Technology Risk Director

Risk Management
180887 Requisition #
Apply for Job
Share this Job
Sign Up for Job Alerts
Business Unit: Global Chief Risk Office
Department:  Risk Analysis and Reporting
Job Family: Risk Management
Job Title: Technical Risk Director
Corporate Title: Director
FLSA Code (US Only): Exempt 

Business Unit Description:

Our Risk Management teams work to protect the safety and soundness of our systems and are responsible for identifying, managing, measuring and mitigating a spectrum of key risk types including credit, market, liquidity, systemic, operational and technology in all existing and new products, activities, processes and systems.

The TRM Risk Analysis and Reporting group is responsible for the review of business and technology applications and their supporting infrastructure, vendors, and business ventures against a set of control standards to identify potential control gaps that may lead to a cybersecurity risk exposure, as well as the development and communications of Key Risk and Performance Indicators that identify material risks to DTCC’s operational environment.

Position Summary:

The incumbent is accountable for the gathering and reporting of cybersecurity and information risks to the DTCC board/executive management, regulatory authorities and DTCC risk committees.  This individual provides leadership and direction to Analysts and Specialists to drive the development of the requisite internal and external risk indicators. This individual will partner with stakeholders across the organization to support governance, risk and compliance activities. This individual requires the ability to communicate and present technical concepts to business and technology leaders, evaluate both qualitative and quantitative cybersecurity and information risk performance and effectiveness through metrics, and apply new ideas and information quickly and accurately.

Specific Responsibilities:
  • Define strategic direction for the development of new and existing risk reporting
  • Collaborate with IT, business, TRM and other key stakeholders to identify, develop and implement information and cybersecurity risk metrics that provide a holistic view of technology risks for the DTCC business units
  • Perform analysis on risk and metric information to identify performance trends; Define and agree risk thresholds with business, IT and TRM stakeholders 
  • Actively coordinate and communicate metric and reporting activities business areas and IT; Identify and collaborate with stakeholders for improvement of risk metrics
  • Review risk metric results and provide input to information security reporting and dashboards; Develop new regulatory reporting required for new and existing regulatory requirements
  • Document process and procedures for Cybersecurity risk reporting and metrics activities
  • Provide project oversight and management of Metrics Dashboard, Risk Tolerance Updates and Project Risk and related efforts.
  • Identify and report on Risk trends and lead monthly report development. 
  • Create project charters, define/create requirements and manage NIC related reporting and status updates.
  • Mitigates risk by following established procedures, spotting key errors and demonstrating strong ethical behavior.
Leadership Competencies for this level include:
  • Accountability: Demonstrates reliability by taking necessary actions to continuously meet required deadlines and goals.
  • Global Collaboration: Applies global perspective when working within a team by being aware of own style and ensuring all relevant parties are involved in key team tasks and decisions.
  • Communication: Articulates information clearly and presents information effectively and confidently when working with others.
  • Influencing: Convinces others by making a strong case, bringing others along to their viewpoint; maintains strong, trusting relationships while at the same time is comfortable challenging ideas.
  • Innovation and Creativity: Thinks boldly and out of the box, generates new ideas and processes, and confidently pursues challenges as new avenues of opportunity.
  • Minimum of 10 years of business experience with at least 8 years in information technology and/or cyber security risk management
  • CRISC, CISA, CISSP, CISM and/or PMP or similar certifications preferred
  • Bachelor’s degree with Masters or equivalent preferred
About DTCC:

With over 40 years of experience, DTCC is the premier post-trade market infrastructure for the global financial services industry. From operating facilities and data centers around the world, DTCC automates, centralizes, and standardizes the processing of financial transactions across the trade lifecycle and mitigates risk for thousands of institutions worldwide.

At DTCC we value on our clients' interests and partner to deliver superior results with excellence and innovation and lead with integrity. We proactively develop your potential and invest in your career.

Previous Job Searches

My Profile

Create and manage profiles for future opportunities.

Go to Profile

My Submissions

Track your opportunities.

My Submissions

Similar Listings


📁 Risk Management

Requisition #: 180884


📁 Risk Management

Requisition #: 172331


📁 Risk Management

Requisition #: 181274