Key Responsibilities

AI Governance Program Management

• Lead day-to-day execution of the enterprise AI governance program
• Manage governance processes that support the review, assessment, approval, monitoring, and oversight of AI-enabled technologies
• Ensure governance activities are performed consistently, efficiently, and in accordance with established policies and standards
• Continuously improve governance workflows, controls, documentation, and operating procedures
• Maintain audit-ready processes and records that support internal and external reviews

AI Risk Assessment & Governance Review

• Conduct risk assessments for AI solutions, intelligent automation initiatives, and emerging technology use cases
• Evaluate factors such as:
  • Business impact
  • Operational risk
  • Regulatory considerations
  • Data sensitivity
  • Customer impact
  • Technology complexity
• Prepare risk summaries, recommendations, and supporting materials for governance and leadership review
• Facilitate governance decisions and ensure appropriate documentation of outcomes
• Identify potential control gaps and recommend mitigation strategies

Vendor & Third-Party Technology Oversight

• Support governance activities related to third-party technology providers and AI-enabled vendor solutions
• Coordinate vendor reviews, technology disclosures, and supporting documentation
• Maintain inventories and records associated with AI-enabled vendor products and services
• Partner with Vendor Management and Risk teams to support third-party governance requirements
• Ensure external technology solutions are appropriately reviewed through established governance processes

Monitoring & Ongoing Governance Operations

• Coordinate recurring reviews of AI systems and technology solutions
• Track:
  • Material technology changes
  • Risk findings
  • Remediation activities
  • Governance action items
• Ensure governance documentation remains current and complete
• Support monitoring activities that evaluate ongoing compliance with governance standards
• Coordinate follow-up reviews when significant changes occur

Stakeholder Engagement & Program Adoption

• Partner with business, technology, legal, compliance, and risk stakeholders to support effective governance adoption
• Provide guidance on governance requirements, review processes, and documentation expectations
• Promote consistent application of policies, standards, and governance practices across teams
• Support training, awareness, and communication efforts related to responsible AI adoption
• Serve as a trusted advisor on governance processes and risk management considerations

Reporting & Documentation

• Maintain governance records, inventories, decision logs, and supporting documentation
• Prepare materials for leadership reviews, governance committees, and executive reporting
• Develop metrics and reporting that provide visibility into governance activities, risk posture, and program effectiveness
• Support audit, compliance, and regulatory inquiries through documentation and evidence collection
• Ensure governance decisions are traceable, well-documented, and defensible

Cross-Functional Collaboration

• Partner with:
  • Technology and engineering teams
  • Data and analytics teams
  • Legal and compliance functions
  • Vendor management teams
  • Information security and privacy stakeholders
  • Internal audit and risk management groups
• Help align governance practices with broader enterprise risk and compliance programs

Qualifications

Experience

• 7+ years of experience in one or more of the following areas:
  • Technology risk management
  • Governance, risk, and compliance (GRC)
  • AI governance
  • Model risk management
  • Information security governance
  • Regulatory compliance
  • Third-party risk management
• Experience supporting governance programs, risk assessments, compliance reviews, or technology oversight initiatives
• Experience working in regulated industries preferred

Technical & Regulatory Knowledge

• Familiarity with:
  • AI governance and responsible AI concepts
  • Model risk management principles
  • Technology risk frameworks
  • Third-party risk management practices
  • Information security and privacy controls
• Working knowledge of industry frameworks and standards such as:
  • NIST Cybersecurity Framework
  • NIST AI Risk Management Framework
  • SOC reporting frameworks
  • Data privacy regulations
  • Technology governance and compliance standards
• Experience with governance, risk, compliance, or workflow management platforms preferred

Professional Skills

• Strong organizational and program management skills
• Excellent written and verbal communication abilities
• Ability to synthesize technical, business, and risk information into actionable recommendations
• Strong stakeholder management and cross-functional coordination skills
• Detail-oriented with a focus on documentation quality and process discipline
• Ability to manage multiple priorities in a fast-paced environment

Education

• Bachelor's degree in Information Systems, Cybersecurity, Risk Management, Business, Law, or a related field preferred
• Equivalent professional experience will be considered