Job Title: Enterprise Risk Managment Technology/Information Security Director Location: CityScape What you'll do: Enterprise Risk Management is responsible for developing and implementing the bank's risk management framework. Technology and Cybersecurity Risk Management is a growing organization focused on providing expert guidance, credible challenge, and effective oversight of technology and information security activities throughout the company. The organization plays a critical role in helping to inform Western Alliance Bancorporation (WAL) of the risks inherent in its actions and decisions, enterprise impacts, and opportunities to reduce risks overall. This role will operate in a highly collaborative team environment to deliver risk management assessments and guidance to Technology and Information Security first line teams. The Director will also be responsible for effectively collaborating with key stakeholders across business line and the three lines of defense to ensure risks are managed effectively and efficiently, in accordance with the company policies and related regulatory requirements. The Director will also be responsible for effectively collaborating with key stakeholders across business line and the three lines of defense to ensure risks are managed effectively and efficiently, in accordance with the company policies and related regulatory requirements. As a Director for Technology and Information Security Risk Management you will develop and execute methods to measure and quantify risk. This role will be responsible for the implementation of the Open FAIR methodology, developing reporting and monitoring of risk in the WAL environment, overseeing risk assessments, and control reviews. This role requires strategic thinking, a background in technology and/or information security operations, understanding of banking regulations and experience in enterprise risk management. Your contributions to the organization will help drive maturity across the enterprise through effective collaboration and communication with your partners. What we are looking for: Responsibilities: * Proactively works with business unit management to identify and assess technology and cybersecurity risks associated with business activities, ensuring alignment with Enterprise and Operational Risk Frameworks. * Advising lines of business on risks and control requirements related to new products and services, business initiatives, and outsourced third party activities, including applicable metrics (e.g., KRIs, Tolerances). * Focus on the implementation of the Open FAIR methodology to help increase risk quantification for technology, cybersecurity and third-party risks. * Conducts a robust Review and Challenge process in evaluating and reviewing business processes, risk profiles, risk indicators, controls, remediation plans, etc., to ensure alignment with WAL's Enterprise and Operational Risk programs, policies and practices. * Ensure WAL policies and procedures and associated technology and cybersecurity risk programs are consistent with current applicable banking rules, regulations, and laws. Monitors and assesses for any new or amended requirements. * Acts as Technology and Cybersecurity Risk Subject Matter Expert on assigned committees and working groups, developing a positive working relationship with internal clients, staff, peers, and senior management. Oversight of IT Operational Functions in the enterprise application services, including automation solutions, integration solutions, development architecture and common services. * Oversight of Data Management and Data Governance, including data retention, data analytics, etc. * Lead and develop a team of risk professionals who will perform risk assessments, control reviews, issue identification and risk reporting. * Perform Targeted Assessments for relevant 1LOD functions. This would leverage industry frameworks (NIST, ITIL, COBIT, etc.), and relevant regulations to develop a second line opinion regarding the overall effectiveness of assessed first line functions. Qualifications: * Bachelor's degree in a related field and 10+ years of direct work experience. Master's degree is preferred. * Create materials for presentation at committees and to senior leadership of the bank. * Deep knowledge of general banking operations, including deposit operations, loan administration, treasury management and/or other commercial banking products and services. * Relevant industry and professional experience across one or more of the three lines of defense (e.g., information technology, cybersecurity, technology risk management, or audit). * Experience in risk management across information technology, cybersecurity, third party, business continuity management. * Relevant industry and professional experience across one or more of the three lines of defense (e.g., information technology, cybersecurity, technology risk management, or audit). * Knowledge of the Open FAIR methodology. * Experience with developing KRIs, enterprise Issue Management, risk and controls, within a financial services company. * Identify and implement continual program enhancements based upon industry standards and best practices for risk management. * Stay current on trends in technology and cyber security and provide an understanding for how they may impact the organization. * Strong ability to analyze processes and data for trending and recommend enhancements. * Effective communication skills with a demonstrated ability to engage, influence, and drive collaboration across stakeholders. * High degree of organization, individual initiative, and personal accountability in a fast-paced environment. Inclusive of ability to make decisions in an ambiguous environment. * Knowledge of regulatory guidance for Third-Party, Technology and/or Cybersecurity functions, with specific experience in data management. * Knowledge of external frameworks for Third-Party, technology and/or cybersecurity (NIST, ITIL, COBIT, Shared Assessments, etc.) * Understanding of risk management principles in a highly regulated organization, including risk identification, risk treatment and risk measurement. * Professional certification or advanced degree in Third-Party, technology and/or cybersecurity (CISM, CRISC, etc.). Benefits you'll love: We offer all the important things you'd want - like competitive salaries, an ownership stake in the company, medical and dental insurance, time off, a great 401k matching program, tuition assistance program, an employee volunteer program, and a wellness program. In addition, you'll have the opportunity to bolster your business knowledge, learning the ins and outs of how successful companies operate and manage their finances, giving you invaluable hands-on experience to help grow your career! About the company: Western Alliance Bank is a wholly owned subsidiary of Western Alliance Bancorporation. Alliance Bank of Arizona, Alliance Association Bank, Bank of Nevada, Bridge Bank, First Independent Bank, and Torrey Pines Bank are divisions of Western Alliance Bank; Member FDIC. AmeriHome Mortgage is a Western Alliance Bank company. Western Alliance Bancorporation is committed to equal employment and will consider all qualified applicants without regard to race, sex, color, religion, age, nation origin, marital status, disability, protected veteran status, sexual orientation, gender identity or genetic information. Western Alliance Bancorporation is committed to working with and providing reasonable accommodations for individuals with disabilities. If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process and/or need an alternative method of applying, please email HR@westernalliancebank.com or call 602-386-2488. When contacting us, please provide your contact information and state the nature of your accessibility issue. We will only respond to inquiries concerning requests that involve a reasonable accommodation in the application process. Western Alliance Bancorporation