Technology Risk Specialist
The Technology Risk Specialist is responsible for providing oversight, consulting and risk management assessment/support, and reporting functions relative to Comerica's Lines of Business (LOBs) and other divisions; for utilizing their specialized skillset to engage with business partners and shared services stakeholders to provide consulting support to drive awareness and compliance with the Bank's enterprise risk management framework, policies and standards; ensure independent risk assessments, oversight and consulting support to promote proactive risk identification, mitigation and remediation of risk, to ensure protection of customers' and the Bank's data and other assets.
Job Responsibilities:
Execute Second Line of Defense (SLOD) risk management functions relative to Technology Risk, Information Risk/Security risk management by working with the LOBs and other bank stakeholders/divisions to risk review areas, related processes, etc., providing credible challenge regarding risk assessments, controls, strategic direction and other activities pertaining to the LOBs and Comerica. Ensure awareness of technology and information risk/security risks in the LOBs/Comerica and provide consulting support and direction to drive proactive risk identification, mitigation/remediation, and accurate, complete monitoring and reporting. Ensure awareness of current technology, information risk/security risk management top line and emerging risks, industry best practices, controls and solutions.
Support development/documentation of required SLOD risk management functions/routines and controls, including deriving accurate and complete technology risk and information risk/security profiles. Technology Risk, Information Risk/Security Risk Management reporting of noted risks, support mitigation/remediation plans/activities required to monitor risks, and support execution of SLOD functions w/business partners. Prepare related reporting to ensure enterprise / management / board level awareness of Technology Risk, Information Risk/Security Risk Management profiles at aggregate and dis-aggregate levels.
Engage with Bank stakeholders/divisions to ensure awareness, documentation, and accurate reporting of identified and potential risks (i.e. top line and emerging risks) impacting Comerica LOBs/functions from a Technology Risk, Information Risk/Security Risk perspective. Execute SLOD review, credible challenge to complete regulatory risk assessments in compliance with guidelines/requirements and/or certifications (i.e. PCI DSS, FFIEC, State Certifications, etc.).
Act as a Subject Matter Expert in technology and information risk topics to support all SLOD functions, assessments, reviews, audits and related responsibilities of the second line of defense.
Job Qualifications:
Bachelor's Degree from an accredited university in Technology, Computer Science or Business
8 years of experience in Technology, Information Security/Risk Management, including execution of risk assessments, mitigation/remediation of technology, information security and other risks, and evaluation, recommendation and/or implementation of industry best practices, controls, and tools
Licenses/Certifications:
CRISC preferred
CGEIT preferred
CIA (Certified Internal Auditor) preferred
CISA (Certified Information Security Advisor) preferred
CISSP (Certified Information Systems Security Professional) preferred
Work Best Category: Category C - Days in the office will either be designated days or will vary week to week from 2-5 days
Hours: 8:00am - 5:00pm Monday - Friday
Salary: To Be Determined Based on Individual Experience
About Comerica
We know our employees are critical to our overall success and we are dedicated to investing in their future. One of the ways we do this is to offer a comprehensive Total Rewards package designed to recognize and reward individual performance, as well support health, well-being, development and security for our colleagues and their family. Total Rewards consists of cash compensation, development and flexible benefit programs designed to meet individual needs today and in the future. Your salary will be commensurate with your work experience and our programs are reviewed regularly to ensure each remain competitive. We are proud to offer benefits such as health and welfare programs, strong retirement benefits, and generous paid time off programs. You and your eligible family members, including domestic partners and their children, can participate in medical, dental, and vision benefits, 401(k) and pension, income protection benefits such as life insurance, AD&D, and supplemental health programs to offset unexpected health care expenses. We also have a variety of time off programs for things like vacation, sick time, disability, and parental leave. Eligibility for some programs varies based on employment status and tenure.
Upon offer, Comerica conducts a comprehensive background and fingerprint check.
NMLS certification requirement: where applicable, a favorable background check screening, credit check, fingerprint check, and NMLS certification is required in accordance with the SAFE Act.
Comerica Incorporated (NYSE: CMA) is a financial services company headquartered in Dallas, Texas, and strategically aligned into three major business segments; the Commercial Bank, the Retail Bank, and Wealth Management. Comerica's colleagues focus on relationships, and helping people and businesses be successful. In addition to Texas, Comerica Bank locations can be found in Arizona, California, Florida and Michigan, with select businesses operating in several other states, as well as in Canada and Mexico.
Comerica is proud to be an Equal Opportunity Employer - veterans/individuals with disabilities, committed to workplace diversity.
