Job Description

Who we are:

Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has global presence across the Americas, APAC, India and EMEA.

Within Technology Risk, the Global Cyber Defense and Intelligence (GCDI) organization identifies malicious activity, manages the lifecycle of vulnerabilities within GS technologies, and investigates and manages threats across the firm. We are a team of security, software, and product engineers that allow the firm to respond appropriately to firm risks using detection models, security architecture, and cutting-edge cyber threat analysis to manage internal and external threats against the firm.

Your Impact:

In this position you will work closely with GCDI Leadership, Technology Risk Governance, Regulatory and Audit teams and partner with colleagues across Core Engineering, Firmwide Digital Risk Office, Operational Risk and Internal Audit to identify issues, provide root cause analysis / evaluation, manage the remediation, closure, monitoring, reporting and escalation of GCDI issues to promote comprehensive, transparent, accurate and timely issue resolution. In this role you will help define issues and be comfortable directly engaging and managing challenges from other divisions across the firm.

How you will fulfill your potential:

Your responsibilities will include leading the issue management program for GCDI with specific focus on critical control gaps and those areas cited by regulators as requiring urgent remediation. You will oversee an established highly effective Business-as-Usual (BAU) control framework, driving assurance automation, and continuous control and process improvements, while managing the Risk and Controls Self- Assessments (RCSA) process and ensuring alignment with the firmwide Enterprise Risk Management Framework (ERMF).

Responsibilities Include:

• Management and continuous improvement of the Issue Management Program across GCDI and ensure alignment with the firmwide Enterprise Risk Management Framework (ERMF)

• Maintain relevant GCDI owned policies, standards and frameworks to support the best practices of the group

• Provides effective remediation and thoughtful critical challenge when needed, to help facilitate the design and implementation of automated controls/solutions and metric

• Demonstrates strong interpersonal skills with ability to foster collaborative partnerships across the Three Lines of Defense to ensure integrated risk oversight

• Review and challenge the comprehensiveness and quality of issue management output from teams, providing strategic input where needed

• Ensure timely and efficient execution of issue management projects resulting in high-quality output

• Manage expectations and act as point of escalation on project delays or other challenges

Basic Qualifications:

• Demonstrates experience in effective ongoing program management, including continuous program improvement over time

• Knowledge of, and experience with, root cause analysis techniques and other components of an effective issue management program

• Capable of driving outcomes independently and escalating issues as encountered in a timely manner

• Understanding of ever-evolving governance processes and regulatory environments within financial services

• Excellent verbal and written communication skills, with an ability to clearly explain complex technical challenges

• Attention to detail and ability to prioritize workload

• Demonstrated ability to work collaboratively within and across project teams, functional and business units

• Clear sense of ownership and driven to manage tasks to completion

• Ability to multitask and prioritize work effectively

• Highly motivated self-starter

Preferred Qualifications:

• 8+ years' program management experience

• Engineering background

• Demonstrated experience and understanding of cyber security landscape

#TechRiskCybersecurity #EnterpriseRiskManagement #IssueManagementLeader