AI Governance Program Manager

As an industry-leading fintech provider, COCC delivers innovative, comprehensive technology solutions and strategic partnerships throughout the Northeastern United States. Listed among American Banker's Fin Tech 100 and the Inc. 5,000 fastest growing companies in the nation, COCC inspires the industry with innovation and top-quality support. Designated a Top Workplace in Connecticut and a nationally Certified Great Place to Work, COCC recognizes employees as the core of our success.

Inspiring you to become extraordinary in work and life.

COCC is seeking an experienced AI Governance Program Manager to lead and mature our enterprise AI governance, risk, and compliance program. This role is ideal for a seasoned GRC professional who understands AI and emerging technologies and can bring structure, oversight, and clarity to how AI is deployed across a regulated environment. You will play a critical role in ensuring AI capabilities are used responsibly, securely, and in alignment with regulatory expectations and organizational risk appetite.

You will work closely with security, legal, technology, and business teams to shape and evolve our enterprise AI governance program.

COCC offers a collaborative environment, career growth, and all the benefits you’d expect from an award-winning employer, including:

• Hybrid schedules and ample paid time off allowing you work/life balance and flexibility
• Customized training and onboarding to support you in your first year at COCC
• Robust employee development programs aligned with career pathing objectives
• Cutting-edge training and educational resources from vendors like SANS, Plural Sight and CBTNuggets
• Generous PTO offerings, benefits and competitive compensation
• On-site fitness centers, wellness incentives, and lifestyle spending accounts
• Tuition Reimbursement
• One-on-one career coaching
• DEIB initiatives championing inclusion and encouraging you to bring your whole self to work
• Financial planning assistance with certified professionals

• Develop, implement, and maintain the enterprise AI governance framework, policies, standards, and procedures
• Establish AI risk management processes aligned with regulatory expectations and industry frameworks
• Define AI governance roles, responsibilities, accountability structures, and escalation processes
• Establish AI risk tiering and classification methodologies
• Conduct and oversee AI risk assessments for internally developed AI, third party platforms, vendors, and customer facing AI solutions
• Evaluate AI risks related to security, data exposure, bias, explainability, model drift, and regulatory compliance
• Partner with security and architecture teams to define compensating controls and risk treatment plans
• Maintain the enterprise AI inventory and AI risk register
• Monitor evolving AI regulations, supervisory guidance, and industry expectations
• Support internal audits, regulatory examinations, and external assessments related to AI governance
• Develop governance reporting, metrics, and artifacts for regulators and executive leadership
• Coordinate AI related policy exceptions, approvals, and risk acceptances
• Partner with vendor management and procurement teams to assess AI risks in third party relationships
• Collaborate with information security teams to support secure AI deployment and data protection practices
• Prepare and present AI governance and risk posture updates to senior leadership and board committees
• Drive enterprise awareness and training initiatives related to responsible AI use

• Masters degree in Cybersecurity, Information Technology, Risk Management, Data Science, or a related field preferred
• Seven or more years of experience in information security, technology risk, IT audit, or GRC
• Experience working in regulated industries such as financial services, fintech, healthcare, insurance, or critical infrastructure
• Strong understanding of AI and machine learning technologies including generative AI and large language models
• Experience developing governance frameworks, policies, standards, and risk assessment methodologies
• Familiarity with NIST AI RMF, NIST Cybersecurity Framework, FFIEC…