Essential Functions and Qualifications The Information Risk Officer IRO III reports to Senior Information Risk Officer (SIRO) or the Corporate Senior Information Risk Officer (C-SIRO. Overall responsibility is to work with his/her SIRO/C-SIRO to ensure that internal controls related to information risk management are sound and effective. S/he will assist the SIRO and in some cases, lead in the execution and delivery of the business information risk management initiatives specific to their business/business partner area. S/he is responsible for building and sustaining a risk-aware culture and mindset among employees, contractors and service providers. S/he is focused to reduce the likelihood of reputational and regulatory impacts due to non-compliance to the company’s information risk management’s policies and standards, including local procedures specific to the his/her business/business partner areas. Job holder must be able to effectively handle multiple tasks simultaneously. Work impacts information security activities within a defined business or business partner area. S/he would need to on-boarding applications with the Cyber Security Program while collaborating with the Information Security Division, Technology and the businesses on implementation of key control initiatives supported through this program. Job holder must be able to effectively handle multiple tasks simultaneously with cross regional focus. S/he must be comfortable interacting with team members, Senior Business and IT Management, and skilled in delegation. S/he must be able to track multiple projects simultaneously. Job holder must have strong leadership, excellent communication and negotiation skills. S/he must be able to lead projects that require collaboration with other stakeholders to develop and implement consensual decisions. Must be well-organized; solution oriented and have strong process management skills. A working knowledge of regional and global initiatives, including cross team efforts should be displayed. This job may require supervision of Information Risk Specialists. Business ExpertiseS/he should have experience within the Financial Services sector and be familiar with the operational aspects of the business area that they will support and a thorough understanding of control and risk management concepts. This includes having a conceptual understanding of the specific risks that exist within a particular line of business and how these risks may be addressed and a thorough understanding of control and risk management concepts. S/he must possess an excellent knowledge of security systems and applications and be able to enforce and communicate related policies, procedures and guidelines. Apply proficiency of all government regulations and standards including but not limited to National Institute of Standards and Technology (NIST), Federal Information Security Management Act (FISMA), Gramm Leach Bliley Act (GLBA), HUD Handbook, Sarbanes Oxley (Sox), National Housing Act, etc. when making recommendations and decisions. Problem Solving Candidate will have excellent analytical and problem solving skills. Interactions / Interpersonal Skills S/he must be adept at building and motivating technical teams and possess ability to build strategic relationships and influence people at all levels of the organization. Excellent influencer and collaborator, people motivator, ability to translate technical issues into business terms, leverages risk control techniques to achieve business objectives. Liaison with other business unit, operations, technology, legal and compliance staff.
B.S. or B.A. or equivalent work experience required. 10 – 12 years Compliance, Audit or Information Risk related experience preferred. Fluency in English. Security certification is beneficial, such as Certified Information Security Management (CISM) or Certified Information Systems Auditor (CISA)
For over 230 years, the people of BNY Mellon have been at the forefront of finance, expanding the financial markets while supporting investors throughout the investment lifecycle. BNY Mellon can act as a single point of contact for clients looking to create, trade, hold, manage, service, distribute or restructure investments & safeguards nearly one-fifth of the world’s financial assets. BNY Mellon remains one of the safest, most trusted and admired companies. Every day our employees make their mark by helping clients better manage and service their financial assets around the world. Whether providing financial services for institutions, corporations or individual investors, clients count on the people of BNY Mellon across time zones and in 35 countries and more than 100 markets. It’s the collective ambition, innovative thinking and exceptionally focused client service paired with a commitment to doing what is right that continues to set us apart. Make your mark: bnymellon.com/careers.
Client Service Delivery (CSD) brings together BNY Mellon’s key operational areas into one global team to better support the company’s businesses and serve clients around the world. CSD helps clients to conduct business, service assets, and engage in transactions in 35 countries and more than 100 markets. At every stage of the investments lifecycle – creating, trading, clearing, settling, holding, servicing, managing, distributing and restructuring assets – CSD is working to make BNY Mellon the recognized industry service quality and productivity leader. Client Service Delivery manages investment monitoring, measurement and processing services for our clients. Our solutions include Securities Operations, Fund Administration, Transfer Agency, Outsourcing, Performance Measurement and other related services.
BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer.
Minorities/Females/Individuals With Disabilities/Protected Veterans.
Primary Location: United States-Pennsylvania-Pittsburgh