- Company Name
- FORVIS MAZARS SA
- Job Title
- Technology Risk Senior Manager
- Job Description
-
**Job Title:** Technology Risk Senior Manager
**Role Summary:** Lead the design, implementation, and continuous improvement of the firmwide technology and cyber risk framework, providing independent oversight and strategic advisory to senior technology stakeholders. Operate within the Second Line of Defence to ensure technology and AI initiatives align with risk appetite, regulatory requirements, and ethical standards.
**Expectations:**
- Maintain and enhance a resilient risk management framework covering cybersecurity, data governance, and AI.
- Deliver objective oversight, challenge, and remediation recommendations to senior stakeholders.
- Generate timely, actionable risk reports for senior management and governing committees.
- Foster a risk‑aware culture and embed enterprise risk processes across all service lines.
- Provide people‑management leadership for the risk team.
**Key Responsibilities:**
1. Evaluate and document compliance of cybersecurity, technology, and data governance controls against internal policies, ISO 27001, Cyber Essentials, and regulatory standards.
2. Lead oversight and challenge of Information Security risk management, ensuring alignment with strategic objectives.
3. Develop and refine risk‑measurement methodologies to model the technology and cyber risk profile.
4. Conduct oversight assessments of technology change and AI‑related projects, identifying vulnerabilities, compliance gaps, and ethical issues.
5. Monitor regulatory updates (data protection laws, AI regulations) and ensure compliance across all initiatives.
6. Oversee ethical AI implementation, addressing bias, fairness, and transparency.
7. Produce regular reports and updates to senior management, detailing risks, mitigation strategies, and KPI validation.
8. Maintain stakeholder relationships to strengthen the technical control environment.
9. Advise on emerging technology and digital risks, recommending actions and strategies.
10. Guide the development of a robust data‑governance framework ensuring high data quality and regulatory compliance.
11. Promote risk‑management practices and culture aligned with risk appetite and strategy.
12. Manage and develop the Enterprise Risk Management team.
**Required Skills:**
- Expertise in technology risk, data governance, information security, and AI risk management within regulated sectors.
- Proven ability to engage, present to, and challenge senior stakeholders as an independent function.
- Deep knowledge of legal and regulatory requirements related to cybersecurity, data privacy, and AI.
- Strong understanding of AI technologies, machine learning, and analytics.
- Excellent communication, analytical, and problem‑solving skills.
- Self‑motivated, proactive, and capable of leading a team.
**Required Education & Certifications:**
- Bachelor’s or Master’s degree in Computer Science, Information Technology, Risk Management, or related field.
- Professional certifications: CISSP, CISM, CRISC, CISA, or equivalent.
- Additional certifications in data governance or AI ethics are a plus.