BNY Mellon Careers

ExecMgr, Tech Risk Mgmt (Chief Technology Risk Officer, Americas)

New York, New York

Job Description

The Chief Technology Risk Officer (CTRO) is a regional leadership role accountable to the Global CTRO (based in NYC and a direct report to the BNY

Mellon CRO). This is a 2nd line risk function accountable for oversight and creditable challenge of the Technology department’s management of their technology risks.  Responsibilities include:

Assessing line 1’s compliance with the Operational Risk Framework of the bank and delivering proactive management of technology risk facing the BNY Mellon lines of business (including Technology).

Directing the Americas CTRO function delivering the CTRO deliverables to the lines of business, technology executives, Americas risk governance forums and Americas legal entities.

Ensuring quality, evidence based responses from the 2nd line to Americas regulatory requests in regards to Technology risk.

Proactive Americas executive stakeholder management which drives  risk decision making, monitoring and alerting when risk thresholds are breached.

Senior part of the Technology Risk Management Leadership Team and accountable for delivery of TRM strategy, staff development, delivery and effectiveness both locally in the Americas and globally for the global TRM team.

Responsible for the ongoing independent oversight of day-to-day technology risk management activities for a business area, multiple business areas and/or across regions facing a high level of risk.

Leads the assessment, monitoring and reporting on technology risks inherent to business activities, including cyber, security and technology risk concepts.

Accountable for the integrity of the business area, areas or regions' adherence to the technology risk management framework.

Interprets and drives enforcement of technology risk policies, standards, regulatory requirements and a consistent technology risk management approach.


Responsible for developing and driving the technology risk strategy and governance for the assigned business area, areas or regions in alignment with the risk management roadmap.

Interprets industry experience to determine appropriate key metrics (KRIs, KPIs) and best practices that drive technology risk and regulatory compliance.

Uses relationships with senior stakeholders to coordinate technology risk management efforts across global and regional groups and drive the timely completion of technology risk deliverables and issue resolution.

Produces accurate and effective solutions and appropriately escalates issues to the assigned business area or region management team, as needed.

CTRO Americas will manage a team dedicated to the CTRO function and based in the New York.

Core competencies and experience expected for this role are:

Applies understanding of control and risk management concepts, security systems and applications in order to interpret the technology risk needs of the assigned business area, areas or regions, and communicates relevant information, risk management policies, procedures and guidelines.

Communicates technical concepts to non-technical audiences.

Leads efforts to develop a strong technology risk culture and to influence and ensure business and regional adherence to the technology risk management framework.

Applies understanding of systems architecture, hardware, operations, system life cycle, information security, investigative principles, incident response procedures, computer forensics and information security practices to anticipate technology risks inherent to the assigned business area, areas or region.

Recruits, directs, motivates and develops professional staff and more junior managers, maximizing their individual contribution, their professional growth and their ability to function effectively with their colleagues as a team and/or lead.

Responsible for the achievement of functional goals and objectives.

Ensures regions are equipped to operationalize and attain global objectives.


Bachelor s degree or the equivalent combination of education and experience is required. 15+ years of total work experience, with 5-7 years of management experience, preferred. Experience in Technology, Information Security, technology risk preferred or another related business area. At least one security certification preferred.
BNY Mellon is an Equal Employment Opportunity/Affirmative Action Employer.
Minorities/Females/Individuals With Disabilities/Protected Veterans.

Primary Location: United States-New York-New York
Internal Jobcode: 85306
Job: Risk
Organization: Technology Risk Mgmt-HR06032
Requisition Number: 1815304