Job Description:
Technology Risk (TR) function is responsible for deploying various programs that support AT&T's objective of strong risk management and regulatory compliance.
The Technology Risk programs drive processes that enable AT&T to identify, assess and manage technology and cybersecurity risks around availability, confidentiality and integrity.
The programs consist of various components that build on a core foundation of Risk Control Self-Assessments (RCSAs), that are deployed across Technology.
This team also operates the Governance processes providing oversight, risk assessment and adjudication of AT&T's Key Controls.
This includes the management of various working groups that involve stakeholders across Technology, Cyber, Risk and other functions.
In addition, TR is responsible for monitoring & testing of Technology and Cyber controls, while continuing to drive automation and leverage AI/Technology in control monitoring.
TR performs risk assessments of various domains across Technology, on a risk-based basis, and will as appropriate lead or participate in lessons learned reviews following technology incidents.
Lastly, the Director of TR will work closely with the global head of technology risk based in US.
The person in this role will play a lead role (alongside working with the global head of technology risk) in the Technology risk program for AT&T, including the overall design and deployment.
The Director leads the engagement with Technology teams and leadership, represents the program to external stakeholders (such as regulators) in the region.
Essential Functions
- Assist the global head of technology risk in establishing overall technology risk program
- Develop, maintain, and enhance the deployment of the RCSA program across the AT&T Technology and Cyber organization
- Maintain the AT&T Technology Risk Framework, and any related AT&T Policies and Procedures and develop well designed training and communication materials
- Partner with the Technology on the risk assessment of Technology and Cyber domains, on a risk-prioritized basis.
- Identify, develop and lead the deployment of AI tools that can assist, augment or automate risk control programs
- Work closely with Technology leaders on periodic assessment technology incidents and ensure proper remediation and issue management
- Represent the Technology & Cyber risk program to relevant regulators across different markets as required
- Engage on regular basis with regional Risk teams and own the execution of the activities performed in support of regional risk oversight
- Implement governance and oversight of program management, including design and maintenance
- Build-out required program MIS, KRIs and overall reporting packs. Provide input into the further design and enhancements of our enterprise risk platforms
- Stay engaged with market practices, and identify best practices in the further evolution of Operational and Compliance risk
- Oversee budget
Weekly Hours:
40
Time Type:
Regular
Location:
Bangalore, Karnataka, India
It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities.
