×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Senior Technology Risk Officer - Information Risk Oversight Leader

Job in Charlotte, Mecklenburg County, North Carolina, 28245, USA
Listing for: Truist
Full Time position
Listed on 2026-01-12
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below

Senior Technology Risk Officer – Information Risk Oversight Leader

Truist

Serve as the independent oversight and effective challenge function (BU CRO). The Senior Technology Risk Officer will act as a strategic risk oversight leader for the Information Risk Oversight (IRO) program transformation efforts; assist the Chief Information Risk Officer (CIRO) and senior leadership team with oversight process re-engineering, sustainability, and optimization. They evaluate policies and standards for enterprise-wide application and impact, provide guidance to senior leaders across the company on critical/ significant control failures and issues, and serve as a senior risk advisor on technology strategy.

This leader will partner across the IRO team to lead efforts on the continuous monitoring program, shared services framework enhancements, strategy oversight and alignment, and focus on AI business case development and/or support.

Job Details

• Job Type: Full‑time



Work Shift:

1st shift (United States of America)

• Language Fluency:
English (Required)

Key Responsibilities
  • Provide independent risk oversight (second line of defense) enterprise‑wide for Enterprise Control Functions through effective identification, mitigation, monitoring, and reporting of operational, technology, compliance and strategic risks.
  • Offer strategic risk advisory to ECF leads (Chief Information Security Officer, Chief Data Officer, Chief Technology Officer, etc.) that supports Truist’s strategies and objectives while operating within established risk appetites.
  • Lead engagement of peer institution second‑line functions to influence the industry build of the tech risk functions.
  • Lead execution of independent second‑line testing/evaluations (e.g., Red Team / Penetration Testing); work is typically commissioned by the Board, the CEO, and/or the CRO.
  • Ensure that resources, activities, and initiatives are aligned to enable and sustain achievement of business objectives within forecasted spend rates while reducing risks.
  • Provide independent assessment and oversight of the maturity of technology risk domains (e.g., Cyber, Service Delivery & Operations, Data Management, etc.) and adequacy of controls.
  • Review and attest to/challenge the adequacy of risk assessments produced by Business Unit Risk Management.
  • Serve as member of the Technology Risk Committee and participate in the Enterprise and Board Risk Committees and the Board Technology Committee when applicable.
  • Ensure effective regulatory engagement practices and structure, including responses to impacted ECF groups.
  • Encourage and monitor risk education, skills training, and adoption of goals to improve risk culture and awareness across the enterprise.
  • Engage on ECF Risk policy governance; provide direction and guidance in the development, implementation, and communication of policies, procedures, and standards.
  • Monitor, assess, and challenge significant third‑party and vendor relationships within Enterprise Technology.
  • Develop and maintain effective communication channels with other BU CROs, control functions, senior BU management, and regulatory agencies.
  • Lead, manage, and develop teammates directly and indirectly; influence cybersecurity talent management through recommendations to Truist senior leadership.
  • Participate in applicable mergers and acquisition target evaluation and develop independent risk analyses where needed.
Required Qualifications
  • Advanced degree in business or a finance‑related discipline, or equivalent education and training.
  • Twenty years of experience managing people with demonstrated high competency in recruiting, developing, and coaching/mentoring.
  • Fifteen years of experience in a financial institution (or large corporate equivalent) with emphasis on risk management or equivalent work experience.
  • Ten years of large ECF and related technology operations, including extensive knowledge of technology policy, procedures and regulations.
  • Knowledge of key technology rules/regulations and technology risk management practices (e.g., FFIEC, COBIT, NIST, ITIL).
  • Strong leadership skills and the ability to lead direct and indirect teammates.
  • Excellent communication (verbal and written),…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search