strong knowledge of Control Framework and Control Testing
Ability to turn preliminary or ambiguous information, ideas, or problems into well-defined plans and solutions
Ability to communicate effectively, in both written and verbal formats, with senior executive-level leaders
Virtual leadership experience with ability to effectively drive results, provide feedback/direction, and manage and build relationships with leaders and team members in a geographically dispersed team environment
Ability to organize and manage multiple priorities
Ability to generate, review, edit, and distribute executive level reports
Strong analytical skills with high attention to detail and accuracy
Experience working with internal and external auditors and examiners
Experience reviewing testing strategies and methodologies; evaluating the adequacy and effectiveness of policies, procedures, processes, initiatives, products and internal controls; and identifying issues resulting from internal and/or external compliance examinations
Advanced Microsoft Office skills
Excellent verbal, written, and interpersonal communication skills
Ability to articulate complex concepts in a clear manner-Performing centralized governance, oversight responsibilities, and the facilitation of strategic planning for the Technology Control Framework
Experience managing and executing information Technology risk programs that align to a Technology Business function
Knowledge of Technology and Security risk framework COBIT, FFIEC, NIST, ITIL, COSO, BASEL, and OCC Heightened Standards
Track record of providing constructive consulting with appropriate issue escalation and offering solutions
Strong ability and experience working with and collaborating with leaders and team members at all levels and across functional lines
Keyskills: Assurance Executive Legal Mentor Management Risk management Monitoring Auditing Risk mitigation
Wells Fargo & Company (NYSE: WFC) is a diversified, community- based financial services company with $1. 9 trillion in assets. Founded in 1852 and headquartered in San Francisco, Wells Fargo provides banking, insurance, investments, mortgage, and consumer and commercial finance through more ...