This list contains only the countries for which job offers have been published in the selected language (e.g., in the French version, only job offers written in French are displayed, and in the English version, only those in English).
Govern the end-to-end TRC operating model (charter, membership, governance cycle) and ensure timely execution of the annual TRC calendar
Lead planning and run the full meeting lifecycle (pre-scrums, material collection, quality checks, timelines, minutes, and action item tracking)
Facilitate TRC meetings and drive alignment across stakeholders
escalate decisions, risks, and actions as required
Coordinate and quality-assure TRC and technology risk materials (content readiness, metrics, narrative clarity) for internal governance bodies and broader enterprise forums (e.g., Board Risk Committee, Executive Risk Committee, Entity Technology Risk Committees, Information Security Risk Committee)
Own quarterly TRC reporting deliverables, including Top TRC Risks, TRC-level risk assessments, and risk metrics reporting
Support the Technology Risk Champion and Business Risk Manager in executing ERM-required activities (e.g., risk program embedding, risk appetite, enterprise risk assessments, committees/escalation, coordination with 2LoD)
Coordinate Corporate Risk Assessment submissions for C1: Operational Resilience, including development of required inputs (risk drivers, trends, mitigations, residual/target ratings, trend status) and updating the risk register (e.g., OpenPages/Archer as applicable)
Drive the annual/bi-annual update of Key Mitigation Strategies (Success Factors) for C1: Operational Resilience, including status updates and documented impact to risk ratings
Coordinate quarterly Technology Key Business Risks content for ERM risk discussions and Quarterly Operational Reviews, ensuring technology-wide coverage (C1: Operational Resilience and Information Security) and tracking mitigation progress
Identify, assess, and socialize emerging risks for enterprise-wide Technology risks
ensure emerging risks are appropriately evaluated and proposed for risk register updates
Partner with stakeholders to ensure audit and regulatory responses related to technology risk and C1: Operational Resilience are complete, accurate, and delivered on time
Requirements
Demonstrated experience min 4 years in risk governance, technology risk management, operational resilience, or related control/risk disciplines within a complex organization
Strong program management and governance skills, including running structured cadences, managing dependencies, and driving action-item closure
Proven ability to build and quality-assure executive-level risk materials (dashboards, narratives, metrics, and committee packs)
Experience partnering with 2LoD teams (e.g., ERM, Compliance, Operational Risk, Information Security) and supporting audit/regulatory engagements
Comfortable operating across multiple stakeholders and influencing outcomes without direct authority
Clear written and verbal communication skills, with high level attention to detail and an ability to translate complex risk topics into concise messaging for senior audiences