Responsibilities include serving as a liaison between IT Risk Management and other areas inside/outside the Bank (i.e., Business Continuity Office (BCO), training, auditors, etc.). Involved in the Federal Reserve System risk evaluation processes by specializing in some aspects of the process and support departments inside/outside the Bank. Maintains relationships with business areas that interact with IT Governance processes in a moderately complex manner or on a regular basis. The level of work required is considered intermediate and staff must be able to work under general to close supervision. This job does not have any direct reports.
Principal Duties and Responsibilities
Identifies needs and develops and implements technology-related internal controls for the department
Assesses internal control performance, identifies weaknesses, and provides recommendations to strengthen the control environment
Assists in ensuring consistency in the testing process and reporting of results
Leads departments through the risk evaluation process
Provides project management of new security initiatives that affect IT or IT Risk Management
Develops or updates procedure documents
With some oversight, develops recommendations to strengthen control environment
Tracks and verifies adherence to information security polices procedures and requirements
Researches and prepares reports on compliance obligations and issues
Participates in the testing and leads the maintenance of the department`s business continuity plans
Partners with business areas in support of IT Risk Management processes
Collaborates with other members of the IT Policy & Risk Assessment team on complex matters
Participates in department projects that focus on IT Policy & Risk Assessment process improvement