Technology Risk Manager

**Technology Risk Manager**:

- Mexico City, Mexico; London, United Kingdom
- Risk Management
- 317300

**Job Description**:
**About The Role**:
**Grade Level (for internal use)**:
11
** About the Role**:
**The Team**:The Risk and Compliance Department at S&P Global identifies, measures, and mitigates key risks while ensuring regulatory compliance. We work with divisional and corporate stakeholders to implement effective strategies and develop policies, provide expert advice, and deliver training to promote ethical conduct and adherence to regulations across the organization.

**The Role**:The Technology Risk Manager will support the Director, Technology & Cyber Risk Management in advancing the Technology Risk framework and instilling a culture of proactive risk management. This position resides in the Second Line of Defense and is tasked with supporting the operationalizing the framework and coordinating key efforts in providing divisional oversight. This role will focus on tactical execution, detailed risk analysis and advisory, and cross-divisional alignment to support effective and risk-based identification, prioritization, and mitigation of technology and cyber risks.

This role will report directly to the Director, Technology & Cyber Risk Management

**Impact**:This role is essential for ensuring the operational success of the organization's technology and cyber risk management practices. By focusing on tactical execution, solving complex problems, and supporting key initiatives, the Technology Risk Manager supports effective and fit for purpose technology and cyber risk management.

**Responsibilities**:
**Operational Execution**:

- Assist in the implementation of the Technology & Cyber Risk Management framework across assigned divisions, working closely with First Line stakeholders.

**Risk Advisory and Oversight**:

- Coordinate risk advisory services to help mitigate technology and cyber-related risks within divisions.
- Manage discussions and assessments with stakeholders to interpret risks and their implications for the organization.
- Support delivering divisional-level oversight of technology and cyber risks, aiding in risk identification and management.

**Risk Reporting**:

- Develop and present risk reports to inform and support decision-making by key stakeholders and leadership.
- Contribute to the aggregation of divisional level risks to enterprise views.
- Collaborate with cross-functional teams to ensure reports are comprehensive and reflect diverse perspectives and areas of concern.

**Compliance and Risk Mitigation**:

- Assist divisions in achieving regulatory compliance and adhering to industry standards.
- Provide input on risk mitigation strategies for technology and cyber-related challenges.

**Cross-Divisional Coordination**:

- Act as a liaison between divisions, facilitating communication and coordination to ensure alignment with the risk management framework.

**Data-Driven Decision Making**:

- Conduct analyses of risk data to identify trends and potential areas of concern.
- Provide insights to leadership and key stakeholders to support informed and risk-based decision-making.

**Continuous Process Improvement**:

- Identify and support implementation of opportunities to enhance risk management processes.
- Support the introduction of new tools and techniques to improve efficiency and effectiveness in risk management practices.

**What We’re Looking For**

**Basic Qualifications**:

- 5+ years in the Financial Services, Ratings or Data / Research Industry
- Bachelor's or advanced degree in a relevant field (e.g., Information Security, Risk Management, Business Administration).
- Proven experience in technology risk management with knowledge of technology, information security, operational, third party, and other relevant risks.
- Knowledge of relevant regulations and industry standards including risk frameworks and quantification methodologies.
- Self-starter with ability to drive priorities to completion.
- Effective communication and interpersonal skills, with the ability to act as a business partner by translating complex technical concepts into accessible language for generic audiences.
- Strong analytical skills and ability to articulate guidance clearly and concisely.

**Additional Preferred Qualifications**:

- Excellent Communication skills
- Industry certifications (e.g., CISSP, CISM, CRISC) are a plus.
- Unwavering ethics and integrity, and an ability to stand firm on issues with independence.
- A team player with strong interpersonal, leadership skills, demonstrating confidence, practicality, and resilience.
- Demonstrated ability to support organizational change management.
- Ability to influence and build strong and trusting relationships with senior stakeholders and to collaborate internally and across company organizations.
- Contribute to and foster a culture of collaboration, innovation, and continuous improvement.

**Return to Work**:
Have you taken time