Vacancy expired!
Company Federal Reserve Bank of San Francisco
While the SF Fed is a Reserve Bank, we're not what you might expect. We're unreserved here. That means we seek new and diverse perspectives. We spark conversations and encourage debate. We build opportunity. We pursue careers that are true to ourselves. We are looking for people who want to help our country reach its full economic potential. When you join the SF Fed, you join a team of people working together to promote an inclusive economy that works for everyone.At the SF Fed, we believe in the diversity of our people, ideas, and experiences and are committed to building an inclusive culture that is representative of the communities we serve. The SF Fed is an Equal Opportunity Employer.Are you passionate about large bank supervision and being a part of a dynamic team? The Information Technology (IT) Team within the Risk, Policy and Analysis Group's Risk Specialist Team is looking for individuals with a passion for risk to join our team in the role of Senior Risk Specialist. In this role, you will provide subject matter expertise in IT-related areas to the San Francisco Reserve Bank's Large Institution Supervision Group (LISG). LISG is responsible for monitoring and assessing the safety and soundness of large banking institutions, U.S. operations of foreign banking organizations, and significant bank service providers in the District. You will closely interact with numerousindividuals throughout the supervisory community and executive management of supervised firms.Your focus includes leading assessments and examinations over a spectrum of IT and broader aspects of risks from the use, ownership, operation, connectivity, and impact of technology (e.g., cybersecurity, business resiliency, vendor risk management, financial technology and innovation) to determine the effectiveness of a firm's business technology risk management program and validate remediation efforts of identified issues.We empower our people to balance their life and work responsibilities. That's why we offer a flexible hybrid work model that allows you to collaborate with office colleagues on some days, and work from home on others.- Lead or participate in horizontal and firm-specific examinations, providing written conclusions and findings for inclusion in supervisory reports.
- Develop and maintain expertise in cybersecurity/information security, cloud computing, IT operations, IT risk management, and IT internal audit, as well as supervisory expectations and industry practices in those areas.
- Synthesize information from multiple sources to identify industry trends and emerging issues. Identify the implications of these trends, both at the micro and systematic levels and propose approaches to identified issues.
- Develop an understanding of supervisory rating systems applied to large banks (LFI ratings) and service providers (URSIT ratings). Understand the FFIEC framework for supervising service providers and related supervisory expectations contained in the FFIEC IT handbook.
- Assist in the development of firm risk assessments and supervisory strategies, and the vetting of exam scopes and findings. Provide briefings to senior FRS staff and others in the supervisory community.
- Develop comprehensive, creative and agile approaches to evaluating risks and operational resiliency. Analyze informationsecurity and risk management programs to determine an estimated risk and potential impact to the financial institutions andfinancial services industry.
- Prepare informative, well-supported supervisory products and work papers, effectively communicating complex and problematicsupervisory findings, including required actions to senior management and boards of directors. Prepare and deliver written analyses and presentations on firm-specific as well as broader industry trends or emerging risks.
- Provide coaching, training, and mentoring of less experienced colleagues.
- Bachelor's degree in business, technology, or related fields of study. Advanced degrees or professional certifications with an emphasis on internal audit or information security (e.g., CRISC, CISM, CISA, CISSP, CIA) or examiner commission are desired.
- Typically requires seven or more years of direct or comparable banking, financial industry or banking supervision experience with bank examinations, internal audit, or in conducting control assessments at a banking organization or consulting firm is desired.
- Advanced knowledge of common frameworks such as FFIEC, NIST, FSSCC and ISO desired.
- Knowledge of, ability to evaluate, and/or willingness to learn, cybersecurity/information security and technology risks facing complex financial institutions and prudent practices for managing those risks.
- Strong analytical and critical thinking skills demonstrated by the ability to assimilate new information, understand complex topics, and produce sound analysis.
- Excellent written and verbal communication skills and the ability to synthesize complex ideas and explain them clearly.
- Ability to think strategically, bringing a broad perspective on how to translate ideas into executable actions.
- Ability to thrive as a member of a team and to build collaborative working relationships with colleagues across teams and at different levels.
- Strong organizational skills, project management skills and attention to detail.
- This position requires access to confidential supervisory information, which is limited to "Protected Individuals." Protected Individuals include, but are not limited to, U.S. citizens and U.S. nationals, U.S. permanent residents who are not yet eligible to apply for naturalization, and U.S. permanent residents who have applied for naturalization within six months of being eligible to do so or who will sign a declaration of intent to apply for naturalization before they begin employment.
- Ability to travel between 15-30 percent.
Vacancy expired!