Be an early applicantLess than 25 applicants

Company

Arvest Bank · 4 hours ago

Principal Technology Governance & Control Strategist

United States

Full-time

Remote

Lead/Staff

$103K/yr - $122K/yr

8+ years exp

Maximize your interview chances

BankingFinance

Insider Connection @Arvest Bank

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Serve as a subject matter expert (SME) on compliance and regulatory matters for the IT division.

Provide support for various regulatory activities, including ongoing oversight, regulatory remediation, and regulatory examinations and assessments.

Support examination preparation activities (logistics management, fulfillment of responses to the examination request letter) in the areas that include technology functional areas.

Support execution of the examination on-site activities, e.g., meetings, document requests, matrix management, daily calls, and issue resolution.

Research, assess and analyze the impact of new regulations and pre-exam assessments, including evidence gathering and gap assessments. Provide recommendations for adaptations.

Identify, document, and report potential risks and control deficiencies and associated recommendations for improvement.

Analyze report findings and recommend interventions where needed, proposing solutions to risk and control issues.

Evaluate, operate, and maintain tools or artifacts to capture and publish regulatory assessment results.

Provide expert advice on technology controls and governance, ensuring policies and standards are aligned with regulatory requirements, industry best practices, and the organization's strategic business needs and objectives.

Work with stakeholders to build plans of actions and milestones, track progress against gaps, and communicate changes or risks to plans in a timely manner.

Assess IT controls against IT governance frameworks, ensuring alignment with industry best practices and regulatory requirements.

Review and challenge first-line business units’ programs to support compliance with policies, standards, IT framework best practices, and regulations.

Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance.

Monitor corrective actions and ensure they are on track for appropriate and timely mitigation.

Design and perform quality control procedures, including identifying and defining issues, reviewing, and analyzing evidence, and documenting processes.

Ensure scheduled control checks for Information Technology and line-of-business defined controls are tracked and reported against based on regulatory and industry framework guidance.

Oversee the lifecycle governance within IT Operations, which may include gap analysis during the creation and maintenance of governance documents, including technical writing of policies, standards, and desktop procedures for consistent and clearly defined actionable documents.

Provide reporting metrics, dashboards, and evidence of artifacts within Governance & Controls.

Engage with various technology and internal partner groups to support initiatives that align with the Innovation, Technology and Operations (ITO) division's risk and regulatory objectives. Foster a culture of learning and growth related to effective governance and controls.

Develop and maintain robust relationships, becoming a trusted partner with technology lines of business and assessment teams within all lines of defense to facilitate cross-functional collaboration and progress toward shared goals.

Stay informed about emerging technologies, industry trends, and best practices to ensure the company remains competitive.

Understand and comply with bank policy, laws, regulations, and the bank's BSA/AML Program, as applicable to your job duties. This includes but is not limited to; complete compliance training and adhere to internal procedures and controls; report any known violations of compliance policy, laws, or regulations and report any suspicious customer and/or account activity.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Technology GovernanceRegulatory ComplianceRisk ManagementIT AuditInformation SecurityTOGAF/EA FrameworksITIL Process DesignCloud StrategyAgile Framework (SAFe)NISTPCI ComplianceNIST AI RMFCGEIT CertificationCGRC CertificationCISM CertificationCRISC CertificationCISA CertificationServiceNowRSA ArcherTableau ReportingDashboard DevelopmentCollaboration Skills

Required

Bachelor’s Degree in Computer Science, related field, or equivalent work or military experience.

8 years of experience in one or more of the following areas: Information Security, Technology Governance, Technology Audit, Information Technology Financial Industry Compliance.

Detailed Knowledge of a broad range of IT areas, including but not limited to: TOGAF/EA Methodologies /Frameworks, Security Program Management & Support, ITSM/ITIL Process Design, Cloud strategy, roadmap, & TCO/ROI Analysis, Agile Framework (SAFe), NIST, PCI, Change Enablement, NIST AI RMF.

Deep understanding of risk management policies, methods, standards, processes, governance models, and industry-standard risk analysis approaches.

Able to be a subject matter expert on information risk management, banking IT regulation, and IT governance best practices.

Strategic thinker with strong analytical and problem-solving skills, with the ability to analyze complex business and technology issues.

Proactive and detail-oriented, able to manage multiple priorities.

Excellent leadership and communication skills, with the ability to collaborate effectively with stakeholders at all levels.