Senior Technology Governance Consultant

Job Title

Leads the identification, assessment, and mitigation of technology risks to ensure regulatory compliance and a strong control environment. Implements and enforces governance processes and controls, providing oversight and reporting to safeguard critical technology assets and support organizational objectives.

The Cybersecurity Issues Intake Analyst serves as the front door for cybersecurity-related concerns and risk issues across the organization. This role is responsible for receiving, triaging and documenting cybersecurity issues and remediation plans with subject matter experts, ensuring timely visibility, consistent classification, and effective resolution tracking.

The ideal candidate combines strong analytical skills, attention to detail, and foundational cybersecurity knowledge with the ability to communicate clearly across technical and non-technical stakeholders.

Following is a summary of the essential functions for this job. Other duties may be performed, both major and minor, which are not mentioned below. Specific activities may change from time to time.

• Work with key risk stakeholders to identify and evaluate potential cyber issues including performing a risk rating analysis, and recommendation on whether concern should be formally documented as part of issue management routines.
• Ensure timely creation of issue and remediation plan documentation for self-identified, audit and regulatory related cyber issues.
• Collaborate with risk advisors, issues management, audit and regulatory stakeholders to collect and address feedback for issue documentation and remediation plans
• Develop and effectively manage operational metrics related to cyber issues intake initiatives.
• Maintain accurate records of issues and risk stakeholder feedback throughout their lifecycle in applicable tracking systems.
• Monitor issue lifecycle progress and follow up with key stakeholders to ensure timely resolution of challenges/roadblocks that arise.
• Consistently document and communicate intake status, expectations, and next steps to stakeholders
• Provides detailed and timely reporting on technology risk posture and compliance to senior management and regulatory bodies.
• Collaborates with cross-functional teams to integrate governance into technology projects, operations, and governance processes.
• Supports internal and external reporting by preparing documentation, responding to inquiries, and may facilitate control testing.
• Monitors emerging technology risks and regulatory changes, recommending proactive adjustments to governance strategies.
• Manages large, complex technology governance projects and assignments and provides guidance and coaching to junior professionals and project teams within the technology governance domain.
• Drives risk awareness and compliance culture across technology teams through training and communication initiatives.
• Directs comprehensive technology governance assessments and control testing to identify vulnerabilities and ensure effective risk mitigation.
• Implements and continuously improves technology governance frameworks, policies, and procedures.

The requirements listed below are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

1. Bachelor's degree in Information Technology, Information Security, Engineering, or related field.

2. Minimum of 7 years of professional experience in technology governance.

3. Strong knowledge of regulatory requirements and compliance frameworks.

4. Experience applying governance assessment methodologies and control frameworks.

Preferred Qualifications

1. Master's degree in a relevant technical or business discipline.

2. Experience in the financial services industry.

3. Professional certifications such as CRISC, COBIT, CGEIT, CISM3, or equivalent.

4. Strong knowledge of cybersecurity capabilities and frameworks and financial industry regulations.

5. Proven ability to manage complex technology governance projects, programs, and initiatives.

General Description of Available Benefits for Eligible Employees of Truist Financial Corporation:
All regular teammates (not temporary or contingent workers) working 20 hours or more per week are eligible for benefits, though eligibility for specific benefits may be determined by the division of Truist offering the position. Truist offers medical, dental, vision, life insurance, disability, accidental death and dismemberment, tax-preferred savings accounts, and a 401k plan to teammates. Teammates also receive no less than 10 days of vacation (prorated based on date of hire and by full-time or part-time status) during their first year of employment, along with 10 sick days (also prorated), and paid holidays.

For more details on Truist's generous benefit plans, please visit our Benefits site. Depending on the position and division, this job may also be eligible for Truist's defined…