In Corporate Risk Management, we provide an integrated risk management strategy that supports the delivery of predictable financial and operational performance in order to produce successful client and shareholder outcomes. We are organized around six primary functions: Bank Risk, Enterprise Risk, Information Security Risk, Market and Investment Risk, Model Risk and Operational Risk. Within each of these areas, we develop a framework for how much risk we are willing to accept as a firm and establish processes for identifying, evaluating, measuring, monitoring and reporting against that framework.
The Information Security Risk Management (ISRM) team is responsible for the development and maintenance of Charles Schwab’s Information Security Risk Management programs, including the Information Security Policy, which is periodically reviewed and approved by the Board, the oversight and documentation of the information security strategy, and the implementation of the framework. The ISRM team is also responsible for various assurance and consulting services including testing of applications and systems for vulnerabilities, conducting risk and compliance assessments, performing risk assessments for vendors, and providing information security requirements and reviews for legal contracts. The ERM Program Implementation Team within ISRM will help to support ongoing “business as usual” risk management activities by integrating ERM program requirements into ISRM workflows. This hands-on role will provide the right candidate with an excellent opportunity to ensure that Schwab’s Information Security Risk strategies are seamlessly executed.
8+ years of experience in Operational/Enterprise Risk Management and/or as an Information Security or Privacy Risk practitioner (combination of both preferred).
3+ years of people managing experience.
A Bachelor’s Degree required.
Strong understanding of RCSA initiatives, ideally including the development of such programs at large financial institutions.
Ability to identify root causes of issues and clearly align failures to the corresponding controls.
Risk management principles, methodologies and tools and governance principles in a financial services environment.
Experience actively working with GRC tools such as Archer, MetricStream, Open Pages, etc.
Information security risk management principles, policy and governance in a financial services environment.
A strong understanding of risk data management and analysis from technical controls and ability to translate into clear and concise commentary and reporting.
Strong written and verbal communications skills with proven ability in communicating with senior executives and regulators.
Self-motivated, able to take ownership of issues and bring them to conclusion.
Strong interpersonal skills/ability to develop relationships with peers in business unit and central functions.
Relocation expenses are negotiable.
Internal Number: 20180604-3725
About Charles Schwab
We believe that, when done right, investing liberates people to create their own destiny. We are driven by our purpose to champion every client’s goals with passion and integrity. We respect and appreciate the diversity of our employees, our clients, and the communities we serve. We challenge conventions strategically to create value for our clients, our firm and the world. We live and bring to life the concept of ‘own your tomorrow’ every day. We champion our employee strengths, guide their development, and invest in their long-term success. We hire optimistic, results-oriented, curious, innovative, and adaptable people with the desire to help our clients and one another succeed.
As a company, we were established by Chuck over 40 years ago to champion Main Street over Wall Street, and to help Americans transform themselves from earners to owners. Through advocacy and innovation, we work to make investing more affordable, accessible and understandable for all. As we enter our fifth decade, we are looking for talented, innovative and driven people who believe they can help themselves, and our clients, create a better future.