Position Overview

At PNC, our people are our greatest differentiator and competitive advantage in the markets we serve. We are all united in delivering the best experience for our customers. We work together each day to foster an inclusive workplace culture where all of our employees feel respected, valued and have an opportunity to contribute to the company’s success. As an Independent Technology Risk Advisor Sr within PNC's Risk Management organization, you will be based in Pittsburgh, PA.

Job duties include;
• Executes the Independent Technology Risk Management (ITRM) challenge program and corresponding communication strategies by leveraging subject matter expertise in technology environments (infrastructure, network, MIS, & cyber); technology governance and control frameworks; and risk analytics. Ensures the ITRM program provides governance and independent challenge of first line’s ability to identify, assess, and mitigate information security risk.
• Ensures Technology and the Lines of Business communicate information security risk issues to the appropriate level of management.
• Ensures the ITRM risk framework is maintained and executed to support the businesses in managing their risks while meeting regulatory expectations and managing risks within the organizations risk appetite.
• Oversees the timely and proper execution of the ITRM program within and across the lines of business. Leverages technology risk methodology, framework experience, information security expertise, and risk analytics to consult on, and execute, program components.
• Provides information security risk expertise while working with the businesses and other risk partners (e.g., Compliance, Data, Technology and Operations Risk, etc.) to proactively identify information security risk exposures across PNC.
• Leverages subject matter expertise in and technology governance and control frameworks to review and report on the business self-assessment results (including new initiatives, business as usual activities, and risk management program) to higher level management.
• Translates cybersecurity and threat intelligence to the current technology and control environments and develops qualitative and quantitative risk analytics approaches to independently evaluate technology and cybersecurity risks.

Job Description

• Oversees the implementation of the Independent Technology Risk Management (ITRM) program and corresponding communication strategies. Leverages subject matter expertise in technology environments (infrastructure, network, MIS, & cyber); technology governance and control frameworks; and risk analytics. Ensures the ITRM program provides governance and independent challenge of first line ability to identify, assess, and mitigate technology and cyber security risk. Ensures Technology and the Lines of Business communicate risk issues to the appropriate level of management.
• Ensures the ITRM program is maintained and executed to support the businesses in managing their risks while meeting regulatory expectations and managing risks within the organizations risk appetite.
• Oversees the timely and proper execution of the ITRM program within and across the lines of business. Leverages technology risk methodology, framework experience, information security expertise, and risk analytics to consult on, and execute, program components.
• Provides technology risk and risk analytics expertise while working with the businesses and other risk partners (e.g., Compliance, Cyber Security, Technology and Operations Risk, etc.) to proactively identify technology risk exposures across PNC.
• Leverages subject matter expertise in and technology governance and control frameworks to review and report on the business self-assessment results (including new initiatives, business as usual activities, and risk management program) to higher level management.
• Translates cybersecurity and threat intelligence to the current technology and control environments and develops qualitative and quantitative risk analytics approaches to independently evaluate technology and cybersecurity risks.

PNC Employees take pride in our reputation and to continue building upon that we expect our employees to be:

• Customer Focused - Knowledgeable of the values and practices that align customer needs and satisfaction as primary considerations in all business decisions and able to leverage that information in creating customized customer solutions.
• Managing Risk - Assessing and effectively managing all of the risks associated with their business objectives and activities to ensure they adhere to and support PNC's Enterprise Risk Management Framework.

Qualifications

Successful candidates must demonstrate appropriate knowledge, skills, and abilities for a role. Listed below are skills, competencies, work experience, education, and required certifications/licensures needed to be successful in this position.

Preferred Skills

Compliance Reporting, Customer Risk, Decision Making, Regulatory Requirements, Risk Assessments, Risk Control, Strategic Objectives

Competencies

Decision Making and Critical Thinking, Industry Knowledge, Information Security Management, Internal Controls, IT Environment, Organizational Savvy and Politics, Planning and Organizing

Work Experience

Roles at this level typically require a university / college degree. Higher level education such as a Masters degree, PhD, or certifications is desirable. Industry relevant experience is typically 8+ years. Specific certifications are often required. In lieu of a degree, a comparable combination of education, job specific certification(s), and experience (including military service) may be considered.

Education

Bachelors

Certifications

No Required Certification(s)

Licenses

No Required License(s)

Benefits

PNC offers a comprehensive range of benefits to help meet your needs now and in the future. Depending on your eligibility, options for full-time employees include: medical/prescription drug coverage (with a Health Savings Account feature), dental and vision options; employee and spouse/child life insurance; short and long-term disability protection; 401(k) with PNC match, pension and stock purchase plans; dependent care reimbursement account; back-up child/elder care; adoption, surrogacy, and doula reimbursement; educational assistance, including select programs fully paid; a robust wellness program with financial incentives.

In addition, PNC generally provides the following paid time off, depending on your eligibility: maternity and/or parental leave; up to 11 paid holidays each year; 8 occasional absence days each year, unless otherwise required by law; between 15 to 25 vacation days each year, depending on career level; and years of service.

To learn more about these and other programs, including benefits for full time and part-time employees, visit Your PNC Total Rewards.

Disability Accommodations Statement

If an accommodation is required to participate in the application process, please contact us via email at AccommodationRequest@pnc.com. Please include “accommodation request” in the subject line title and be sure to include your name, the job ID, and your preferred method of contact in the body of the email. Emails not related to accommodation requests will not receive responses.  Applicants may also call 877-968-7762 and say "Workday" for accommodation assistance. All information provided will be kept confidential and will be used only to the extent required to provide needed reasonable accommodations.

At PNC we foster an inclusive and accessible workplace.  We provide reasonable accommodations to employment applicants and qualified individuals with a disability who need an accommodation to perform the essential functions of their positions.

Equal Employment Opportunity (EEO)

PNC provides equal employment opportunity to qualified persons regardless of race, color, sex, religion, national origin, age, sexual orientation, gender identity, disability, veteran status, or other categories protected by law.

This position is subject to the requirements of Section 19 of the Federal Deposit Insurance Act (FDIA) and, for any registered role, the Secure and Fair Enforcement for Mortgage Licensing Act of 2008 (SAFE Act) and/or the Financial Industry Regulatory Authority (FINRA), which prohibit the hiring of individuals with certain criminal history.

California Residents

Refer to the California Consumer Privacy Act Privacy Notice to gain understanding of how PNC may use or disclose your personal information in our hiring practices.