About this role
Wells Fargo is seeking a Senior Control Management Specialist...
In this role, you will
- Participate in identifying, assessing, managing, and mitigating current and emerging risk exposures within Control Management functional area
- Provide risk management consulting to support the business in designing and implementing risk mitigation strategies, business processes, and business controls
- Monitor moderately complex business specific programs and provide risk management consulting to support the business in designing and implementing risk mitigation strategies
- Monitor, measure, evaluate, and report on the impact of decisions and controls to the relevant business group or functional area
- Provide guidance to business groups on the development, implementation, and monitoring of business specific programs to identify, assess, and mitigate risk
- Collaborate with relevant business group to identify current and emerging risks associated with business activities and operations
Required Qualifications, US
- 4+ years of Risk Management or Control Management experience, or equivalent demonstrated through one or a combination of the following work experience, training, military experience, education
Required Qualifications, International
- Experience in Risk Management, Control Management, or equivalent demonstrated through one or a combination of the following work experience, training, military experience, education
Desired Qualifications
- Participate in identifying, assessing, managing, and mitigating current and emerging risk exposures within Control Management functional area
- Provide risk management consulting to support the business in designing and implementing risk mitigation strategies, business processes, and business controls
- Monitor moderately complex business specific programs and provide risk management consulting to support the business in designing and implementing risk mitigation strategies
- Monitor, measure, evaluate, and report on the impact of decisions and controls to the relevant business group or functional area
- Provide guidance to business groups on the development, implementation, and monitoring of business specific programs to identify, assess, and mitigate risk
- Collaborate with relevant business group to identify current and emerging risks associated with business activities and operations
- Provide information and cyber security risk and regulatory compliance support and consult on projects/programs and initiatives with moderate/high risk.
- Provide credible challenge and recommendations to technology and business teams on appropriate risk management with support from team leaders on more complex issues.
- Drive front line risk strategy across the supported LOB and establish, administer, and execute long-term goals for controlling risk in accordance with risk program requirements with assistance from team leaders on more complex issues.
- Support of design & implementation of the front-line risk management program requirements and controls related business procedures, processes, and systems of internal controls to ensure adequacy and effectiveness across front line functions. Evaluate key risk and performance indicators to identify emerging trends within the business and across risk domains.
- Interact with leaders, independent risk management and external audit to foster transparency and appropriate awareness of risk control activities.
- Establish and maintain communication protocols to foster information sharing and collaboration.
- Promote a strong risk culture, cultivate relationships, and foster a team orientation with Front line business partners, independent risk management, and internal audit.
- Support risk strategy across the supported Technology LOB and administer and execute long-term goals for controlling risk in accordance with risk program requirements.
- Support implementation of the front-line risk management program requirements and related business procedures, processes, and systems of internal controls to ensure adequacy and effectiveness across Technology LOB functions
- Establish strong partnership and collaboration with key stakeholders across the issue management portfolio in adherence to Wells Fargo Issue Management Policy requirements
- Facilitate end to end issue management lifecycle & all activities impacting the risk remediation portfolio
- Review issue and corrective action intake forms and provide feedback to ensure risk mitigation activities are clearly outlined
- Identify and recommend opportunities for process improvements through monitoring of thematic issues & risk trends to the Technology environment
- Monitor and report on compliance on the Issue Management Policy including ongoing updates to policy and procedure updates
- Perform or assist with assignments/projects pertaining to risk remediation activities
- Maintain a solid understanding of the Wells Fargo Issue Management policies and procedures
- Identify and assess risk for the targeted Technology LOB
- Provide credible challenge on people, process and systems to ensure maximum business results and effective risk mitigation strategies
- Provide high quality risk management deliverables through a matrix staffing model to targeted Technology senior leaders and team members
- Perform reviews of new products, solutions, projects and program requirements, evaluating control strength and associated risks
- Review mitigation/remediation plans and providing counsel on mitigation effectiveness and alternative mitigation approaches
- Manage issue, policy exception and risk acceptance portfolio to ensure appropriate and timely risk mitigation inclusive of third-party risk
- Perform gap analysis for policies and/or regulatory requirements
- Conduct root cause analysis on technology incidents to identify weak or non-existing controls and create effective mitigation plans
- Produce effective and actionable management risk reporting for CIO and ultimately sub-CIO level
- Lead complex initiatives designed to mitigate current and emerging risks with broad impact
- Act as key participant in monitoring, evaluating, and measuring the impact of decisions practiced in Control Management functional area
- Monitor moderately complex business specific programs, and provide risk management consulting to support the business in designing and implementing risk-mitigation strategies
- Monitor, measure, evaluate, and report on the impact of decisions and controls to the relevant business group or functional area
- Develop and implement risk monitoring and risk reporting processes and controls
- Collaborate with relevant business group to identify current and emerging risks associated with business activities and operations, and provide guidance in developing and implementing risk-mitigating strategies
- Lead Control Management project or virtual teams
- Effectively collaborating with business partners in the first-line-of-defense (FLOD), second line of defense (SLOD), audit and information security
- Working with stakeholders to ensure each has the tools, processes and expertise to effectively manage technology risks
- Develop and maintain strong working relationships with the line of business, corporate regulatory, operational risk, compliance and corporate audit
- Deliver effective and consistent execution of the Risk Management Framework to build Front Line Risk Mitigation capabilities and accountability coordinating issue analysis, thematic reviews, control evaluation and remediation activities across businesses and functions to manage risk
- Deliver on - Control Design standards, Control Blueprints, Industry framework alignment, Solutions and controls alignment, Controls Automation Reporting, Control Design consultancy, Technology RCSA, Operational risk events
Job Expectations
- 10+ years of relevant experience in IT / Information Security risk and control management, or equivalent demonstrated through one or a combination of the following work experience, training, military experience, or education
- Bachelor's degree in Computer Science, Information Systems, or equivalent.
- Experience reviewing strategies and methodologies, evaluating the adequacy and effectiveness of Information security frameworks and standards, policies, procedures, processes, initiatives, products, and internal controls
- Strong Information Security technical skills and knowledge to identify, research and understand security control gaps and program compliance issues
- Demonstrated knowledge of Technology and Security risk frameworks ISO 27001, COBIT, FFIEC, NIST 800-53, NIST CSF, ITIL etc.
- Ability to interact with all levels of team members in the organization
- Ability to take on a high level of responsibility, initiative, and accountability
- Excellent verbal, written, and interpersonal communication skills
- One or more professional certifications such as CISSP, CCSP, CISA, CISM, CRISC, CCSK etc.
- Ability to coordinate completion of multiple tasks and meet aggressive time frames
- Track record of providing constructive challenge and ability to drive and contribute towards issue identification, escalation and offering solutions for corrective action/remediation.
- Strong ability and experience working with and collaborating with leaders and team members at all levels and across functional lines
- Excellent problem solving, research, and follow-up skills
- Ability to work with complex teams have global experience, preferably US banks
Posting End Date
*Job posting may come down early due to volume of applicants.
We Value Diversity
At Wells Fargo, we believe in diversity, equity and inclusion in the workplace accordingly, we welcome applications for employment from all qualified candidates, regardless of race, color, gender, national origin, religion, age, sexual orientation, gender identity, gender expression, genetic information, individuals with disabilities, pregnancy, marital status, status as a protected veteran or any other status protected by applicable law.
Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.
Candidates applying to job openings posted in USAll qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.
Candidates applying to job openings posted in Canada Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.
Applicants with Disabilities
To request a medical accommodation during the application or interview process, visitDisability Inclusion at Wells Fargo
Drug and Alcohol Policy
Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy