VP, Due Diligence at MUFG Tempe, AZ 85285
Do you want your voice heard and your actions to count? Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 5th largest financial group in the world (as ranked by S&P Global, April 2020).
In the Americas, we're 13,000 colleagues, striving to make a difference for every client, organization, and community we serve.
We stand for our values, developing positive relationships built on integrity and respect.
It's part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility.
We're a team that accepts responsibility for the future by asking the tough questions and owning the solutions.
Join MUFG and be empowered to make your voice heard and your actions count.
Job Summary Reporting to the Head of Information Risk Due Diligence, the Due Diligence - Project Management VP is responsible for supporting various Second Line of Defense (SLoD) Information/Technology Risk Assessment activities - including Project Management Support for in-scope assessments, building assessment pipeline and related reporting/socialization routines, periodically reviewing and challenging First Line of Defense (FLoD) technology project management and governance procedures as well as controls for compliance with the bank's Information Risk Management framework.
You will be a team player and a thought leader contributing to further enhancement of our Information Risk Assessment framework and services.
You will be an excellent communicator working with partners across the covered entities and lines of defense.
Major ResponsibilitiesSpecifically, you will:
o Act as an Information/Technology Risk Project Management SME and a key point of contact for the SLoD Information Risk Assessment team to manage the SLoD Information Risk assessment activities o Review and challenge various information risk related project activities as well as Risk and Control Self Assessments (RCSAs) performed by the FLoD o Work with assessors and their management team in building assessment plans and working across stakeholders (from FLoD, SLoD and other business functions) to manage assessments per the plan.
o Report status and output of assessments to senior management and other stakeholders o Work closely with the FLoD on the definition of action plans for risk issues identified during the assessments o Contribute to further enhancing and maturing our SLoD Information Risk Assessment framework and services o Maintain and enhance assessment platform and related toolset (e.
g.
GRC Tool, SharePoint and Excel) through advance level of hands-on knowledge and detail oriented proactive approach o Monitor and report ongoing remediation activities by the FLoD o Prepare related reports and metrics for the team o Support related regulatory matters and special projects/initiativesGenerally, you will:
o Be responsible for the highest quality in your deliverables and self-directed individual proactively managing assessment pipeline, plans and related reporting o Be responsible for effective stakeholder management and work across various parts of the organization o Communicate information risk matters to senior management and other stakeholders o Assist in maintaining group-wide assessment documentation and reportingEducation:
o Bachelor's degree requiredCertifications:
o 1 or more required - PMP, CRISC, CISM
Experience:
o 8
years related experienceKnowledge:
o You have SME level proven experience and familiarity with Project Management Methodologies (e.
g.
Waterfall, Agile) o Strong experience in managing projects in information/technology risk domain o Understanding of software development best practices, technology infrastructure components and technology management processes o Proven knowledge of information risk management frameworks, policies and tools (GRC Archer, OpenPages) o Understanding of control and risk management concepts and knowledge of the operational aspects of the information risk business o Understanding of respective industry best practices (e.
g.
, NIST, ISO, COBIT, OWASP, ITIL) o Knowledge of risk management policies, methods, standards, processes, governance models and industry standard risk analysis approaches o Knowledge of the financial services industry and its regulations/laws o Knowledge of current industry trends in information risk management o Hands-on advanced level knowledge of Excel (Pivots, Data Connections and Scripting), SharePoint, MS-Project and GRC Tools (e.
g.
Archer)Skills:
o Superior organization skills o Detail oriented o Strong MS Office skills along with strong verbal and written communication skillsAbilities:
o Able to influence and collaborate well with internal and external stakeholders, strong team player o Able to clearly communicate related policies, procedures and guidelines o Self-motivated, proactive and able to work with minimal supervision The above statements are intended to describe the general nature and level of the work being performed.
They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified.
We are proud to be an Equal Opportunity / Affirmative Action Employer and committed to leveraging the diverse backgrounds, perspectives, and experience of our workforce to create opportunities for our colleagues and our business.
We do not discriminate in employment decisions on the basis of any protected category.
A conviction is not an absolute bar to employment.
Factors such as the age of the offense, evidence of rehabilitation, seriousness of violation, and job relatedness are considered in all employment decisions.
Additionally, it's the bank's policy to only inquire into a candidate's criminal history after an offer has been made.
Federal law prohibits banks from employing individuals who have been convicted of, or received a pretrial diversion for, certain offenses.
