Senior Flood Modeler at Tokio Marine HCC utilizing technical expertise in catastrophe risk modeling. Joining a bright team to lead research and development in risk modeling and analytics.
About the role
- Technology Risk Leader overseeing enterprise-wide technology risk management at Broadridge. Responsibilities include risk assessments, IT audits, AI model risk governance, and M&A due diligence.
Responsibilities
- Develop and lead the technology risk program, including risk assessments, risk appetite alignment, and remediation tracking.
- Manage internal and external IT audits covering applications, infrastructure, access controls, change management, and vendor risk.
- Establish and maintain model governance frameworks, ensuring model validation, monitoring, explainability, and fairness consistent with emerging regulatory expectations.
- Interpret guidelines (FFIEC, NIST, OCC, and other regulators), translate them into actionable controls, and lead exam preparation and response activities.
- Integrate security controls into development pipelines, conduct threat modeling, and perform secure design reviews throughout the CI/CD lifecycle.
- Define and monitor cloud security posture; lead architecture reviews, identity and access management, encryption, and incident response across multi-cloud and microservices environments.
- Assess and strengthen control environments for mainframe systems, batch processing, and change management.
- Conduct due diligence on security, architecture, and operations; lead post-acquisition integration risk mitigation activities.
- Maintain alignment of control frameworks with NIST CSF/800-53, FFIEC, CIS, and COBIT standards; produce governance metrics and executive dashboards.
- Evaluate vendor security controls, SLAs, and remediation progress for cloud and outsourced services.
- Participate in incident management, lessons-learned reviews, and disaster recovery/business continuity testing.
- Mentor team members and partner closely with security, engineering, legal, and compliance teams to embed a culture of secure design.
Requirements
- 8+ years in technology risk, IT audit, information security, or related functions (financial services experience strongly preferred).
- Proven knowledge of NIST 2.0, FFIEC guidance, CIS Controls, and COBIT frameworks.
- Hands-on understanding of AWS, Azure, and GCP architecture, security services, and shared responsibility models.
- In-depth experience with distributed systems, containers, Kubernetes, and resilient architecture design.
- Proficiency with secure SDLC and DevSecOps practices (SAST, DAST, dependency scanning, CI/CD).
- Exposure to AI/ML risk management, model governance, and related regulatory requirements.
- Familiarity with mainframe environments (e.g., z/OS) and associated control practices.
- Experience conducting technical due diligence and integration planning for M&A.
- Strong IT audit execution and remediation management capabilities.
- Solid grasp of IAM, encryption, monitoring, vulnerability management, and incident response practices.
- Exceptional communication and presentation skills with the ability to translate technical risk for executive audiences.
- Bachelor’s degree in Computer Science, Information Systems, Engineering, or related discipline required; advanced degree preferred.
Benefits
- Please visit www.broadridgebenefits.com for information on our comprehensive benefit offerings.
- All Colorado employees receive paid sick leave in compliance with the Colorado Healthy Families and Workplaces Act and other legally required benefits, as applicable.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Data Governance Manager responsible for establishing data governance framework. Leading data quality initiatives and ensuring regulatory compliance at AP+ payments organization.
Senior Clinical Consultant using extensive medical expertise for reviewing claims and assessing treatment costs in a hybrid work environment. Collaborating with internal and external teams on various healthcare solutions.
Microsoft 365 Governance & Operations Lead at Teva managing governance and operations across M365. Leading digital workplace technologies initiatives including Microsoft 365, Power Platform, and emerging GenAI capabilities.
Track and manage project invoicing and reporting for State Street. Liaison with finance teams, vendors, and project managers, enhancing executive reporting and resource planning.
Risk Control Consultant providing risk management expertise to underwriters at Travelers. Evaluating hazards and controls while fostering relationships with clients and stakeholders.
Senior Enterprise Data Governance Professional at Humana defining and implementing data governance programs. Collaborating across departments to enhance data strategy and governance maturity with compliance oversight.
Management of stock and loss prevention at Grupo Boticário focusing on reducing losses and risks. Involves coordinating processes across retail operations and providing training.
Senior Risk Advisor providing risk advisory support for Vanguard’s payment capabilities including debit cards and digital payment models. Collaborating with cross - functional teams to ensure compliance and resilience.
Master Data Governance Analyst at Lincoln Electric tasked with implementing governance initiatives for data integrity. Collaborating across teams to ensure global compliance and effective data management practices.