Principal Technology Risk Management

at Discover Bank in New Castle, Delaware, United States

Job Description

Discover. A brighter future.

With us, you'll do meaningful work from Day 1. Our collaborative culture is built on three core behaviors: We Play to Win, We Get Better Every Day & We Succeed Together. And we mean it - we want you to grow and make a difference at one of the world's leading digital banking and payments companies.We value what makes you unique so that you have an opportunity to shine.


Come build your future, while being the reason millions of people find a brighter financial future with Discover.Job Description

At Discover, be part of a culture where diversity, teamwork and collaboration reign. Join a company that is just as employee-focused as it is on its customers and is consistently awarded for both. We're all about people, and our employees are why Discover is a great place to work. Be the reason we help millions of consumers build a brighter financial future and achieve yours along the way with a rewarding career.


This position is responsible for analyzing and managing technology risk by providing enterprise-wide oversight and governance for technology risk management activities within the Company. Assists with the execution of various risk frameworks across the organization by monitoring and reporting on risk activities and framework compliance for identifying, assessing and reporting on risk related activities. Responsible for effective challenge of the first line in the effective management of its related risks.



Provides technology risk oversight and effective challenge (create, coordinate, evaluate & assess): policies, standards, processes and procedures.

Key contributor to annual review process to align various technology risk areas including Architecture, and Change Management to COBIT framework

Ensures program compliance and executes risk mitigation activities. Leads the effective challenge of risk and mitigation plans

Ability to provide effective leadership and subject matter expertise in Technology Risk topics to senior management, technology and business partners

Ensures adherence to risk management frameworks

Utilize available risk management tools to proactively identify potential risk exposures and partner with program offices to address potential weaknesses and/or gaps in a timely manner

Provide quality assurance and effective challenge regarding risk reporting across various Technology Risk areas to senior leadership

Monitors and tracks issues and reports

Build and maintain collaborative relationships with Technology and Business partners, and peers


Minimum Qualifications

At a minimum, here's what we need from you:

Bachelor's Degree in Engineering, Statistics, Computer Science, Mathematics, Operations Research, or related field

4+ years of experience in Technology, Financial Services, Risk Management, System Auditor, or related field

3+ years of experience - (hands-on) in Architecture, Change Management and\or DevSecOps.

3+ years of experience in Compliance, Internal Audit, Risk Management, or related field

In lieu of a degree, 8+ years of experience in Risk Management, Audit, or related field

Working knowledge and deep understanding of Technology and it's management lifecycle


Preferred Qualifications

Master's Degree in IT, Risk Management, Engineering, or related field

Working experience in 2nd line Information Risk Management (Technology Risk, Information Security)

CRISC, CGEIT, CISA, CISM, CISSP, or similar Preferred. BSIMM (Building Security in Maturity Model)

Working knowledge of Information Technology and risk constructs aligned to COBIT framework including but not limited to Enterprise Architecture, Cloud deployment models and associated security risks

SME Knowledge of technology risk programs and process including, but not limited to, Audit reviews, Risk assessment and Incident Management

Financial Institution and market knowledge of risk management best practices

Technical knowledge of reference architecture, container orchestration, DevSecOps construct including CI/CD pipeline and tools; sound understanding of networking topologies, security tools, and micro-services application architecture

Employ influencing skills to obtain buy-in and participation from various groups and stakeholders without direct control






What are you waiting for? Apply today!


The same way we treat our employees is how we treat all applicants – with respect. Discover Financial Services is an equal opportunity employer (EEO is the law). We thrive on diversity & inclusion. You will be treated fairly throughout our recruiting process and without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status in consideration for a career at Discover.

Copy Link

Job Posting: 843311

Posted On: Sep 11, 2021

Updated On: Oct 12, 2021