Data Risk Officer - Structural Elements Oversight, Senior Vice President
Operational Risk Management (ORM) is an enterprise-level independent risk management function responsible for enterprise-wide oversight and aggregation of operational risk. Its mandate covers all business lines spanning all geographies. The ORM function oversees the design and implementation of the non-financial risk management framework. Key objectives of the data risk management framework include :
- Operating model, staffing, and culture
- Operational risk appetite
- Control objectives and standards
- Operational risk and control assessments and reporting
- Strategic decision-making
- The effective execution of Citi's Enterprise Data transformation
The Data Risk Officer Structural Elements Oversight, Senior Vice President role will serve as a subject matter expert on the design and implementation of structural elements for data management, providing oversight and 2LOD challenge focusing on foundational capabilities, including policies, standards, procedures, governance models, staffing, training, controls, and enterprise programs to reduce data quality concerns and adjustments.
Key Responsibilities :
Oversee and challenge the design and implementation of the firm's data governance structure, policies, standards, and procedures, including the design and performance of associated compliance metricsAssess the adequacy of the firm's budgeting process, staffing levels, skills and expertise, and training programs to appropriately support its data governance requirementsOversee the firm's efforts to evaluate data exceptions and manage the remediation of data quality concernsEvaluate the enterprise framework to continually reduce manual inputs and adjustments across the enterprise data lifecycle and oversee the adoption of this frameworkContribute to identifying and executing independent second-line risk assessments, in coordination with other ORM teams where needed (e.g., contributing to challenges of specific risk appetite metrics) to meet internal commitmentsParticipate in internal knowledge sharing initiativesHelp ensure that this multidisciplinary and cross-cutting risk area is well understood and that the implications of firm-wide remediation efforts are understood in terms of managing "path-to-green" efforts to operate within the firm's risk appetite.Assist in the negotiation and remediation of identified risk and control concernsPrepare materials for escalation of significant or unaddressed risk issues and control environment concerns to appropriate governance forums and Risk leadershipAs needed, support the primary interface to key stakeholders such as regulators, senior management, and the Board, as it relates to 2LOD assessment / point of view for the Risk CategoryAppropriately assess risk when business decisions are made, demonstrating particular consideration for the firm's reputation and safeguarding Citigroup, its clients and assets, by driving compliance with applicable laws, rules and regulations, adhering to Policy, applying sound ethical judgment regarding personal behavior, conduct and business practices, and escalating, managing and reporting control issues with transparency, as well as effectively supervise the activity of teams and create accountability with those who fail to maintain these standardsQualifications :
Experience : 7-10 years of direct experience in a non-financial risk (data, technology, and / or reporting risk), audit, or relevant 1LOD function within a large financial services organization.Risk Management Knowledge : Experience in identifying and assessing non-financial risks and controls. Proficient in risk assessment principles and supervisory expectations in terms of the quantity and quality of operational risk management.Data Management Fundamentals : Demonstrable understanding of Data Management fundamentals, including data architecture, data quality principles, and a deep appreciation of the intersectionality and interdependency with enterprise technology and systems architecture.Policy Management : Experienced in writing and / or assessing organizational policies, standards, and procedures. Ability to assess data management policies against business strategies, industry standards, and regulatory expectations.Analytical Skills : Strong root cause analysis and problem-solving skills to include design and execution of risk and control assessments. Further, an ability to identify conflicts, discrepancies, and other issues, and contribute to bringing together the right team to resolve them. Expertise with risk metrics, including roles in design, delivery, sustainability of metric delivery and / or auditing / challenging metrics.Communication & Collaboration : Well-developed writing and listening skills, and a strong ability to communicate and engage effectively, both orally and in writing. Ability to constructively challenge others at all levels and across boundaries to deliver better results. Experience in working with internal relationships and partnering with a range of stakeholders (e.g., business, functions) to support change management efforts.Continuous Improvement : Continuous improvement mind-set to solve for root causes, assess the impact of actions, and adjust as needed; ability to simplify and standardize at every opportunity, effectively leveraging available tools.Operational Risk : Well-versed in executing risk management monitoring routines, tracking identification to resolution. Experience applying operational risk management frameworks in a global organization.Certifications : Ideally holds data management industry certifications (e.g. DAMA Certified Data Management Professional (CDMP)Education :
Bachelor's degree in Computer Science, Data Science, Information Technology, Business, Finance, or a related fieldMaster's degree preferred