.
Estimated Salary: $20 to $28 per hour based on qualifications.
In the Americas, we're 13,000 colleagues, striving to make a difference for every client, organization, and community we serve.
We stand for our values, developing positive relationships built on integrity and respect.
It's part of our culture to put people first, listen to new and diverse ideas and collaborate toward greater innovation, speed and agility.
We're a team that accepts responsibility for the future by asking the tough questions and owning the solutions.
Join MUFG and be empowered to make your voice heard and your actions count.
Job Summary Reporting to the Head of Information Risk Due Diligence, the Due Diligence - Project Management VP is responsible for supporting various Second Line of Defense (SLoD) Information/Technology Risk Assessment activities - including Project Management Support for in-scope assessments, building assessment pipeline and related reporting/socialization routines, periodically reviewing and challenging First Line of Defense (FLoD) technology project management and governance procedures as well as controls for compliance with the bank's Information Risk Management framework.
You will be a team player and a thought leader contributing to further enhancement of our Information Risk Assessment framework and services.
You will be an excellent communicator working with partners across the covered entities and lines of defense.
Major ResponsibilitiesSpecifically, you will:
o Act as an Information/Technology Risk Project Management SME and a key point of contact for the SLoD Information Risk Assessment team to manage the SLoD Information Risk assessment activities o Review and challenge various information risk related project activities as well as Risk and Control Self Assessments (RCSAs) performed by the FLoD o Work with assessors and their management team in building assessment plans and working across stakeholders (from FLoD, SLoD and other business functions) to manage assessments per the plan.
o Report status and output of assessments to senior management and other stakeholders o Work closely with the FLoD on the definition of action plans for risk issues identified during the assessments o Contribute to further enhancing and maturing our SLoD Information Risk Assessment framework and services o Maintain and enhance assessment platform and related toolset (e.
g.
GRC Tool, SharePoint and Excel) through advance level of hands-on knowledge and detail oriented proactive approach o Monitor and report ongoing remediation activities by the FLoD o Prepare related reports and metrics for the team o Support related regulatory matters and special projects/initiativesGenerally, you will:
o Be responsible for the highest quality in your deliverables and self-directed individual proactively managing assessment pipeline, plans and related reporting o Be responsible for effective stakeholder management and work across various parts of the organization o Communicate information risk matters to senior management and other stakeholders o Assist in maintaining group-wide assessment documentation and reportingEducation:
o Bachelor's degree requiredCertifications:
o 1 or more required - PMP, CRISC, CISM
Experience:
o 8
years related experienceKnowledge:
o You have SME level proven experience and familiarity with Project Management Methodologies (e.
g.
Waterfall, Agile) o Strong experience in managing projects in information/technology risk domain o Understanding of software development best practices, technology infrastructure components and technology management processes o Proven knowledge of information risk management frameworks, policies and tools (GRC Archer, OpenPages) o Understanding of control and risk management concepts and knowledge of the operational aspects of the information risk business o Understanding of respective industry best practices (e.
g.
, NIST, ISO, COBIT, OWASP, ITIL) o Knowledge of risk management policies, methods, standards, processes, governance models and industry standard risk analysis approaches o Knowledge of the financial services industry and its regulations/laws o Knowledge of current industry trends in information risk management o Hands-on advanced level knowledge of Excel (Pivots, Data Connections and Scripting), SharePoint, MS-Project and GRC Tools (e.
g.
Archer)Skills:
o Superior organization skills o Detail oriented o Strong MS Office skills along with strong verbal and written communication skillsAbilities:
o Able to influence and collaborate well with internal and external stakeholders, strong team player o Able to clearly communicate related policies, procedures and guidelines o Self-motivated, proactive and able to work with minimal supervision The above statements are intended to describe the general nature and level of the work being performed.
They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified.
We are proud to be an Equal Opportunity / Affirmative Action Employer and committed to leveraging the diverse backgrounds, perspectives, and experience of our workforce to create opportunities for our colleagues and our business.
We do not discriminate in employment decisions on the basis of any protected category.
A conviction is not an absolute bar to employment.
Factors such as the age of the offense, evidence of rehabilitation, seriousness of violation, and job relatedness are considered in all employment decisions.
Additionally, it's the bank's policy to only inquire into a candidate's criminal history after an offer has been made.
Federal law prohibits banks from employing individuals who have been convicted of, or received a pretrial diversion for, certain offenses.
.
Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
