Director of Data Risk

The Director of Data Risk will be responsible for providing strategic leadership, expert guidance, credible challenge, and effective oversight of the Bank’s data risk landscape within the Second Line of Defense (2LOD) Enterprise Risk Management (ERM) function.

This individual will shape and lead the Bank’s Data Risk program (excluding cybersecurity) by establishing frameworks, standards, and governance for identifying, assessing, monitoring, and reporting on Data Governance related risks across infrastructure, applications, platforms, operations, and processes. This includes risk governance and oversight for enterprise data including data quality, data management, data privacy (excluding cybersecurity-related responsibilities), and data lifecycle oversight.  This role will also be responsible for owning, designing, and implementing an enterprise-wide end user computing (EUC) governance program.  This is a highly visible role requiring extensive engagement with technology leadership, business executives, auditors, and regulators.

This role will require an individual with deep technology knowledge in Risk & Controls, 2LOD structure and oversight methods, exceptional relationship management, communication, and influencing skills at all levels.  This role will work closely with first line technology, data governance, operations, and business teams, as well as audit and regulators.

• Develop and implement the enterprise-wide 2LOD risk oversight framework for data governance, data quality, and data lifecycle management.
• Design, build, and execute the Bank’s 2LOD End User Computing (EUC) Risk Management Program, including governance, classification, inventory, monitoring, and control testing.
• Provide credible challenge in all subjects, areas, and processes of Data Governance.
• Independently identify and assess data risks across platforms, systems, and business processes, with a focus on integrity and appropriate use of data.
• Establish engagement model with the 1LOD and data governance council to provide challenge and oversight of data management initiatives, including data lineage and data ownership.
• Provide risk sign-off and oversight for major data initiatives, including data modernization, master data management, AI/ML data use cases, and data integration efforts.
• Represent ERM in data risk governance committees, regulatory exams, and internal working groups focused on enterprise data strategy and risk.
• Collaborate with compliance and legal to ensure regulatory alignment related to data risk, including applicable privacy and data management regulations.
• Define and track key risk indicators (KRIs) and risk appetite metrics for enterprise data risk and EUC risk (and the overall EUC program).
• Conduct challenge of first line’s risk and control assessments over data management and EUC risk, and ensure proper tracking and closure of issues.
• Establish policies, standards, and procedures aligned with the Bank’s risk appetite, regulatory expectations, and industry best practices.
• Perform other duties and special projects as assigned.

• 15+ years of direct, related experience in Risk Management, Data Governance, Data Risk, Information Security, or Technology.
• Proven experience standing up or having significant involvement with a second line risk oversight program for data governance or EUC.
• Strong understanding of enterprise data management, metadata management, data quality, and regulatory data risk requirements.
• Ability to build and scale a comprehensive EUC risk management program from scratch, including defining policies and implementing controls.
• Familiarity with data architecture, data integration, business intelligence, and data analytics concepts.
• Strong collaboration and communication skills to effectively engage senior leaders, data stewards, IT teams, auditors, and regulators.
• Proven ability to manage multiple priorities, synthesize risk issues, and drive strategic data risk initiatives in a fast-paced environment.
• Experience leading or overseeing risk functions within financial institutions is strongly preferred
• Strong written and verbal communication skills to confidently interact across all levels of organization such as management, executives, regulators, and board of directors.
• Knowledge of general banking operations, including deposit operations, loan administration, treasury management and/or other commercial banking products and services. 
• Highly organized and efficient; ability to balance and manage multiple projects concurrently.
• Demonstrated strategic and tactical thinking, along with decision-making skills and business acumen.