What are the responsibilities and job description for the Director, Emerging Technology Risk position at Santander US?
Boston, United States of America
The Director of Emerging Technology Risk within the Technology and Information Risk Management organization at Santander US and Santander Bank NA is responsible for ongoing oversight, assessment, management and reporting of technology and cybersecurity risks associated with the adoption and implementation of Cloud, AI and Digital Assets (e.g. Blockchain, Crypto etc.) across all operating entities. This role is established in the second line of defense and requires collaboration across both IT, CISO, Data Office, Operational Risk, Internal Audit and other relevant functional stakeholders within the organization in the management of Emerging Technology risks. An excellent understanding of the evolving regulatory landscape in the US and EU are vital for success in this role.
The day-to-day focus may vary depending on the requirements of the overall second line of defense program priorities directed by the Head of Technology Risk and may include: planned or ad-hoc technical risk reviews, review of IT or Business initiatives, Review and challenge activities, Risk reporting, development of technical risk framework and methodologies.
This position is hybrid in office 2-3 days per week.
Locations can include: Dallas, TX; Boston, MA; Florham Park, NJ; NYC, NY
Essential Functions/Responsibility Statements
Education
Santander is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, genetics, disability, age, veteran status or any other characteristic protected by law.
Employer Rights: This job description does not list all of the job duties of the job. You may be asked by your supervisors or managers to perform other duties. You may be evaluated in part based upon your performance of the tasks listed in this job description. The employer has the right to revise this job description at any time. This job description is not a contract for employment and either you or the employer may terminate at any time for any reason.
Bachelor of Science (BS) English
Primary Location: Boston, MA, Boston
Other Locations: Massachusetts-Boston,Texas-Dallas,New York-New York,New Jersey-Florham Park
Organization: Santander Bank N.A.
The base pay range for this position is posted below and represents the annualized salary range. For hourly positions (non-exempt), the annual range is based on a 40-hour work week. The exact compensation may vary based on skills, experience, training, licensure and certifications and location.
Salary: $144,000 - $215,000/year
The Director of Emerging Technology Risk within the Technology and Information Risk Management organization at Santander US and Santander Bank NA is responsible for ongoing oversight, assessment, management and reporting of technology and cybersecurity risks associated with the adoption and implementation of Cloud, AI and Digital Assets (e.g. Blockchain, Crypto etc.) across all operating entities. This role is established in the second line of defense and requires collaboration across both IT, CISO, Data Office, Operational Risk, Internal Audit and other relevant functional stakeholders within the organization in the management of Emerging Technology risks. An excellent understanding of the evolving regulatory landscape in the US and EU are vital for success in this role.
The day-to-day focus may vary depending on the requirements of the overall second line of defense program priorities directed by the Head of Technology Risk and may include: planned or ad-hoc technical risk reviews, review of IT or Business initiatives, Review and challenge activities, Risk reporting, development of technical risk framework and methodologies.
This position is hybrid in office 2-3 days per week.
Locations can include: Dallas, TX; Boston, MA; Florham Park, NJ; NYC, NY
Essential Functions/Responsibility Statements
- Establish themselves as the second line of defense subject matter expert for key stakeholders in the management of emerging technology risks across all operating entities
- Prepare information to enable governance committees / working groups in the management oversight of emerging technology risks
- Participate in relevant governance committees and working groups as a delegate of the Head of Technology
- Initiate timely escalations to the Head of Technology and to the leadership team
- Identify and assess technology and cybersecurity risks associated with emerging technologies including Cloud, AI, IoT, Blockchain and others and counsel business units managers, CISO and/or IT GRC stakeholders on risk management issues to ensure awareness and accountability for emerging technology risks
- Develop and implement a technical risk management governance, framework to enable the strategic business direction of the organization
- Ensure the update of existing policies and framework or develop new ones that steer the safe and sound adoption of emerging technologies across the organization
- Participate in the independent and ongoing risk oversight of key technology components of the firm’s digital transformation initiatives. Additionally, coordinate oversight of key emerging technology risks
- Work across the lines of defense to recommend strategies that effectively treat risks within the risk appetite
- Monitor emerging technology trends and evaluate potential impacts to business strategy; provide documented analytical insights of the risk horizon, while ensuring a sound operational and compliance control environment through establishment of a system of effective and sustainable internal controls
- Participate in evaluation of new products / Business changes / projects and assess related emerging technology risks and impact to the technology risk profile
- Participate in the evaluation and management of risks related to third-party suppliers involved in technology projects related to the deployment of emerging technology or where emerging technologies introduced by third parties are a key component of the business activities
- Advises on remediation of regulatory findings, correction of any inconsistencies and monitors resolution.
