Cloud Solution and Risk SME [Governance & Security experience]

  • Irving, TX
  • Posted 23 days ago | Updated 2 days ago

Overview

Hybrid
$130,000 - $140,000
Full Time

Skills

Cyber Security
Public Cloud
Cloud Security
AWS
Azure
GCP
Risk Assessment
Vulnerability assessment
financial domain
DevOps
CISSP
CISA
CRISC
CGEIT
CDPSE
ISO Risk
ITSM
Internal Audit

Job Details

Job Details:

Role: Cloud Solution and Risk SME [Governance & Security experience]

Location: Irving, TX/Hybrid

 

Responsibilities:

  • Identify risk, assess residual risk, and coordinate Corrective Action Plan (CAP) completion through collaboration with information security and engineering teams
  • Negotiate with IA (Internal Audit; Third Line of Defense) and ORM (Operational Risk Management; Second Line of Defense), and with Policy Owners when more cloud-friendly policy changes need to be influenced
  • Advise engineers on application of Policy across multiple concurrent technology domains such as compute, container, DB, middleware, etc.
  • Research origins of Policy in Regulations collaboratively with ICRM (Independent Compliance Risk Management)
  • Engage with and lead advocacy efforts with regulators in Asia and EMEA on Public Cloud in partnership with Government Affairs and Regulatory Engagement teams.
  • Design processes for building and maintaining services in Public Cloud with control in mind
  • Maintain continual assessment of Management Controls Assessment (MCA) Efficacy for Public Cloud
  • Monitor exceptions to dispute policy and identify common root causes of exceptions.
  • Leverage data to examine impacts to Customer Experience and Regulatory breaks.
  • Appropriately assess risk and demonstrate consideration for the firm's reputation and safeguard the Client, its clients, and assets, by:
  • Driving compliance with applicable laws, rules and regulations
  • Adhering to Policy
  • Applying sound ethical judgment regarding personal behavior, conduct and business practices
  • Escalating, managing, and reporting control issues with transparency
  • Influence Application Teams on best practices for MCA.

 

Qualifications:

  • 8+ years relevant work experience in Technology Risk & Controls in a large organization in a heavily regulated industry
  • 3+ years relevant work experience in Public Cloud Technology (Amazon Web Services, Google Cloud Platform, Snowflake, MongoDB Atlas, Azure, etc.)
  • MS Excel required. MS Access, SQL a plus.
  • Consistent, clear, and concise written communication skills
  • Ability to explain concepts consistently to stakeholders, including non-technical audiences
  • Ability to firmly communicate the requirements and position of Policy that must be satisfied
  • Ability to see the big picture with high attention to critical details
  • Demonstrated ability to develop and implement strategy and process improvement initiatives
  • Demonstrated ability to influence change and common-sense approaches to modern risk complexity
  • Demonstrable interest in Public Cloud risk identification and mitigation
  • Strong collaboration and interpersonal skills

 

Preferred Qualifications:

  • Experience working directly with regulators of the financial industry in Asia regionally, or Singapore locally.
  • Risk certifications such as the CIA, CISSP, CISA, CRISC, CGEIT, CDPSE, etc.
  • Certifications in Public Cloud such as AWS Certified Cloud Practitioner, or AWS Certified Security Specialty
  • Experience working with NIST, COBIT, ITIL, CSA, and/or ISO risk and ITSM frameworks
  • Experience in an influence management discipline such as project management or product management
  • Familiarity with DevOps and SRE practices
  • Experience with cloud infrastructure and data services (compute, storage, networking and others).

 

We can offer you:

  • A highly competitive compensation and benefits package
  • A multinational organization with 52 offices in 20 countries and the possibility to work abroad
  • Laptop and a mobile phone
  • 10 days of paid annual leave (plus sick leave and national holidays)
  • Maternity & Paternity leave plans
  • A comprehensive insurance plan including: medical, dental, vision, life insurance, and long-/short-term disability (plans vary by region)
  • Retirement savings plans
  • A higher education certification policy
  • Commuter benefits (varies by region)
  • Extensive training opportunities, focused on skills, substantive knowledge, and personal development
  • On-demand Udemy for Business for all Synechron employees with free access to more than 5000 curated courses
  • Coaching opportunities with experienced colleagues from our Financial Innovation Labs (FinLabs) and Center of Excellences (CoE) groups
  • Cutting edge projects at the world’s leading tier-one banks, financial institutions and insurance firms
  • A flat and approachable organization
  • A truly diverse, fun-loving and global work culture.

 

 

SYNECHRON’S DIVERSITY & INCLUSION STATEMENT

Diversity & Inclusion are fundamental to our culture, and Synechron is proud to be an equal opportunity workplace and is an affirmative action employer. Our Diversity, Equity, and Inclusion (DEI) initiative ‘Synclusive’ is committed to fostering an inclusive culture – promoting equality, diversity and an environment that is respectful to all. We strongly believe that a diverse workforce helps build stronger, successful businesses as a global company. We encourage applicants from across diverse backgrounds, race, ethnicities, religion, age, marital status, gender, sexual orientations, or disabilities to apply. We empower our global workforce by offering flexible workplace arrangements, mentoring, internal mobility, learning and development programs, and more.

All employment decisions at Synechron are based on business needs, job requirements and individual qualifications, without regard to the applicant’s gender, gender identity, sexual orientation, race, ethnicity, disabled or veteran status, or any other characteristic protected by law.

About Synechron