WHO WE ARE
Led by the Chief Information Security Officer (CISO), Technology Risk secures Goldman Sachs against hackers and other cyber threats. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring cybersecurity risk, and designing and driving implementation of cybersecurity controls. The team has global presence across the Americas, APAC, India and EMEA.
Within the 1st Line of Defense, Technology Risk - Digital and Risk Assurance is the Monitoring & Testing (M&T) team responsible for evaluating the design and operating effectiveness of Engineering key controls.
YOUR IMPACT
The role will be a key addition to the M&T team and will oversee the independent evaluation of the key controls to address risk associated with IT infrastructure, including networks, operating systems, and cloud environments. The role will focus on evaluating the reliability, security, and availability of critical IT systems.
The candidate will work closely with Digital Risk Office and other stakeholders across the Technology Risk and broader Engineering organization.
HOW YOU WILL FULFILL YOUR POTENTIAL
You will be expected to identify areas of improvement in the design and effectiveness of key controls including automation; build and sustain relationships with stakeholders, establish a culture of collaboration, and stay up to date with industry and regulatory changes.
Responsibilities include:
Managing team’s execution of control evaluation program across IT infrastructure, including networks, operating systems, cloud and hybrid environments. Be accountable for timely testing of technology key controls, through teamwork, coordination and escalation of newly discovered and existing issuesEvaluate compliance and alignment with firmwide policies, standards, and proceduresReport results to senior managementCoach and mentor staff Test and validate the design and operating effectiveness of key controls
BASIC QUALIFICATIONS
At least 8 years’ in-depth external audit or industry audit experience with focus on infrastructure risk experience At least 3 years’ management experienceAudit, security or control-related certification such as CISA or CISSPStrong knowledge of network architectures, operating systems (Windows, Linux), cloud and hybrid environmentsStrong analytical, communication, interpersonal, problem solving, organizational and time management skillsExcellent influencing skills at all levels and the ability to develop and maintain good relationshipsStrong sense of ownership and accountabilityClear communication skills, both verbally and in writingAbility to drive, maintain, and improve large-scale control attestation or regulatory compliance initiatives across the organizationAbility to work independently, analyze problems and act decisively with minimal management oversightCommunicates status and risks in a succinct, direct and open mannerManaging global client relationships and working as part of a global teamExcellent presentation skills
PREFERRED QUALIFICATIONS
Strong understanding of information technology audit and control frameworks such as NIST COBIT and ITILAn understanding of any one, or more, of the following Technology Risk domains to include information security, technology resilience, audit, compliance, risk assurance, and risk governanceExperience in any one, or more, of the following is preferred but not required: Use of data analytics and/or analysis in the context of Technology risk.
ABOUT GOLDMAN SACHS
At Goldman Sachs, we commit our people, capital, and ideas to help our clients, shareholders, and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities, and investment management firm. Headquartered in New York, we maintain offices around the world.
We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers.
We’re committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: https://www.goldmansachs.com/careers/footer/disability-statement.html