Overview
Skills
Job Details
Location: Hybrid - In Office (4 days) | Raleigh, NC, US
Contract Duration: 3 months
What are the hours of work: 8:30 – 5:00
Will overtime be required (Y/N): If yes, please provide forecasted overtime: N
Describe your department:
The Bank Office of Technology Risk & Controls team (~10) is responsible for establishing, enhancing, and sustaining an effective Risk and Control environment for IT in accordance with the Bank's IT Risk Management Frameworks/Policies/Standards and US Regulatory Compliance.
The Senior Manager, IT Control & Issue for the Bank is responsible for the management of a first line of defense (1LoD) technology control and issues management program. Additionally, this role will provide leadership though enhanced reporting and control reviews to ensure sustainability.
Daily Responsibilities:
30% – IT & Cyber Control Testing & Assurance
· Conduct IT and Cyber IT & Cyber Control Testing (design and operating effectiveness) using risk-based methodology.
· Validate IT & Cyber Control evidence for completeness and accuracy; challenge IT & Cyber Control owners on weaknesses or inconsistencies.
· Develop and maintain detailed testing procedures, sampling approaches, and assurance documentation.
30%– IT & Cyber Control Uplift & Design Enhancement
· Lead the IT & Cyber Control uplift initiatives, ensuring IT & Cyber Controls are modernized, risk-aligned, and effective against evolving technology and cyber threats.
· Review existing IT & Cyber Controls to validate design sufficiency, eliminate gaps, and improve precision, clarity, and testability.
· Partner with technology and risk teams to ensure uplifted IT & Cyber Controls remain aligned to the bank's procedures.
20% – Issues Management & Reporting
· Oversee the end-to-end issues management lifecycle—from issue identification and root-cause analysis to remediation planning and closure.
· Track interim milestones, monitor issue aging, and escalate any at-risk or overdue items to leadership.
· Partner with risk owners to ensure remediation actions are sustainable, well-designed, and reduce residual risk to acceptable levels.
10% – IT & Cyber Control Review, Mapping & Governance
· Perform IT & Cyber Control-to-risk-domain mapping as per 2LOD ITRM and ensure appropriate coverage across the IT & Cyber Control environment.
· Establish and maintain an IT & Cyber Control Governance Framework including IT & Cyber Control taxonomy, lifecycle management, quality standards, assurance cadence, and reporting structures.
10% - Issues Management Resolution:
· Ensure issues are resolved by committed due dates; document and track interim milestones to completion; manage interim status of issues; escalate any at-risk or overdue issues.
What program/technology/software knowledge is essential for this role? Describe in what capacity the selected candidate will be using it:
· Archer working experience must
· Technology savvy / self-sufficient with excellent working knowledge of Confluence, SharePoint, MS Office applications (including Excel and PowerPoint), Archer, Tableau/Power BI
· Advanced organizational and follow-up abilities
· Proven written communications skills.
· Project Management skills
· Ability to deliver on tight timelines when required
Must-have Skills/Experiences and/or Education, certifications, qualifications, designations:
· 4+ years in the financial services or other regulated industries
· 5-7 years of experience in a risk and control function such as risk management, internal audit, compliance
· Effective communication skills (written and oral)
· Initiative-taking professional
Nice-to-have Skills/Experience and/or Education, certifications, qualifications, designations:
· Technology savvy / self-sufficient with excellent working knowledge of Confluence, SharePoint, MS Office applications (including Excel and PowerPoint), Archer, Tableau/Power BI
Soft kills:
· Advanced organizational and follow-up abilities
· Proven written communications skills.
· Project Management skills
· Ability to deliver on tight timelines when required