Program Manager Technology Risk & Governance
Apply NowCompany: Bank of Hawaii
Location: Honolulu, HI 96817
Description:
Job Description
Under the direction of the Manager, responsible for independent risk management activities over the Bank of Hawaii technology footprint covering core technology infrastructure, information security, and enterprise resilience as part of the second line of defense Risk organization. This position contributes to the development and maintenance of an effective Technology Risk Management program to comprehensively identify, assess, mitigate, manage, monitor and report technology risk. Supports the establishment of, and participates in activities that ensure adherence to, technology risk policies and procedures. Contributes to the design and implementation of business practice standards for Information Technology (IT) and Information Security (IS). Identifies, manages, and reports on the company's IT and IS risks, including evaluating the adequacy and effectiveness of IT and IS controls. Assesses business units' compliance with applicable laws, regulations, regulatory requirements and Bank policies and procedures as they pertain to IT and IS domains.
Responsibilities
Qualifications
Education: Bachelor's degree from an accredited institution or equivalent work experience. Master's Degree preferred. Possess IT or risk certifications such as CISA, CRISC, CGEIT, CISSP.
Experience: Minimum 8 to 12 years of experience in a supervisory role in technology or risk management to include minimum 5 years working in IT risk management. Experience with IT risk management consulting and project management experience desired. Strong understanding of technology infrastructure, information security, and enterprise resilience.
Technical Skills: Demonstrated proficiency and advanced expertise with personal computers in a networked environment and Microsoft Office applications (Outlook, Word, Excel, Powerpoint). Knowledge of or ability to use Bank software and systems.
Other Job Qualifications: Excellent verbal and written communication skills to include interpersonal and presentation skills. Must have the ability to define approaches to solving complex problems including conducting analysis, determining work steps, defining work plans, and setting deadlines. Must be analytical, detail oriented and organized. Must be flexible and able to meet demanding deadlines and handle multiple priorities. Effective and efficient team player with excellent interpersonal skills, who can also resolve problems independently. Must demonstrate leadership experience and ability. Able to work with internal and external stakeholders of varying levels. Must be able to work flexible hours including holidays, weekends and evenings as needed. Must be able to commute as required.
Under the direction of the Manager, responsible for independent risk management activities over the Bank of Hawaii technology footprint covering core technology infrastructure, information security, and enterprise resilience as part of the second line of defense Risk organization. This position contributes to the development and maintenance of an effective Technology Risk Management program to comprehensively identify, assess, mitigate, manage, monitor and report technology risk. Supports the establishment of, and participates in activities that ensure adherence to, technology risk policies and procedures. Contributes to the design and implementation of business practice standards for Information Technology (IT) and Information Security (IS). Identifies, manages, and reports on the company's IT and IS risks, including evaluating the adequacy and effectiveness of IT and IS controls. Assesses business units' compliance with applicable laws, regulations, regulatory requirements and Bank policies and procedures as they pertain to IT and IS domains.
Responsibilities
- Establishes close partnerships with the front-line Technology organization, including the Chief Information Security Officer and Chief Technology Officer, and third line Technology Audit by coordinating risk engagement and insights across all lines of defense.
- Provides oversight of the firm's technology risk footprint through ongoing monitoring, formal review and challenge activities, targeted risk reviews, technology policy and standard assurance, and other activities e.g., transformation review and challenge.
- Supports independent risk oversight of key technology components of the firm's digital transformation initiatives, including key emerging technology risks (e.g., Artificial Intelligence, cloud technologies, and third-party service providers).
- Represents second line in technology governance forums, committees, and working groups.
- Conducts the independent assessment and challenge of the first line's risk management and adherence to policy and standard requirements.
- Performs all other miscellaneous responsibilities and duties as assigned.
Qualifications
Education: Bachelor's degree from an accredited institution or equivalent work experience. Master's Degree preferred. Possess IT or risk certifications such as CISA, CRISC, CGEIT, CISSP.
Experience: Minimum 8 to 12 years of experience in a supervisory role in technology or risk management to include minimum 5 years working in IT risk management. Experience with IT risk management consulting and project management experience desired. Strong understanding of technology infrastructure, information security, and enterprise resilience.
Technical Skills: Demonstrated proficiency and advanced expertise with personal computers in a networked environment and Microsoft Office applications (Outlook, Word, Excel, Powerpoint). Knowledge of or ability to use Bank software and systems.
Other Job Qualifications: Excellent verbal and written communication skills to include interpersonal and presentation skills. Must have the ability to define approaches to solving complex problems including conducting analysis, determining work steps, defining work plans, and setting deadlines. Must be analytical, detail oriented and organized. Must be flexible and able to meet demanding deadlines and handle multiple priorities. Effective and efficient team player with excellent interpersonal skills, who can also resolve problems independently. Must demonstrate leadership experience and ability. Able to work with internal and external stakeholders of varying levels. Must be able to work flexible hours including holidays, weekends and evenings as needed. Must be able to commute as required.