Director – Technology Testing Risk​/Controls and Testing – CFO BL Risk

Overview

Director – Technology Testing Risk/Controls and Testing – CFO BL Risk role d the Technology Control Testing program within the CFO Group Business Line Risk function to test key controls in the IT/IS environment and support Ally’s SOX requirements.

• Take appropriate actions to mitigate excessive risk; implement policies, programs, practices and supporting technology that assess, monitor and report the risk profile to internal/external stakeholders (e.g. management, regulators, auditors)
• Provide technical expertise in the Risk Management Framework including Risk and Control Self Assessments, and Key Risk Indicators
• Provide leadership and subject matter expertise/training to business units and corporate functions to support compliance with framework components
• Manage the performance and development of testing team resources who are responsible for the Technology Control Testing program; maintain appropriate employee budget and headcount expectations
• Stay abreast of research and benchmarking to enhance, update and maintain sound Risk Management practices in alignment with regulatory requirements and industry practices
• Direct the audit focus to key risks and ensure efficient, effective, and high-quality delivery, in compliance with professional standards and audit policies. Oversight of the Technology Control Test Strategy to include:
• Scope and definition of testing and monitoring plans
• Roles and responsibilities
• Standards and practices for testing and monitoring key controls
• Reporting
• Collaborate with key IT management to foster positive working relationships, promote Audit’s image, provide control advice and issue trends and to stay abreast of major business activities
• Coach team members in testing methodology, designing test objectives, test execution, and evidence evaluation
• Monitor change control processes to ensure scheduled/coordinated evaluation of key controls and ensure completion of SOX plan within designated time frames
• Direct the execution and completion of large and/or complex system pre-implementation projects on a timely basis, including the assessment of related IT risks
• Recommend and manage action plans to address identified risks or failure points based on control testing
• Implement holistic, centralized report strategy that summarizes results of key control testing and establishes a method for escalating performance indicators and risk issues to lines of business
• Develop and maintain strong working relationships with internal business partners
• Prepare for and conduct key meetings and presentations with management and/or executive leadership

• 7+ years of relevant experience in the financial services industry with background in risk management or audit; experience working in financial controls, governance, or other testing function required, along with directing and leading large teams
• 2-3+ years of people leadership experience
• Demonstrated ability to design, implement and manage risk management programs with working knowledge of risk management concepts and components (e.g., policy/procedures, governance, reporting, self-assessments) in a regulated environment (e.g. FDIC, FFIEC guidelines)
• Demonstrated understanding of risk management concepts and relevant risk-based integrated process auditing and the relationship between audit risk assessment and audit objectives
• Bachelor s degree in accounting, finance, business or related field (Information Systems, Business, Accounting, or other related field of study) with a higher degree in IT or other related field of study desirable.
• Relevant professional certification in a related field (CIA, CISA, CISSP, CPA, etc.) is required
• Ability to leverage technical expertise and relationships to contribute to strategy and drive business results; 2-3+ years of people leadership experience

• Ally s compensation program offers market-competitive base pay and pay-for-performance incentives (bonuses) based on achieving personal and company goals. Our Total Rewards program includes industry-leading compensation and benefits plus additional incentives designed to meet your needs and those of your family.
• Time Away: 20…