VP, Technology & Cybersecurity Governance

Job Overview

We are seeking a highly experienced Vice President to lead our Technology Governance program and team reporting within the Cyber Security organization. This role requires a strategic leader with proven experience in financial services to own the cyber program strategy, charter, and associated metrics; develop a standard framework for governance alignment; uplift policies, standards, and controls; establish continuous control monitoring; and maintain the risk taxonomy.

• Develop a governance program strategy and revise associated execution plans, operating model and KPIs.
• Uplift the cyber program strategy, charter, and associated metrics; define program accountability across the enterprise and advisor communities, including our presence in India and recent acquisitions.
• Confirm program framework to include industry, regulatory and audit testing requirements; align and assess policy and standard population to identify gaps and opportunities for improvement, including global governance.
• Establish traceability based on the standard framework for policies, standards, controls, and risks leveraging available tools and resources including automation.
• Take accountability for remediation items tied to governance findings, such as documentation or control gaps.
• Lead the control monitoring project including refining strategy, roadmap, use cases, and action plans to demonstrate time and risk reduction.
• Collaborate across Technology Governance, Risk and Controls organization, Business Information Security Officers, Enterprise Risk Management, Internal Audit, and technology and cybersecurity subject matter experts.
• Maintain regulatory requirements such as annual policy and standard reviews, and established enterprise standards and processes (e.g., enterprise policy templates).
• Provide consultation relative to shifting landscape and impact on governance (e.g., AI standards).
• Lead, mentor, and manage a team providing oversight and quality assurance.

• 8+ years of experience successfully operating in a governance leadership role within cybersecurity and technology for a highly regulated financial services firm.
• 5+ years articulating, driving and measuring successful development or transformation in technology and cybersecurity.
• 5+ years partnering across business lines and the third line of defense, influencing outcomes to meet governance, security, risk, regulatory and business objectives.

• Leading by example, pulling up sleeves, and going in deep to successfully build out and execute against established plans.
• Strong understanding of what a good governance program looks like.
• Strong interpersonal and presentation skills, with the ability to communicate complex technical concepts to business stakeholders.
• Strong project management, prioritization, and organizational capabilities, including the ability to identify roadblocks and risks to proactively address.
• Understanding of key frameworks (e.g., NIST, CIS), industry alignment, while being detail-oriented to properly articulate clear and appropriate policies, standards, controls, risks, etc. and tie everything together.
• Proven ability to develop team competencies and skills.
• Experience with Archer, JIRA, Service Now, GRC/control automation tools.

• Experience implementing process improvement through technology, automation, artificial intelligence.
• Related technical experience in cybersecurity, product, or technology.

$ – $ (actual base salary varies based on factors such as relevant skill, prior experience, education, and geographic location).

Principals only. EOE.