Position Summary
The IT Risk Manager is responsible for supporting the information technology risk strategy and roadmap, implementing and/or enhancing capabilities, and managing ongoing operations. This role will also oversee continuous improvements to risk management practices and controls to ensure Information technology and cyber risks are effectively managed and mitigated. The IT Risk Manager will report directly to the Vice President of IT Risk Management.
Location:
Chicago - Illinois - Wacker
What will your job entail?
Manage the needs of IT risk management function and align to Ryan Specialty operating model and ERM framework.
Continually enhance IT risk management roadmap focused on highest priority risks.
Strengthen IT Risk Department Capabilities
- Define and maintain the IT control environment.
- Document IT policies and procedures required to meet data security, audit, regulatory, and compliance requirements.
- Develop tools (GRC) to maintain IT Risk Register more efficiently and effectively.
- Regularly schedule IT risk assessment discussions with stakeholders.
- Continue the identification of Key Risk Indicators (KRIs).
- Assist the IT Key Risk Indicator Dashboard using data provided by stakeholders.
- Prepare materials for the IT Risk Steering Committee and facilitating quarterly meetings.
- Coordinate IT risk management activities with Enterprise Risk Management (ERM) team
- Assist in reviewing and enhancing policies and procedures.
Manage internal / external audit requests and remediation efforts including IT SOX.
Support corporate, regulatory, compliance and information security initiatives.
Continuously identify emerging risks and design appropriate mitigation strategies.
Manage aspects of System Development Lifecyle (SDLC) policy and integrating steps with PMO.
Deliver a positive customer experience to all internal stakeholders.
Education
- Bachelor’s degree with a minimum of 6 -10 years of experience in an IT risk management and/or IT Audit/SOX role.
- Certification(s) highly preferred (e.g., CISO, CISM, CISSP, CRISC, CPA, CIA, Data Privacy).
- Financial institution and/or Big Four experience preferred.
- Experience in Governance, Risk and Compliance regulations (e.g., NY DFS, CCPA, GDPR, HIPAA)
- Demonstrated ability to effectively communicate interpersonally with individuals and groups as well as strong client and stakeholder management skills.
- A history as a collaborator comfortable operating in a multi-faceted environment.
- Deep knowledge of relevant enterprise risk and security frameworks including NIST, COBIT, ISO, CSA, ITIL, SCF preferred.
- Strong leadership skills with a deep understanding of the technology risk landscape.
- Proven record of great teamwork and ability to work across organizational boundaries.
***The pay range below is slightly off. The correct pay range for this role is $125,000.00 to $150,000.00. ***
Ryan Specialty is an Equal Opportunity Employer. We are committed to building and sustaining a diverse workforce throughout the organization. Our vision is an inclusive and equitable workplace where all employees are valued for and evaluated on their performance and contributions. Differences in race, creed, color, religious beliefs, physical or mental capabilities, gender identity or expression, sexual orientation, and many other characteristics bring together varied perspectives and add value to the service we provide our clients, trading partners, and communities. This policy extends to all aspects of our employment practices, including but not limited to, recruiting, hiring, discipline, firing, promoting, transferring, compensation, benefits, training, leaves of absence, and other terms, conditions, and benefits of employment.
How We Support Our Teammates
Ryan Specialty seeks to offer our employees a comprehensive and best-in-class benefits package that helps them — and their family members — achieve their physical, financial, and emotional well-being goals. In addition to paid time off for company holidays, vacation, sick and personal days, Ryan offers paid parental leave, mental health services and more.
The target salary range for this position is $107,600.00 - $141,225.00 annually.
The wage range for this role considers many factors, such as training, transferable skills, work experience, licensure and certification, business needs, and market demands. The pay range is subject to change and may be modified in the future. Full-time roles are eligible for bonuses and benefits. For additional information on Ryan Specialty Total Rewards, visit our website https://benefits.ryansg.com/.
We provide individuals with disabilities reasonable accommodations to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment in accordance with applicable law. Please contact us to request an accommodation at HR@Ryansg.com
The above is intended to describe this job's general requirements. It is not to be construed as an exhaustive statement of duties, responsibilities, or physical requirements. Nothing in this job description restricts management's right to assign or reassign duties and responsibilities to this job at any time. Reasonable accommodations may be made to enable individuals with disabilities to perform essential functions.