Receive alerts when this company posts new jobs.
Head of Data Risk Management, Director
at MUFG Americas
Discover your opportunity with Mitsubishi UFJ Financial Group (MUFG), the 5th largest financial group in the world (as ranked by S&P Global, April 2018) with total assets of over $2.9 trillion (106.2 (JPY) as of March 30, 2018) and 150,000 colleagues in more than 50 countries. In the U.S., we're 13,000 strong, working together to positively impact every customer, organization, and community we serve. We achieve this by delivering on our values, putting people first, fostering long-term relationships built on honesty and mutual understanding, and inspiring the best in each other. This is all part of our inclusive, high-performing culture supported by Total Rewards that include our cash balance pension plan. Join a team that's working to fulfill its vision to be the world's most trusted financial group.
The Head of Data Risk Management reports into the Head of Business Operational Risk Management. This position is responsible for developing and maintaining a second line of defense enterprise wide data risk framework including data risk policy and standards, risk assessments and risk appetite. The individual in this position has oversight and challenge responsibility for first line of defense data risk activities.
- Responsible for developing and maintaining a second line independent data risk management framework, standards, methodology and policy, including roles and responsibilities, aligned with BCBS 239 and BSA AML priorities. Update on a periodic basis in line with the changing risk profile.
- In partnership with the Chief Data Office, establish the necessary data program risk policies and associated standards so that aggregate risks within the bank are effectively identified, measured, monitored and controlled consistent with the bank's risk appetite.
- Define appropriate second line committee governance oversight responsibilities. Participate in, and monitor first line governance committees.
- Develop independent validation protocols that are risk-based and ensure the bank's risk data aggregation and reporting processes are adequate and aligned with BCBS principles. This includes independent review of risk data aggregation and reporting processes. The validation protocols should be aligned with and support the bank's core operational risk programs, including Risk and Control Self-Assessment, Third Party Risk Management, New and Expanded Products and Services, and Transaction Reviews. This will include working with the respective program owners to ensure proper coverage of data governance risks and controls in their risk, process, vendor, product, and transaction assessments
- Partner with Risk Disciplines in review of data aggregation controls to ensure the data that is used for Risk Reporting and other critical processes is accurate, reliable, timely and complete. This includes developing protocols for validating controls associated with both automated and manual reporting processes and documenting the authoritative source for key data elements
- Coordinate with the ORM Challenge teams to provide ongoing independent review and challenge for first line of defense (FLOD) data risk activities and compliance with the data risk standards and framework.
- Work with the FLOD in defining the data risk appetite, including defining business specific and enterprise-wide data risk metrics and the establishment of tolerance limits and reporting.
- Define requirements for execution of risk assessments by the FLOD. Coordinate with the Risk and Control Self Assessment (RCSA) team to incorporate into the RCSA methodology. Define the data risk and control taxonomy.
- Using RCSA and other ORM tools, independently identify and assess aggregate data management risks, trends and emerging risks. Use such assessments to determine if actions need to be taken to strengthen risk management or reduce risk.
- Perform on going monitoring of data key risk metrics and ensure breaches are properly addressed and escalated as appropriate.
- Provide aggregate enterprise-wide data risk reporting for management and the applicable risk committees. Ensure material data risks and events are escalated to management and relevant committees.
- Work closely with Industry associations to stay abreast of evolving/emerging risks and industry practices.
- Work with Americas Compliance and Legal divisions to identify data related legal and regulatory requirements.
- Responsible for supervising staff.
- Typically requires 10+ years direct work experience in risk management in the financial industry.
- 5+ years of management/supervisory experience
- Requires extensive knowledge of data management operations from both process and technology perspectives.
- Excellent skills in data risk assessment analysis, identifying trends and signs of changing risk levels.
- BA or BS degree preferred.
- Ability to build collaborative and productive working relationships, consensus and a sphere of influence with business teams and others across all functions.
- Team player who can excel in a fast paced, challenging environment with a strong desire to continuously improve and learn new things.
- Excellent communications skills, both oral and written with experience presenting to senior level management.
- Demonstrated ability to motivate and engage employees, build teams, identify and develop talent.
- Experience interfacing with banking/financial services industry regulators.
The above statements are intended to describe the general nature and level of work being performed. They are not intended to be construed as an exhaustive list of all responsibilities duties and skills required of personnel so classified.
We are proud to be an Equal Opportunity / Affirmative Action Employer and committed to leveraging the diverse backgrounds, perspectives, and experience of our workforce to create opportunities for our colleagues and our business. We do not discriminate in employment decisions on the basis of any protected category.
A conviction is not an absolute bar to employment. Factors such as the age of the offense, evidence of rehabilitation, seriousness of violation, and job relatedness are considered in all employment decisions. Additionally, it's the bank's policy to only inquire into a candidate's criminal history after an offer has been made. Federal law prohibits banks from employing individuals who have been convicted of, or received a pretrial diversion for, certain offenses.