Sr. Manager, Technology Governance & Risk Management

Who We Are
Creative Artists Agency (CAA) is the leading entertainment and sports agency, with global expertise in filmed and live entertainment, digital media, publishing, sponsorship sales and endorsements, media finance, consumer investing, fashion, trademark licensing, and philanthropy. Distinguished by its culture of collaboration and exceptional client service, CAA’s diverse workforce identifies, innovates, and amplifies opportunities for the people and organizations that shape culture and inspire the world. The trailblazer of the agency business, CAA was the first to build a sports business, create an investment bank, launch a venture fund, found technology start-up companies, establish a philanthropic arm, build a business in China, and form a brand marketing services division, among other innovations. Named Most Valuable Sports Agency by Forbes for eight consecutive years, CAA represents more than 2,000 of the world’s top athletes in football, baseball, basketball, hockey, soccer, in addition to coaches, on-air broadcasters, and sports personalities and works in the areas of broadcast rights, corporate marketing initiatives, social impact, and sports properties for sales and sponsorship opportunities.

Founded in 1975, CAA is headquartered in Los Angeles, and has offices in New York, Nashville, Memphis, Chicago, Miami, London, Munich, Geneva, Stockholm, Shanghai, and Beijing, among other locations globally.

The Role
As Senior Manager Technology Governance and Risk Management at CAA, you will be tasked with setting the strategic governance and risk management framework to ensure our organization's technology operations adhere to defined internal policies, standards, industry best practices and regulatory/legal requirements while proactively identifying and managing technology-related risks. You will own, drive and assist in the evolution of organization’s Technology Governance and Risk Management framework/strategy inclusive of methodology, tools for risk assessment, issue management, monitoring and reporting. This role is ultimately responsible for ensuring CAA Technology and Data adheres to the IT General Controls and Sarbanes-Oxley requirements.   

The incumbent will provide leadership, execution and management necessary to identify, evaluate, mitigate and manage risk and review. You will challenge and enhance the existing risk management strategy, evolve the existing framework, tools and procedures to achieve effective risk identification and management within best practice IT control frameworks. This role will actively engage with and develop effective, collaborative working relationships across all CAA Tech and Data teams to support cooperative responses to risk management matters, including maintaining effective communication, providing guidance and training to promote risk control awareness, ownership and accountability are critical. 

Responsibilities

• Assess/evolve Technology Governance Framework and ensure alignment to regulatory (e.g. SOX) and industry best practices (e.g. COBIT, ITIL) to standardize processes, decision-making, and accountability. 

• Develop, implement, maintain provide direction and guidance in the development, implementation, and communication of risk-related policies and standards (GDPR, CDPA, etc.) 

• Provide insight and guidance to Tech policies, standards and processes to ensure risk controls are aligned to framework best practices 

• Monitor and assess IT compliance with relevant regulations and defined policies 

• Conduct risk assessments and develop mitigation strategies for IT-related risks. 

• Coordinate across technology domain leads to manage CAA’s controls testing program and ensure alignment with business goals pertaining to compliance, risk, and governance requirements/processes. 

• Manage IT audits and ensure timely remediation of audit findings. 

• Implement and manage relevant tools/systems for global Technology organization to support compliance and risk management for IT in the organization. 

• Provide training and awareness programs on IT governance and compliance topics. 

• Stay updated on emerging IT governance trends and best practices. 

• Report on IT governance performance, Key Risk Indicators (KRIs), key compliance KPIs and program maturity to senior management 

• Coordinate disaster recovery planning and activities across technology departments, and partner with CAA Global Safety & Security to align with companywide business continuity planning efforts 

• Collaborate with legal and compliance teams to ensure adherence to relevant laws, regulations, and industry standards 

Qualifications

• Experience / Knowledge of Technology Governance industry standards (NIST, ITIL, COBIT, SOX) 

• Proven experience in Technology governance, risk management, or compliance roles, preferably in a corporate setting 

• Strong knowledge of regulatory frameworks, industry standards, and best practices related to Technology Governance 

• Experience in Risk and Governance Platforms (One Trust, Workiva, etc.…) 

Requirements

• Bachelor’s degree in Information Technology or Computer Science, or in any related field 

• 8+ years of relevant experience, specifically in performance/risk measurement; direct experience in Technology Risk Management preferred 

• Excellent problem solving and self-management skills in order to tactically and analytically solve technical problems and successfully handling management information and metrics design, collection, analysis, reports, etc. 

• Experienced and current in Information Security current affairs, business continuity, data management, security and encryption, and vulnerability analysis and audit 

• Experience working in orchestration platforms (ServiceNow, Jira) 

• Ability to manage multiple projects 

• Self-sufficient, responsible and dependable 

• Project management skills / methodical and organized 

• Excellent analytical skills 

Location

This is a hybrid role that may be based in our New York or Nashville office.
 

Compensation

The annual base salary for this position is in the range of $180,000 - $200,000. This position also is eligible for benefits and a discretionary bonus. Ultimately, the salary may vary based upon, but not limited to, relevant experience, time in the role, business sector, and geographic location, among other criteria. Please speak with a CAA Recruiter to learn more.