Job DescriptionThe Technology, Cybersecurity, and Digital, Data, and AI Risk team provide support to our business partners to maintain an agile, well-controlled environment that can rapidly and reliably deliver services across the enterprise. This
Technology Risk Manager position will support the Technology Infrastructure organization. To achieve this, the Technology Risk Manager must develop a deep understanding of the aligned leader's area and partner to:
- Consult control owners and leaders about the risk profile of their portfolios of processes and applications
- Serve as a trusted risk advisor to aligned Technology leaders
- Identify and address risks before they impact objectives
- Oversee and enable the aligned Technology team's compliance with existing and new requirements
- Evaluate and consult on the risks associated with strategic priorities or major programs and projects
- Provide actionable information to help prioritize risk-mitigation actions across the portfolio of platforms/applications managed by the leader
- Design and enhance effective control environments for technology products and services
- Simplify the existing control environment using process/control re-engineering and automation
- Respond to unexpected events and findings
Top 3 Skills- Technology Risk Management
- Cloud Risk Management & Governance (AWS and Azure) - including platform-level control design, service enablement, and cloud migration risk oversight
- Control Design, Testing, and Assessment for Infrastructure Platforms - including preventative/detective control frameworks (NIST, FFIEC, CSA CCM), evidence review, and control lifecycle management
Top 3 Responsibilities- Identify, monitor, and report on processes, risks, and controls within risk appetite
- Influence risk-based outcomes within the Technology group's portfolios
- Provide guidance on how to effectively achieve and sustain compliance with regulatory, industry and contractual obligations, as well as information security policies and practices
Other Role responsibilities include- Collaborate to drive strategic outcomes for the good of the overall team
- Consult on strategic initiatives that are defined by the product area owner; ensure risks are appropriately documented, reported, and escalated
- Provide advisory and implementation support in the development of management responses to manage associated risk
- Perform risk assessments to evaluate compliance with existing policies and procedures and to accurately identify risks and drive remediation processes to ensure that compliance and security gaps are addressed
- Use data analysis to help aligned Program Leaders develop proactive and anticipatory approaches to risk management
- Support aligned Technology or Business Line team in demonstrating evidence of control effectiveness and identify and escalate control gaps in a timely manner
- Deliver targeted and actionable risk reporting across various leadership levels
- Serve as a functional liaison between the Business Line and second and third lines of defense
Basic Qualifications- Bachelor's degree, or equivalent work experience
- Typically, more than eight years of applicable experience
Preferred Skills and Experience- Advanced knowledge of applicable laws, regulations, financial services, and regulatory trends that impact their assigned line of business
- Advanced understanding of the business line's operations, products/services, systems, and associated risks/controls
- Thorough knowledge of Risk/Compliance/Audit competencies
- Strong management skills in processes, projects and people
- Excellent presentation, interpersonal, written, and verbal communication skills
- Strong analytical, problem-solving and negotiation skills
- Proficient computer skills, especially Microsoft Office applications
- Applicable professional certifications (e.g. CRISC, ITIL, CISSP, CGEIT, etc.)
The role requires technical knowledge of- Agile frameworks and product management practices
- Public cloud platforms (AWS and Azure) - service enablement/blueprint processes, IAM models, PaaS/IaaS service patterns, and cloud-native control tooling (e.g., CSPM, config management)
- Infrastructure and platform controls - backup/snapshot configuration and retention, encryption and key management, secrets rotation and vaulting (e.g., HashiCorp Vault), and privileged/break-glass access
- Risk and control frameworks and regulatory standards relevant to U.S. financial services - NIST CSF / SP 800-53, FFIEC IT Handbook, CSA CCM, PCI DSS 4.0, SOX ITGC, SOC 2, and applicable data-protection regimes (GDPR, IRS Pub 1075, GLBA)
- Data classification and data protection - PII/Personal Class 1 handling, tokenization, and information classification frameworks
- GRC and workflow tooling - RSA Archer (RCSA, issues, controls), ServiceNow IRM, and JIRA for change/issue tracking
- IT Service Management and change/configuration management (ITIL v4) as applied to cloud and hybrid infrastructure
- Risk assessment methodologies - RCSA, targeted risk assessments, and control gap/target-state assessments
Benefits:Our approach to benefits and total rewards considers our team members' whole selves and what may be needed to thrive in and outside work. That's why our benefits are designed to help you and your family boost your health, protect your financial security and give you peace of mind. Our benefits include the following:
- Healthcare (medical, dental, vision)
- Basic term and optional term life insurance
- Short-term and long-term disability
- Pregnancy disability and parental leave
- 401(k) and employer-funded retirement plan
- Paid vacation (from two to five weeks depending on salary grade and tenure)
- Up to 11 paid holiday opportunities
- Adoption assistance
- Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
Review our full benefits available by employment status here.
The salary range reflects figures based on the primary location, which is listed first. The actual range for the role may differ based on the location of the role. In addition to salary, U.S. Bank offers a comprehensive benefits package, including incentive and recognition programs, equity stock purchase 401(k) contribution and pension (all benefits are subject to eligibility requirements). Pay Range: $119,765.00 - $140,900.00
Posting may be closed earlier due to high volume of applicants.