Associate on Clearing Policy & Market Structure team providing insights into market structure changes. Supporting regulatory engagement and developing materials for external communication.
About the role
- Technology Risk Leader overseeing enterprise-wide technology risk management at Broadridge. Responsibilities include risk assessments, IT audits, AI model risk governance, and M&A due diligence.
Responsibilities
- Develop and lead the technology risk program, including risk assessments, risk appetite alignment, and remediation tracking.
- Manage internal and external IT audits covering applications, infrastructure, access controls, change management, and vendor risk.
- Establish and maintain model governance frameworks, ensuring model validation, monitoring, explainability, and fairness consistent with emerging regulatory expectations.
- Interpret guidelines (FFIEC, NIST, OCC, and other regulators), translate them into actionable controls, and lead exam preparation and response activities.
- Integrate security controls into development pipelines, conduct threat modeling, and perform secure design reviews throughout the CI/CD lifecycle.
- Define and monitor cloud security posture; lead architecture reviews, identity and access management, encryption, and incident response across multi-cloud and microservices environments.
- Assess and strengthen control environments for mainframe systems, batch processing, and change management.
- Conduct due diligence on security, architecture, and operations; lead post-acquisition integration risk mitigation activities.
- Maintain alignment of control frameworks with NIST CSF/800-53, FFIEC, CIS, and COBIT standards; produce governance metrics and executive dashboards.
- Evaluate vendor security controls, SLAs, and remediation progress for cloud and outsourced services.
- Participate in incident management, lessons-learned reviews, and disaster recovery/business continuity testing.
- Mentor team members and partner closely with security, engineering, legal, and compliance teams to embed a culture of secure design.
Requirements
- 8+ years in technology risk, IT audit, information security, or related functions (financial services experience strongly preferred).
- Proven knowledge of NIST 2.0, FFIEC guidance, CIS Controls, and COBIT frameworks.
- Hands-on understanding of AWS, Azure, and GCP architecture, security services, and shared responsibility models.
- In-depth experience with distributed systems, containers, Kubernetes, and resilient architecture design.
- Proficiency with secure SDLC and DevSecOps practices (SAST, DAST, dependency scanning, CI/CD).
- Exposure to AI/ML risk management, model governance, and related regulatory requirements.
- Familiarity with mainframe environments (e.g., z/OS) and associated control practices.
- Experience conducting technical due diligence and integration planning for M&A.
- Strong IT audit execution and remediation management capabilities.
- Solid grasp of IAM, encryption, monitoring, vulnerability management, and incident response practices.
- Exceptional communication and presentation skills with the ability to translate technical risk for executive audiences.
- Bachelor’s degree in Computer Science, Information Systems, Engineering, or related discipline required; advanced degree preferred.
Benefits
- Please visit www.broadridgebenefits.com for information on our comprehensive benefit offerings.
- All Colorado employees receive paid sick leave in compliance with the Colorado Healthy Families and Workplaces Act and other legally required benefits, as applicable.
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Lead IT Governance, VMO, and Innovation teams ensuring alignment between strategy and control. Drive strategic initiatives and influence decisions for TI at Grendene.
Risk Manager managing Garney’s insurance and surety programs. Ensuring financial stability through risk mitigation and insurance coverage for catastrophic losses.
Consultant Data Governance focusing on data integration and governance within asset management. Involved in a strategic transformation program post merger of major asset management players.
Technical Product and Platform Risk Manager at Capital One focusing on risk management for digital products. Partnering with leaders to identify and mitigate potential risks across technology platforms.
Technical Product and Platform Risk Senior Manager at Capital One leveraging risk management for digital products while collaborating with executives and stakeholders in financial sector.
Business Analysis Manager addressing operational risk capital and scenario analysis at Capital One. Collaborating with leaders to develop strategies impacting the bottom line.
Senior Manager responsible for transforming business process governance in risk management at Capital One. Collaborating with risk and business leaders to implement innovative solutions and mitigate risks.
Senior Lead Business Execution Consultant at Wells Fargo driving execution and delivery governance efforts. Collaborating with product and technology partners to establish frameworks and standards for effective delivery.
Global Portfolio Strategy Governance Lead managing execution of portfolio strategy across multiple business lines and regions. Maximizing market impact of product lines with governance and functional excellence.