| Overview Of BNY Mellon: |
BNY Mellon is a global financial services company focused on helping clients manage and service their financial assets, operating in 36 countries and serving more than 100 markets. BNY Mellon is a leading provider of financial services for institutions, corporations and high-net-worth individuals, providing superior asset management and wealth management, asset servicing, issuer services, clearing services and treasury services through a worldwide client-focused team.
Team Description: (Overview of the team)
Information Risk Management's (IRM) mission is to partner with the Businesses and other Business Partners to enable client solutions while protecting BNY Mellon from information risks in a balanced control environment. This London-based role is to lead the IRM Metrics & Analytics team - currently 8 people across 3 regions. The Metrics & Analytics team is responsible for creating and publishing metrics, and supporting analysis, providing risk intelligence for the proactive management and governance of information & technology risk.
Job Purpose: (What the job role involves)
The high-level roles and responsibilities would include:
Metrics & Analytics
Responsible for defining, reviewing and developing IRM risk metrics - setting the strategic vision and target state. This includes Key Risk Indicators and Key Performance Indicators that enable and assist better information risk and technology risk management at BNY Mellon. Risk metrics are an integral part of the BNYM risk culture. The correct risk indicators, analysis and reporting enable managers to be in control of their area of responsibility, to be alerted to control failures and to make effect risk management decisions. This person will be a key driver for technology and information risk identification across BNY Mellon.
Responsible for management of the team who will identify, source and collate metrics, and will analyse these data so as to highlight and convey risk opinions and conclusions, through the preparation of periodic reporting in an engaging, informative and valued manner.
Ensuring the correct levels of data integrity and quality are being achieved.
Building and maintaining effective relationships for the sourcing and provision of required data, and engaging with senior risk managers and other stakeholders to understand reporting requirements..
Supporting the annual Metrics Recertification process, to validate and certify that metrics continues to be informative, efficient and actionable report to all the stakeholders.
Support the continuing development and implementation of more granular metrics, such as for regions, countries or Legal Entities.
Developing new ways to visualise data and information, to better engage and inform the recipient, and to convey a coherent risk message in order to aid decision making.
Responsibilities: (Key parts to the job role)
1. Develop and delivery of a sustainable roadmap of risk reporting, concentrating efforts on key business priorities with senior management and business sponsorship.
2. Uses existing analytical and reporting tools and lead/direct appropriate use of third party reporting resources where appropriate.
3. Effectively interpret data and information to enhance the risk reporting strategy, improve decision making and increase efficiency for stakeholders and clients.
4. Develops and drives the team plan to meet the above purposes, supporting the overall IRM strategy.
5. Manages and develops capabilities of a global team of information risk management professionals.
Requirements; (what we are looking for)
Education / Licenses / Certifications
Bachelor's Degree or equivalent work experience required. Previous risk and / or technology audit experience is required. At least one security certification is required, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Management (CISM) or Certified Risk Information Security Control (CRISC)
Experience required, in information risk, information technology and/or technology compliance is preferred.
Experience in business intelligence and data management especially in regards to big data and data visualisation, would be advantageous.
Good knowledge of data exploration and presentation techniques
Demonstrates excellent knowledge of cyber information security, information risk and technology risk concepts.
Exhibits superb stakeholder management and communication skills, as well a strong emphasis on delivery and execution.
Proven awareness and an understanding of risk management, compliance, information protection, regulatory concepts and requirements.
Strong MS Office skills, along with strong verbal and written communication skills.
Expertise in data visualisation and information depiction would be advantageous.
Proven understanding and use of some Industry Best Practices and relevant frameworks, such as NIST, ISO, COBIT, OWASP and ITIL, is required.
Knowledge and understanding of the banking and financial services industry is required.
Knowledge and understanding of relevant laws & regulations in the jurisdictions in which BNY Mellon operates is preferred, along with operational aspects of the business and a thorough understanding of control and risk management concepts.
Highly experienced in working across senior groups regionally and globally. Impacts global and regional groups by communicating information risk matters effectively to senior management, driving and overseeing consistency in our approach, execution and reporting across the global technology and information risk function.
Related experience in Technology, Information Security and Information Risk or another related business area is required and ensuring their adherence to corporate policies and standards.
Good knowledge of Risk Management policies, methods, standards, processes, governance models and in-depth knowledge of industry standard risk analysis approaches.
For over 230 years, the people of BNY Mellon have been at the forefront of finance, expanding the financial markets while supporting investors throughout the investment lifecycle. BNY Mellon can act as a single point of contact for clients looking to create, trade, hold, manage, service, distribute or restructure investments & safeguards nearly one-fifth of the world's financial assets. BNY Mellon remains one of the safest, most trusted and admired companies. Every day our employees make their mark by helping clients better manage and service their financial assets around the world. Whether providing financial services for institutions, corporations or individual investors, clients count on the people of BNY Mellon across time zones and in 35 countries and more than 100 markets. It's the collective ambition, innovative thinking and exceptionally focused client service paired with a commitment to doing what is right that continues to set us apart. Make your mark: bnymellon.com/careers.
Risk and Compliance provide risk and compliance services across all BNY Mellon businesses. Organizationally, Risk and Compliance includes the following groups: Risk Management, Compliance, Global Corporate Security, Information Risk Management and Global Business Continuity. Risk Management oversees and delivers risk services and ensures new business risks are reviewed and approved. Risk Management is organized through Chief Risk Offices for each core business and critical operation. Risk managers provide shared support to BNY Mellon for operational risk services for Global Corporate Trust, Depositary Receipts, Treasury Services and Global Operations in EMEA. Compliance helps ensure BNY Mellon's businesses maintain appropriate processes to comply with applicable laws, regulations, BNY Mellon policies and ethics. This is accomplished through business- and business partner-specific teams of professionals, under centralized global management.
BNY Mellon is an Equal Employment Opportunity Employer.
Primary Location: United Kingdom-Greater London-London
Internal Jobcode: 32955
Organization: Information Risk Management-HR06032
Requisition Number: 1612739