Product Manager - Risk

As a Product Manager in Exposure, Consequence, Impact, Safeguards, (ECIS), Risk Management, you are an integral part of the team that innovates new product offerings and leads the end-to-end product life cycle. As a core leader, you are responsible for acting as the voice of the customer and developing profitable products that provide customer value. Utilizing your deep understanding of how to get a product off the ground, you guide the successful launch of products, gather crucial feedback, and ensure top-tier client experiences.

With a strong commitment to scalability, resiliency, and stability, you collaborate closely with cross-functional teams to deliver high-quality products that exceed customer expectations. The ECIS Risk Management team plays a vital role in supporting the organization by providing independent risk assessment, strategy, and risk & control services. The team aligns with Product Line Managers and works closely with their respective Product teams and other peer organizations to embed risk management into processes and products, identifying, managing, and mitigating operational risks.

• Develops a product strategy and product vision that delivers value to customers
• Manages discovery efforts and market research to uncover customer solutions and integrate them into the product roadmap
• Owns, maintains, and develops a product backlog that enables development to support the overall strategic roadmap and value proposition
• Builds the framework and tracks the product's key success metrics such as cost, feature and functionality, risk posture, and reliability
• Assist with audit RFIs, ensuring timely and accurate responses to inquiries and supporting compliance efforts
• Lead risk remediation initiatives by pinpointing root causes, executing effective solutions, and facilitating core issue closure
• Conduct data analytics to identify risk trends, aggregate thematic risks, and inform decision-making processes
• Manage action plans and CP updates to reflect current risk management strategies, objectives, and compliance with frameworks and standards
• Implement governance processes to reduce risk from failed internal processes, inadequate controls, and emerging threats
• Establish and oversee adherence to policies and standards impacting technology and cyber risks, while maintaining awareness of product team strategies and investment programs
• Apply expertise across multiple security and risk management domains, assessing technology risks as products evolve and developing proactive remediation plans

• 5+ years of experience or equivalent expertise in product management or a relevant domain area
• Advanced knowledge of the product development life cycle, design, and data analytics
• Proven ability to lead product life cycle activities including discovery, ideation, strategic development, requirements definition, and value management
• Holds a BS/BA degree or equivalent experience, with relevant industry certifications such as Certified Information Systems Security and and Certified in Risk and Information Systems Control (CRISC)
• Demonstrates expertise in regulated industries, leveraging technology standards, frameworks, and compliance best practices (e.g., ITIL, NIST, ISO, PCI, SOC, GDPR, SOX, Basel III)
• Proven ability to collaborate with internal and external audits, operational risk management teams, and advocate for subject matter experts
• Advanced proficiency in Office 365, especially Excel, and skilled in using analytical and data visualization tools like Tableau, Power BI, and GRC platforms
• Effectively manages complex projects, including risk assessment and mitigation, delivering results on time and within budget
• Strong communicator, able to convey complex risk concepts to diverse audiences and lead change management initiatives for new frameworks or processes
• Committed to continuous improvement, demonstrating curiosity, empathy, and a collaborative approach to achieving risk management goals

• Demonstrated prior experience working in a highly matrixed, complex organization