Location: New York,NY, USA
As the Senior Director of IT Risk and Compliance, you will lead our IT Risk and Compliance team, shaping a strategic vision and building on recent successes. You will mentor people managers and spearhead major projects like the Annual IT Risk Assessment and Cyber Maturity Assessment.
Your expertise in leadership, risk management, and stakeholder engagement will drive our GRC strategies, ensuring seamless execution and collaboration. This high-visibility role provides the opportunity to make a significant impact on our organization's reputation and success.
Primary Responsibilities:
Provide strategic leadership to the IT Risk and Compliance team, including the mentorship and development of its managers, in order to foster high-performing, diverse, and engaged teams.
Serve as a member of the IT Governance, Risk, and Compliance (GRC) division's leadership team, shaping and driving the division's strategic initiatives in alignment with the organization's objectives.
Advance the development and implementation of a comprehensive IT Risk Management Strategy—in partnership with Enterprise Risk Management—to support broader business objectives.
Provide IT regulatory compliance services in an intentional and efficient manner.
Drive the engineering development of the GRC platform to support various 2nd Line functions, while taking advantage of process automation and interoperability by design.
Deliver sophisticated IT risk metrics to enterprise senior leaders, designed to inform and facilitate governance decision-making.
Negotiate and collaborate with risk partners across the enterprise to ensure GRC initiatives receive necessary support and alignment.
Apply extensive industry knowledge and commercial awareness to enhance the organization's GRC posture, safeguarding reputation, and systems.
Anticipate, identify, and address issues that may pose risks to the organization, ensuring a vigilant and resilient risk culture.
Direct the resolution of highly complex business problems that have significant GRC implications across the organization.
Represent the organization in industry forums, contributing thought leadership in the field of GRC.
Participate in governance committees in support of IT GRC.
Provide IT GRC thought leadership both internally and externally.
Qualifications:
Bachelor's Degree in Computer Science, Information Systems, Business Administration, or other related field.
Minimum 10 years of IT risk and compliance experience with at least 5 years of leadership experience.
Proven ability to define and deliver strategies and strategic initiatives.
Knowledge of NIST 800-53, NIST Cybersecurity Framework, and NYDFS Cybersecurity Regulation.
Proven ability to negotiate and influence all areas of the company.
Strong leadership and mentorship skills.
Broad knowledge of past, current and emerging information risk and security trends.
Ability to develop and manage relationships with internal and external department leadership and risk partners.
Ability to respond to ambiguity in developing information risk strategy.
Strong organizational management and communication skills.
Preferred:
Master's Degree in Cybersecurity, Management Information Systems, or Business Administration.
CISSP, CRISC, or similar certifications.
Experience with managing enterprise GRC platforms and engineering teams.
Join us to influence and enhance IT compliance and risk management, shape key decisions, and build a best-in-class GRC function, all while advancing your career in a dynamic and supportive environment.
#LI-Hybrid
Compensation Range:
Pay Range - Start:
$153,300.00
Pay Range - End:
$284,700.00
Northwestern Mutual pays on a geographic-specific salary structure and placement in the salary range for this position will be determined by a number of factors including the skills, education, training, credentials and experience of the candidate; the scope, complexity as well as the cost of labor in the market; and other conditions of employment. At Northwestern Mutual, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. Please note that the salary range listed in the posting is the standard pay structure. Positions in certain locations (such as California) may provide an increase on the standard pay structure based on the location. Please c lick here for additional information relating to location-based pay structures.
Grow your career with a best-in-class company that puts our client's interests at the center of all we do. Get started now!
We are an equal opportunity/affirmative action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity or expression, sexual orientation, national origin, disability, age or status as a protected veteran, or any other characteristic protected by law.
If you work or would be working in California, Colorado, New York City, Washington or outside of a Corporate location, please click here for information pertaining to compensation and benefits.
FIND YOUR FUTUREWe're excited about the potential people bring to Northwestern Mutual. You can grow your career here while enjoying first-class perks, benefits, and commitment to diversity and inclusion.