- Manage, oversee and contribute to targeted risk reviews designed to evaluate emerging technology risks and their effective and sustainable mitigation
- Perform review and challenge of first line of defense risk management processes, data and outcomes (e.g. risk assessments, control evaluations, risk metrics, mitigation plans, risk acceptances etc.) and communicate risk opinions at various levels of management
- Analyze risk data from various sources (e.g. external events, control deficiencies, risk register etc.) to identify and measure levels of risk, concentration, trends and patterns
- Support process for constructive engagement across the Lines of Defense regarding differences or conflicts in risk appetite, risk metric determination or evaluation, issue severity or other areas of dispute
- Manage delivery timelines and develop materials to ensure second line of defense independent opinion appropriately represented during committee meetings, external exams and internal audits.
- Ensure all activities and deliverables achieve their timeliness, quality and accuracy service levels.
- Collaborate with other second line of defense functions such as Operational Risk, Model Risk, Compliance etc. on common priorities and strategic initiatives
- Provides second line of defense leadership and subject matter expertise during response to major technology or cyber incidents and coordinate second line of defense engagement and response of incident / crisis management
- Recruits, develops, and manages talent to create within the organization a culture of leadership, performance, and accountability.
Education
- Bachelor's Degree in a technical discipline or equivalent work experience: Computer Science, Information Technology, Information Systems, Information Security. Req
- Master's Degree in related technical disciplines. Pref
- Professional Certifications in Cloud Security. Req.
- Professional Certifications in one or more Emerging technology areas. Pref
- Practitioner and management experience in one or more areas of Emerging Technology Risks
- Overall professional experience of 10 years or more in emerging technology or cybersecurity risk management roles in a matrix organization
- Experience within a highly regulated environment such as the financial services industry
- Cloud Security Architecture Patterns
- Secure Application Development / DevSecOps / Containerization
- Encryption / Tokenization
- Identity and Access Management
- Network / Firewall Management
- Vulnerability Management / Patching
- Artificial Intelligence
- Digital assets
- Demonstrated expertise and track record in technology risk management segment, and ability to perform at an advanced level of competence.
- Advanced knowledge of technical risk management best practices and how to implement them.
- Ability to engage effectively with both senior management and operational teams
- A keen sense of risk anticipation with attention to details and an ingrained ability to connect the dots and challenge status quo
- An execution and solution focused risk mindset with an ability to push the needle forward even with ambiguous or incomplete information
- Ability to direct, train and guide peers, subordinates and management.
- A team player who can coordinate and drive consensus among different teams and stakeholders having varying view points
- Ability to build relationships, influencing and negotiations across diverse stakeholders across the lines of defense, handle conflict resolution with other groups to ensure appropriate risk management decisions are made.
- Ability to adjust to new developments/changing circumstances.
- Ability to effectively communicate and build relationships with multiple levels of the organizational structure, including senior level management.
- Ability to collaborate with multidisciplinary teams.
- Ability to multi-task and adapt/adjust to multiple demands and competing priorities.
- Ability to maintain and report on confidential information in an appropriate manner.
- Ability to convey a sense of urgency and drive issues/projects to closure.
- Ability to effectively interact with the executive management and vendors.
- Ability to demonstrate sound judgement and critical thinking
- Excellent written and oral communication skills.
- Excellent analytical, organizational and project management skills.
- Strong leadership, supervisory, and customer service skills.
- Strong risk, process, and control validation and/or assessment skills.
Santander is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, genetics, disability, age, veteran status or any other characteristic protected by law.
Employer Rights: This job description does not list all of the job duties of the job. You may be asked by your supervisors or managers to perform other duties. You may be evaluated in part based upon your performance of the tasks listed in this job description. The employer has the right to revise this job description at any time. This job description is not a contract for employment and either you or the employer may terminate at any time for any reason.
Bachelor of Science (BS) English
Primary Location: Boston, MA, Boston
Other Locations: Massachusetts-Boston,Texas-Dallas,New York-New York,New Jersey-Florham Park
Organization: Santander Bank N.A.
The base pay range for this position is posted below and represents the annualized salary range. For hourly positions (non-exempt), the annual range is based on a 40-hour work week. The exact compensation may vary based on skills, experience, training, licensure and certifications and location.
Salary: $144,000 - $215,000/year
Salary : $144,000 - $215,000
Senior Director, Product Management - Emerging Creator Products
Jooble -
Cambridge, MA
Director of Technology
Center for Effective Philanthropy -
Cambridge, MA
Director of Electrical and Firmware Engineering
Evolv Technology -
Waltham, MA