VP, Technology and Operations Risk and Control Management

at Synchrony in Chicago, Illinois, United States

Job Description

Job Description:

Role Summary/Purpose:

This position is a leadership role responsible for leading first line of defense risk management for Platform and Functional Technology teams, in adherence with Company’s Risk Management Framework and Corporate Strategy.

While this is an individual contributor role, the role has responsibility over a wide range of Technology activities that enables Synchrony business platforms and functional areas, and requires significant interaction with employees across various Synchrony functions and different levels of the organization. The individual will work closely with multiple teams within the Tech & Ops function, various business functions, Independent Risk Management (2LOD), Audit (3LOD), and executive management. The role requires a strong leader who can raise 1LOD risk management core capabilities and champions proactive risk management.

We’re proud to offer you choice and flexibility. At Synchrony, our way of working allows you to have the option to work from home, near one of our Hubs or come into one of our offices. Occasionally you may be required to commute to our nearest office for in person engagement activities such as business or team meetings, training and culture events.

Essential Responsibilities:

+ Develop and implement risk management structure and cadence to enhance risk management and control effectiveness in the Platform and Functional Technology areas, including teams that roll up to Technology Platform Leaders and teams that roll up to Functional Technology Leaders (all reporting into the CIO)

+ Lead risk assessment to identify, evaluate and prioritize risk treatment in the above areas

+ Monitor business strategy and industry trends to proactively identify and address emerging risks (e.g. risks from business growth and integration, risks from usage of Generative AI, etc.)

+ Work with management to establish risk mitigation strategies and provide guidance on control enhancement to ensure key risks are appropriately managed

+ Identify critical areas to monitor and escalate issues and findings to appropriate stakeholders

+ Collaborate with cross-functional teams (e.g. Technology leaders, product owners, Independent Operational Risk Management, etc.) to integrate risk management considerations into the design, development, and deployment of new or change in technology, products, services, and processes

+ Serve as subject matter expert in operational risk management matters to 1LOD teams

+ Identify themes, trends, and enhancement opportunities to strengthen processes and controls and regularly review incident/problem resolution to ensure change/improvement to controls are executed

+ Collaborates with process owners to assess controls as part of RCSA process and identify any gaps in process, risk, and control documentation

+ Prepare and present updates to senior leadership and relevant stakeholders on the status of risk management activities

+ Provides feedback and collaborates with Tech & Ops teams on relevant governance documents to support first line activities and manage risk

+ Ensure that teams adhere to relevant enterprise standards for risk management & governance requirements, including Synchrony’s enhanced business change governance process

+ Lead ad hoc team projects/initiatives focusing on proactive risk management and to ensure risk management standards are met

+ Partners with Tech & Ops executives to prepare for Regulatory exams and MRA closures

+ Promotes risk-awareness and overall effectiveness of risk management programs

+ Perform other duties and/or special projects as assigned

Qualifications/Requirements:

+ Bachelor’s degree and minimum 10 years of either IT, IT Risk, Operational Risk, Audit or Compliance experience OR in lieu of a degree, High School Diploma/G.E.D. and minimum 15 years of either IT, IT Risk, Operational Risk, Audit or Compliance experience

+ Demonstrated experience working with regulatory compliance such as FFIEC, SOX

+ Demonstrated experience working with industry risk management frameworks such as CobIT, ITIL, NIST, ISACA

+ Experience and demonstrated track record for providing consultancy and assurance services for IT strategy, policies and governance

+ Ability to travel roughly 10%

Desired Characteristics:

+ Technical and operational experience with Agile Software Development, IT risk management, and standard industry practices with demonstrated experience assisting the business with the identification, governance and management of IT/operational risk

+ Relevant certification such as CISA, CISSP, CRISC, CISM, are highly desirable

+ Knowledge and/or work experience in compliance with consumer financial protection laws is a plus

+ Demonstrate experience driving improvements across complex organizations and processes of varying levels of maturity

+ Advanced problem-solving skills and ability to work collaboratively within and across functional teams to resolve complex problems with innovative solutions

+ Proven experience executing with accuracy, on time and while dealing with ambiguity

+ Experience working with industry standard maturity models

+ Strong presentation and communication skills with a demonstrated business presence while interacting with senior business executives

+ Strong analytical skills and the ability to evaluate risk/reward tradeoffs appropriate to maintaining risk appetite

+ Action and detail oriented, excellent organization and prioritization skills

+ Proven experience developing and influencing a balanced perspective resulting from the consolidation and analysis of information from multiple perspectives, in a balanced and timely manner

+ Independent worker with awareness of when to escalate and engage others

+ Demonstrate commitment to continuous improvement

+ Proven experience with partnering, collaborating and influencing across a large multilayered organization at all levels

+ Proven experience handling multiple, and competing priorities across all stakeholder groups and effectively resolving competing priorities and interests with minimal disruptions

+ Influence and role model behaviors that will lead to a ‘STRONG’ risk environment

Grade/Level: 14

The salary range for this position is 150,000.00 – 250,000.00 USD Annual and is eligible for an annual bonus based on individual and company performance.

Actual compensation offered within the posted salary range will be based upon work experience, skill level or knowledge.

Salaries are adjusted according to market in CA, NY Metro and Seattle.

Eligibility Requirements:

+ You must be 18 years or older

+ You must have a high school diploma or equivalent

+ You must be willing to take a drug test, submit to a background investigation and submit fingerprints as part of the onboarding process

+ You must be able to satisfy the requirements of Section 19 of the Federal Deposit Insurance Act.

+ New hires (Level 4-7) must have 9 months of continuous service with the company before they are eligible to post on other roles. Once this new hire time in position requirement is met, the associate will have a minimum 6 months’ time in position before they can post for future non-exempt roles. Employees, level 8 or greater, must have at least 18 months’ time in position before they can post. All internal employees must consistently meet performance expectations and have approval from your manager to post (or the approval of your manager and HR if you don’t meet the time in position or performance expectations).

Legal authorization to work in the U.S. is required. We will not sponsor individuals for employment visas, now or in the future, for this job opening. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identit