Senior IT Risk Manager, Operational Risk Management

Together we fight for everyone’s opportunity for a better financial future.

We will do this together — with customers, partners and colleagues. We will fight for others, not against: We will stand up for and champion everyone’s access to opportunities. The status quo is not good enough … we believe every individual and every community deserves access to financial opportunities. We are determined to support both individuals and communities in reaching a better financial future.  We know that reaching this future depends on our actions today.

Like our Purpose Statement, Voya believes in being bold and committed to action.  We are committed to a work environment where the differences that we are born with — and those we acquire throughout our lives — are understood, valued and intentionally pursued. We believe that our employees own our culture and have a responsibility to foster an environment where we all feel comfortable bringing our whole selves to work. Purposefully bringing our differences together to positively influence our culture, serve our clients and enrich our communities is essential to our vision.

Are you ready to join a company with a strong purpose and a winning culture? Start your Voyage – Apply Now

Profile Summary:

The Senior IT Risk Manager reports to the Head of IT Risk Management (ITRM) within Voya's enterprise Operational Risk Management function. This ITRM function provides risk oversight for Voya’s enterprise Information Technology (IT) function and technologies supporting Voya's Investment Management, Retirement Benefits, and Employee Benefits businesses by facilitating processes to identify, monitor, and mitigate IT related operational risks, and by providing senior leadership with timely and accurate information to assist in risk-based decision making. 

Profile Description:

The mission of the Operational Risk Management (ORM) function is to support Voya leadership in risk-based decision making and to assist with the management of operational risks of the enterprise, through the application of a comprehensive framework, processes, and tools for identifying, measuring, and monitoring operational risks.

We are seeking a motivated and self-driven individual that will focus on the communication, implementation, and execution of operational risk policies and procedures, in support of risk management within Voya’s enterprise IT function and Investment Management, Retirement Benefits, and Employee Benefits business technologies. The individual will employ business, IT, and operational process knowledge to perform independent review and challenge, and to advise stakeholders on solving complex and time-sensitive risk related matters. Responsibilities include, but are not limited to the following:

• Regularly interact with and build partnerships with stakeholders across business and IT functions at varying levels to promote and instill a strong risk culture.

• Provide subject matter expertise and advise on IT related risks and remediation/mitigation of risk exposures. Real-time risk advisory and risk measurement are key elements of this role.

• Assist in defining IT risk and control standards and maintaining the standards framework.

• Lead IT risk identification and assessment activities that include IT process reviews, top-down risk assessments, targeted risk and control assessments, development of key risk indicators (KRI), risk event management, trend analysis, and controls compliance.

• Monitor the IT risk and control environment including root cause analysis of issues and incidents to identify process improvement, control optimization, and risk reduction opportunities.

• Develop Board and senior leadership risk reporting and risk committee materials.

• Assist with assessments concerning compliance with applicable laws and regulations impacting IT.

• Work closely with line of business ORM teams to characterize potential IT risks and trends, assessing business impact and articulating criticality and implications to business stakeholders.

• Assist with ongoing development and maintenance of IT Risk Management strategy and framework, and education of stakeholders.

Knowledge & Experience:

• Bachelor’s degree in Computer Science, MIS or related field; or equivalent work experience. Master’s degree desirable.

• Minimum 8-15 years of relevant experience with a strong background in IT, IT audit, and/or IT risk management and including minimum 4 years of financial services experience, preferably in Asset, Wealth, Investment Management, Retirement Benefits and Employee Benefits lines of business 

• In depth knowledge of IT technical and operational processes, and associated risks and controls.

• CISA, CISSP, CISM, CRISC or other related IT risk certification is preferred including cloud platform and AI certifications.

• Technical knowledge of risk management frameworks, applicable standards, and regulatory requirements including, NIST, COBIT, ITIL, ISO27000, and other relevant IT governance frameworks.

• Familiarity and experience using eGRC solutions.

• Ability to communicate complex information technology risks and issues to non-technical business stakeholders to ensure a clear understanding of criticality and implications.

• Ability to discern and measure business relevant risk from IT risks and issues, and to identify the corresponding remediation which is adequate and balanced to mitigate business impact.

• Critical thinker and ability to express risk themes from data that will serve to inform and guide leadership decisions and actions

• Ability to function independently with limited supervision

• Ability to collaborate within ITRM and ORM as well as across functions in partnership with IT, business teams and other risk functions

• Strong problem solving, decision making, communication, and facilitation skills.

• Proficient with Microsoft Office suite of products and automated reporting tools. Ability to produce professional documents ready for presentation to executive “C-Level” management.

• Travel: Occasional travel to Voya office locations in the US

#LI-KD1

Compensation Pay Disclosure:

Voya is committed to pay that’s fair and equitable, which means comparable pay for comparable roles and responsibilities.

The below annual base salary range reflects the expected hiring range(s) for this position in the location(s) listed. In addition to base salary, Voya offers incentive opportunities (i.e., annual cash incentives, sales incentives, and/or long-term incentives) based on the role to reward the achievement of annual performance objectives. Please note that this salary information is solely for candidates hired to perform work within one of these locations, and refers to the amount Voya Financial is willing to pay at the time of this posting.

Actual compensation offered may vary from the posted salary range based upon the candidate’s geographic location, work experience, education, licensure requirements and/or skill level and will be finalized at the time of offer. Salaries for part-time roles will be prorated based upon the agreed upon number of hours to be regularly worked.

Be Well. Stay Well.

Voya provides the resources that can make a difference in your lives. To us, this means thriving physically, financially, socially and emotionally. Voya benefits are designed to help you do just that. That’s why we offer an array of plans, programs, tools and resources with one goal in mind: To help you and your family be well and stay well.

What We Offer

• Health, dental, vision and life insurance plans
• 401(k) Savings plan – with generous company matching contributions (up to 6%)
• Voya Retirement Plan – employer paid cash balance retirement plan (4%)
• Tuition reimbursement up to $5,250/year
• Paid time off – including 20 days paid time off, nine paid company holidays and a flexible Diversity Celebration Day.
• Paid volunteer time — 40 hours per calendar year

Learn more about Voya benefits (download PDF)

Critical Skills

At Voya, we have identified the following critical skills which are key to success in our culture:

• Customer Focused: Passionate drive to delight our customers and offer unique solutions that deliver on their expectations.
• Critical Thinking: Thoughtful process of analyzing data and problem solving data to reach a well-reasoned solution.
• Team Mentality: Partnering effectively to drive our culture and execute on our common goals.
• Business Acumen: Appreciation and understanding of the financial services industry in order to make sound business decisions.
• Learning Agility: Openness to new ways of thinking and acquiring new skills to retain a competitive advantage.

Learn more about Critical Skills

Equal Employment Opportunity

Voya Financial is an equal-opportunity employer. Voya Financial provides equal opportunity to qualified individuals regardless of race, color, sex, national origin, citizenship status, religion, age, disability, veteran status, creed, marital status, sexual orientation, gender identity, genetic information, or any other status protected by state or local law.