Manager, Technology Risk Management

Your opportunity

At Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together.

In Technology Risk Management (TRM), a part of Corporate Risk Management (CRM), we partner with technology and business teams who are implementing technologies and processes to confirm the risks associated with the use of these are identified and managed. We do this to ensure we meet our corporate risk appetite, following an established framework for identifying, evaluating, measuring, monitoring, and reporting that risk in order to protect client assets, client information, and firm assets. You will bring an understanding of technologies in the identity, authentication, and access management space to identify the risks associated with use of these technologies and determine if risks are sufficiently managed.

The Technology Risk Assessment, Issues, Reporting and Regulatory Support Center of Expertise (COE) within Technology Risk Management focuses on the ability to articulate and contextualize technology risk impacts Firm wide. Enabling effective Technology Risk Management oversight through risk identification, governance, risk measurement, reporting and support of departmental, audit, and regulatory needs.

Reporting to the Director of TRM Technology Risk Assessment, Issues, Reporting and Regulatory Support, this position is responsible for coordinating and facilitating key TRM wide activities such as Inherent Risk Review and Scenario Analysis, reporting on these to contextualize technology risk impacts to the Firm. Beyond managing deliverables and due dates, the role requires a proactive approach and critical thinking skills to promote a strong working relationship and best representation of TRM.

What you'll do:

• Actively coordinate and collaborate with TRM teams to execute risk management activities (Inherent Risk Review, Threat Landscape, and Scenario Analysis) as defined by the CoE
• Coordinate Scenario Analysis Capital Stress Testing, including planning, execution, and reporting to contextualize technology, operational resilience, data and information security risk to the Firm
• Analyze data and report on conclusions of the external threat landscape in relation to the company’s inherent risk posture
• Assess internal risk exposure through identification and monitoring of metrics
• Identify, report, and monitor emerging risks in alignment with Enterprise Operational Risk Management program requirements
• Partner with TRM and Technology teams to achieve continuous process improvement and timely response to risk related inquiries and requests

This position is M-F, 8am-5pm local time and a hybrid work model. It will be 4 days in-office, 1 day from home, during standard business hours. It is only available in the areas listed. Candidate must reside or be willing to relocate on their own to one of the listed areas.

Applicants must be currently authorized to work in the United States on a full-time basis without employer sponsorship.

What you have

• 2 + years of experience preferably in Operational/Enterprise Risk Management and/or as an Information Security or Technology Risk practitioner (combination of both preferred)
• Bachelor’s Degree
• Effective prioritization, facilitation, organizational skills and attention to detail
• Strong written and verbal communication skills with shown ability to effectively communicate with Leaders
• Self-motivated, detailed and result oriented learner with ability to excel in fast paced environment
• Experience actively working with GRC tools
• Strong Microsoft Office skills including Copilot
• Demonstrated success working within Risk Management Programs
• Ability to recognize project barriers and resolve them effectively, provide options for solutions