Director of Governance & Risk
The Phoenix Group, New York, NY, United States
Job Title
Director of Governance, Risk, and Controls
Overview A leading organization in the financial services and technology sectors is seeking a highly detail-oriented risk management professional to lead enterprise-wide risk initiatives. This role is centered on identifying, assessing, and mitigating technology, operational, and third-party risks within a highly regulated environment, with a primary focus on overall risk management.
Key Responsibilities
Lead comprehensive risk assessments across the organization’s technology, operational, and third-party vendor relationships.
Develop, implement, and maintain risk management frameworks aligned with industry standards such as NIST or ISO27001.
Act as a translator of technical risk factors into clear, business-oriented language for executive leadership and non-technical stakeholders, and vice versa.
Conduct detailed analysis of projects, processes, and third-party relationships to identify potential vulnerabilities and risks, especially relating to data security, privacy, and vendor dependencies.
Oversee third-party risk management programs, including vendor due diligence, risk assessments, and ongoing monitoring.
Articulate risk issues and mitigation strategies effectively to different audiences, ensuring that risks are understood and managed appropriately at all levels.
Support regulatory compliance efforts and internal control initiatives, with an openness to developing skills related to audits as needed.
Create dashboards, risk reports, and metrics to provide a clear view of risk exposure, control effectiveness, and compliance status.
Collaborate with legal, compliance, and technology teams across regions to develop risk criteria and ensure regulatory alignment.
Maintain a high level of attention to detail across all risk mitigation activities to prevent overlooked vulnerabilities.
Qualifications
Extensive risk management experience within the financial services or technology industries, with a strong focus on technology and operational risks.
Familiarity with industry frameworks such as NIST or ISO27001 (either is acceptable).
Exceptional ability to translate technical risk into business impact and communicate effectively across diverse audiences.
Highly organized, analytical, and detail-oriented, with the capability to identify hidden vulnerabilities and craft mitigation strategies.
Experience managing third-party/vendor risk programs, including risk assessments and ongoing monitoring.
Comfortable analyzing and communicating risks related to various technology projects and vendor relationships.
Industry experience in financial services, technology, or related fields preferred; experience in the legal industry is also a plus.
Certifications are not mandatory but considered a bonus.
Strong business acumen, with excellent communication skills and the ability to articulate complex risk concepts simply and effectively.
Willingness to learn and expand knowledge in audit components and regulatory reporting as needed.
The Phoenix Group Advisors is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace and prohibit discrimination and harassment of any kind based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. We strive to attract talented individuals from all backgrounds and provide equal employment opportunities to all employees and applicants for employment.
#J-18808-Ljbffr
Overview A leading organization in the financial services and technology sectors is seeking a highly detail-oriented risk management professional to lead enterprise-wide risk initiatives. This role is centered on identifying, assessing, and mitigating technology, operational, and third-party risks within a highly regulated environment, with a primary focus on overall risk management.
Key Responsibilities
Lead comprehensive risk assessments across the organization’s technology, operational, and third-party vendor relationships.
Develop, implement, and maintain risk management frameworks aligned with industry standards such as NIST or ISO27001.
Act as a translator of technical risk factors into clear, business-oriented language for executive leadership and non-technical stakeholders, and vice versa.
Conduct detailed analysis of projects, processes, and third-party relationships to identify potential vulnerabilities and risks, especially relating to data security, privacy, and vendor dependencies.
Oversee third-party risk management programs, including vendor due diligence, risk assessments, and ongoing monitoring.
Articulate risk issues and mitigation strategies effectively to different audiences, ensuring that risks are understood and managed appropriately at all levels.
Support regulatory compliance efforts and internal control initiatives, with an openness to developing skills related to audits as needed.
Create dashboards, risk reports, and metrics to provide a clear view of risk exposure, control effectiveness, and compliance status.
Collaborate with legal, compliance, and technology teams across regions to develop risk criteria and ensure regulatory alignment.
Maintain a high level of attention to detail across all risk mitigation activities to prevent overlooked vulnerabilities.
Qualifications
Extensive risk management experience within the financial services or technology industries, with a strong focus on technology and operational risks.
Familiarity with industry frameworks such as NIST or ISO27001 (either is acceptable).
Exceptional ability to translate technical risk into business impact and communicate effectively across diverse audiences.
Highly organized, analytical, and detail-oriented, with the capability to identify hidden vulnerabilities and craft mitigation strategies.
Experience managing third-party/vendor risk programs, including risk assessments and ongoing monitoring.
Comfortable analyzing and communicating risks related to various technology projects and vendor relationships.
Industry experience in financial services, technology, or related fields preferred; experience in the legal industry is also a plus.
Certifications are not mandatory but considered a bonus.
Strong business acumen, with excellent communication skills and the ability to articulate complex risk concepts simply and effectively.
Willingness to learn and expand knowledge in audit components and regulatory reporting as needed.
The Phoenix Group Advisors is an equal opportunity employer. We are committed to creating a diverse and inclusive workplace and prohibit discrimination and harassment of any kind based on race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, genetic information, disability, or veteran status. We strive to attract talented individuals from all backgrounds and provide equal employment opportunities to all employees and applicants for employment.
#J-18808-Ljbffr