Head of Technology Risk Management

Position Summary

Lead a newly created Technology Risk Management function providing strategic guidance on risk mitigation, escalation, and business resilience across Third Party Risk Management (TPRM), IT Escalation, and IT Business Continuity/Disaster Recovery. Chair the Technology Governance & Risk Management Steer Co to ensure visibility to potential/accepted risk and recommended actions; report regularly to executive leadership.

• Establish technology risk processes, KPIs, and management reporting to govern accepted risk; improve policies/tooling and leverage automation/AI.
• Chair Technology Governance & Risk Management Steer Co.
• Direct TPRM: vendor risk assessments, ongoing monitoring, escalations/remediation; manage and escalate issues; review/approve risks/findings.
• Support Legal/Procurement updates to Third-Party Minimum-Security Baseline contract addendum; provide ZTD control review/monitoring.
• Define/manage TPRM training and communications; optimize TPRM process/tools/support with automation/AI.
• Own and optimize IT Escalation Management: record/investigate/escalate/close events; implement KRIs.
• Oversee IT disaster recovery and business continuity planning, execution, escalation; ensure IT/application resiliency; establish KPIs; oversee tabletop reviews and recovery testing.
• Partner with IT/business/leadership to mature risk management; foster continuous improvement.

• Bachelor’s required; advanced degree preferred.
• 8+ years in technology risk management and leadership; hands‑on IT risk frameworks, DR, and vendor risk.
• Strong risk/incident response/regulatory understanding; proven global, multi‑divisional leadership.

• Risk frameworks (ISO 27001, NIST, SOX, PCI-DSS); third-party/vendor risk and audit tools; IT BC/DR; incident response, risk reporting, control testing.

US base salary range: $164,000–$266,000; eligible for short- and long-term incentives; healthcare/insurance day one, 401K match + profit sharing, 4 weeks vacation.