×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity IT Consultant

Vice President Enterprise Risk Management

Job in Carrollton, Dallas County, Texas, 75011, USA
Listing for: Private National Mortgage Acceptance Company, LLC
Full Time position
Listed on 2026-05-18
Job specializations:
  • IT/Tech
    Cybersecurity, IT Consultant
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below

PENNYMAC

Pennymac (NYSE: PFSI) is a specialty financial services firm with a comprehensive mortgage platform and integrated business focused on the production and servicing of U.S. mortgage loans and the management of investments related to the U.S. mortgage market.

At Pennymac, our people are the foundation of our success and at the heart of our dynamic work culture. Together, we work towards a unified goal of helping millions of Americans achieve aspirations of home ownership through the complete mortgage journey.

A Typical Day

The Vice President Enterprise Risk Management will act as the process owner for all ongoing activities that serve to provide appropriate access to and protect the confidentiality and integrity of customer, employee, and business information in compliance with organization policies and standards. As the VP, Enterprise Risk Management (Supporting IT Infrastructure and SOC-2), you will be responsible for two key areas:
1) overseeing technology risk within our IT Infrastructure domain area and
2) leading the SOC-2 effort for a key product within Pennymac. As a key member of the 2nd Line of Defense, you will play a pivotal role in ensuring the effectiveness of our control environment through testing, supporting compliance initiatives for internal and regulatory audits, and defining or modifying policies and procedures as needed. This position requires a strong understanding of IT infrastructure, SOC-2 criteria and reporting, risk management principles, a keen eye for detail, and the ability to collaborate effectively across various teams.

The VP Enterprise Risk Management will:

  • Serve as a member of the 2nd Line of Defense, identifying, assessing, and monitoring technology risks associated with IT infrastructure processes.
  • Collaborate with IT Infrastructure leadership to provide comprehensive governance and support for technology risks, issues, and the lifecycle of policies and procedures.
  • Perform controls testing activities with a focus on Information Security and the software development and release process against established policies, procedures, and controls to ensure adherence, effectiveness, and identify areas for improvement.
  • Use in-depth knowledge of SOX compliance, SOC-2 reporting, privacy laws and IT security, as well as strong customer skills, to serve as the SOC-2 subject matter expert.
  • Provide expert guidance and support to development and operations teams on integrating risk management principles into daily operations and new projects including risk reporting, remediation plans, and follow-up on action items.
  • Develop and oversee risk assessments based on Pennymac’s ERM framework.
  • Stay current with emerging technology risks, regulatory changes, and industry trends related to cloud infrastructure, data management, and cybersecurity.
  • Demonstrates behaviors which are aligned with the organization’s desired culture and values.
  • Perform other related duties as required and assigned.
What You’ll Bring
  • Bachelor’s Degree from an accredited college or equivalent work experience
  • 6+ years of relevant work experience in IT, Compliance, Risk and/or Audit
  • Extensive, hands‑on experience in SOC-2 assessments and the generation of SOC-2 reports.
  • Proven experience in technology risk management, internal controls, or IT audit roles.
  • Strong understanding of risk assessment methodologies and control frameworks.
  • Strong knowledge of relevant regulations and reporting standards (e.g., NYDFS, GLBA, NIST CSF, CRI Profile, CCPA, SOC 2, various financial/sector-specific regulations).
  • Practical experience with and strong understanding of AWS cloud technologies and security services.
  • Demonstrated ability to develop, implement, and maintain IT policies and procedures.
  • Excellent analytical, problem‑solving, and decision‑making skills.
  • Must be a team player with strong attention to detail and able to work independently.
  • Ability to manage multiple priorities and meet deadlines in a fast‑paced environment.
  • Strong analytical thinking, process management and quality control.
  • Excellent critical thinking, problem solving, and sound judgment.
  • Exceptional written and verbal communication skills, with the ability to…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search