Jobing Beta

Wells Fargo

Job: Operational Risk Consultant 5

This posting has expired and is no longer available.

Browse Similar Jobs: Consulting Services Human Resources - Risk & Safety Human Resources - ALL CATEGORIES

Jobing Description

Job Description

It starts with you

Our goal is to attract, develop, retain and motivate the most talented people - those who care and who work together as partners across business units and functions.  We value and promote diversity and inclusion in every aspect of our business and at every level of our organization.

At Wells Fargo, we invest in our people. Our diverse lines of business offer unique opportunities to expand your knowledge and advance your career.

This is an exciting opportunity to join a team and function committed to providing Wells Fargo with world-class technology risk management. The Operational Risk Group continues to build out a world-class technology risk management capability.

The Technology Risk Management Oversight organization is responsible for establishing the strategic direction and management of Wells Fargo’s enterprise technology risk management program, including developing, approving and maintaining the technology risk management framework.  This function will be responsible for maintaining a strong technology risk culture, formulating technology risk appetite and tolerances, and for establishing/maintaining a program to identify, assess, measure, monitor, control and report on significant enterprise technology risks.  Consistent with other programs overseen by Corporate Risk, the Technology Risk program provides second-line-of-defense oversight (SLOD) to ensure an independent, integrated, and holistic view of Wells Fargo technology risks. 

As a team member, this position will be responsible for:

  • Developing practices, processes, templates, and reporting to provide independent risk management oversight and participation in critical enterprise programs or projects with significant technology risks.
  • Analyzing operational risk domain (e.g. business continuity, technology) requirements against the proposed solutions to determine risk levels, control weaknesses and to evaluate the risk of solutions not meeting requirements
  • Oversight of the integration of requirements from the broader operational risk domains into existing information security and technology risk management processes (e.g. risk assessments, monitoring of controls)
  • Ensuring that critical information security programs and projects remain aligned to the operational risk management strategy and functional framework
  • Working with information security stakeholders and other partners to ensure each has the tools, processes and expertise to effectively manage operational risks
  • Reviewing mitigation/remediation plans and providing advice on mitigation effectiveness and alternative mitigation approaches
  • Performing review of the work products produced across the information security functional groups/ risk domain according to program requirements and deadlines
  • Attending steering committees and work groups to ensure appropriate operational risk management coverage
  • Capturing and escalating credible challenges
  • Producing management reporting as applicable
  • Effectively collaborating with business partners in the first-line-of-defense (FLOD) and second line of defense (SLOD) in the establishment of new risk management processes for the specific operational risk domain(s)
  • Developing and maintaining strong working relationships with the line of business, corporate regulatory, operational risk and compliance peers

An example of a critical technology risk domain for which Technology Risk Management Oversight provides independent risk management coverage is Infrastructure Management. Key activities include review and credible challenge of technology solutions, risks/mitigation plans, project status reporting and technology risk domain artifacts used as part of the regulatory reporting process.

The successful candidate will have the ability to translate ambiguous ideas/issues into well-defined plans/solutions; while influencing decision-making process, self-motivated, able to work independently with a proven ability to be adaptable to a dynamic work environment with multiple priorities and strict timelines and set appropriate deliverable timelines and follow-through. Organizational courage - willingness to thoughtfully share independent perspectives weighing business advancement against associated risk and ability to anticipate and ask the right questions to assess all facets of an effort.

Required Qualifications

  • 10+ years of experience in compliance, operational risk management (includes audit, legal, credit risk, market risk, or the management of a process or business with accountability for compliance or operational risk), or a combination of both; or 10+ years of IT systems security, business process management or financial services industry experience, of which 5+ years must include direct experience in compliance, operational risk management, or a combination of both

Desired Qualifications

  • Advanced Microsoft Office skills
  • Excellent verbal, written, and interpersonal communication skills
  • Strong analytical skills with high attention to detail and accuracy
  • Ability to interact with all levels of an organization
  • A Master's degree or higher

Other Desired Qualifications
  • 5+ years of experience with technology or information security as a business or control function or technology manager within a company or as an external partner to a company.
  • 5+ years demonstrated experience  in technology, information security and processes related to operational risk management of technology and possess well-rounded knowledge of current technology, information security, risk and compliance issues/challenges.
  • Experience with financial services businesses, including applicable regulatory compliance requirements.
  • Understanding of international laws and regulations governing technology across different countries and jurisdictions.
  • Ability to create strategic messaging relevant to different audiences and business needs, and gain buy-in from business partners.
  • Experience in technology/information security-related guidance, frameworks and standards.
  • Proven experience quantifying and assessing risks, developing alternative solutions and translating information into a concise, meaningful summary for multiple audiences.
  • Proven ability to develop and articulate sound proposals to key stakeholders, including ability to influence and drive timely decision making.
  • Experience in documentation and communication of risk and/or model issues in highly regulated marketplaces
  • Proven ability to collaborate with and present to multiple stakeholders, including business leaders, legal, audit and multiple US and non-US regulators.
  • Experience driving large-scale organizational change.


All offers for employment with Wells Fargo are contingent upon the candidate having successfully completed a criminal background check. Wells Fargo will consider qualified candidates with criminal histories in a manner consistent with the requirements of applicable local, state and Federal law, including Section 19 of the Federal Deposit Insurance Act.

Relevant military experience is considered for veterans and transitioning service men and women.
Wells Fargo is an Affirmative Action and Equal Opportunity Employer, Minority/Female/Disabled/Veteran/Gender Identity/Sexual Orientation.

Skills / Requirements

Important Notes