WHO WE ARE
Led by the Chief Information Security Officer (CISO), Technology Risk is responsible for governing and overseeing the information security and cybersecurity risk and controls landscape for the Firm. We are responsible for detecting and preventing attempted cyber intrusions against the firm, helping the firm develop more secure applications and infrastructure, developing software in support of our efforts, measuring information security & cybersecurity risk through intelligent tooling, and designing and driving implementation of information security & cybersecurity controls. The team has global presence across the Americas, APAC, India and EMEA.
Within Technology Risk, Digital and Risk Assurance is the execution arm, responsible for analyzing, triaging, and reporting on newly discovered risks, supporting Engineering Divisions in risk management, supporting our external audits from a technology standpoint, overseeing internal assessments as well as ensuring the integrity of the environment.
Goldman Sachs has one of the most progressive Technology Risk teams in the industry and is continuing to push the development of risk in preference to security within technology and the business. Year on year success has led the team to work deeper into the organization and gain valuable insights into how technology needs to function, what its risk really is and how this impacts the business.
YOUR IMPACT
You will be a key addition to the Tech Risk Assurance team, which partners with engineering teams across the firm to help them understand what they can do to reduce and manage their risk and make their systems more resilient.
HOW YOU WILL FULFILL YOUR POTENTIAL
Your responsibilities will include governance aspects of issue management, CCM (Continuous Controls Monitoring), Control Incident Management, Technology Resilience, and Controls Assurance programs. You will work with all pillars within Technology Risk to understand the risks being identified and their potential impact. You will work with engineering teams to help them understand their complete risk portfolio and how they can reduce risk most effectively. You will partner in programs to reduce risk and improve resiliency across the firm. This will be an opportunity to build broad knowledge of the business and technologies across the entire firm and work with engineers at all levels in the organization.
Responsibilities include:
- Be accountable for driving exceptions to zero, through teamwork, coordination and escalation of newly discovered and existing issues
- Identify and track technology uplifts to manage risk
- Define clear, meaningful metrics for measuring compliance with our policies and standards
- Develop fact pattern analysis for exceptions (develop trends and derive root cause for repeat issues)
- Develop procedures and processes for control oversight and monitoring
- Test and validate the design, implementation, and performance of controls
BASIC QUALIFICATIONS & SKILLS
- Bachelor’s degree
- 3+ years’ experience in Risk Management, Risk Reporting, Audits, Governance, Resilience, etc.
- Experience with any data analysis/visualization tool such as Excel, Tableau, Power BI, R, SQL, etc.
- Understanding of risk management principles or Sarbanes–Oxley Section 404, SOC 1 and SOC 2 reporting
- Experience with general and cyber security related Information technology controls design and reviews
- Ability to work effectively in a global team environment and drive results in a matrixed organization
- Results oriented, strong sense of ownership and eagerness to learn
- Knowledge of IT audit methodologies and control frameworks of IT platforms, processes, systems and controls, including areas such as logical access, physical security and change management controls at an infrastructure and application level
- Strong sense of ownership and accountability
- Clear communication skills, both verbally and in writing
PREFERRED QUALIFICATIONS
- Industry certifications such as CISA and/or CISSP desired but not essential
- Experience with public/private Cloud technologies (Cloud Foundry, AWS, GCP, Azure etc)
- Understanding of information technology audit and control frameworks such as NIST COBIT and ITIL
#TechRiskCybersecurity
ABOUT GOLDMAN SACHS
At Goldman Sachs, we commit our people, capital, and ideas to help our clients, shareholders, and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities, and investment management firm. Headquartered in New York, we maintain offices around the world.
We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people at GS.com/careers.
We’re committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more: https://www.goldmansachs.com/careers/footer/disability-statement.html
© The Goldman Sachs Group, Inc., 2024. All rights reserved.
Goldman Sachs is an equal employment/affirmative action employer Female/Minority/Disability/Veteran/Sexual Orientation/Gender Identity
0 applies
0 views
Other Jobs from Goldman Sachs
Software Engineer - Associate - Human Capital Management
Security Engineer - Associate - Tech Risk
Audit (Technology and Engineering) | Associate | Salt Lake City
Similar Jobs
Senior Software Engineer - Platform / Server (Bangalore, India)
Lead Software Engineer - Platform / Server (Bangalore, India)
Staff Data Scientist (AI/ML/LLM)
Data Scientist
Senior DevOps Engineer - AQNav
NetApp Emerging Talent - Software Engineer - Cloud
There are more than 50,000 engineering jobs:
Subscribe to membership and unlock all jobs
Engineering Jobs
60,000+ jobs from 4,500+ well-funded companies
Updated Daily
New jobs are added every day as companies post them
Refined Search
Use filters like skill, location, etc to narrow results
Become a member
🥳🥳🥳 401 happy customers and counting...
Overall, over 80% of customers chose to renew their subscriptions after the initial sign-up.
To try it out
For active job seekers
For those who are passive looking
Cancel anytime
Frequently Asked Questions
- We prioritize job seekers as our customers, unlike bigger job sites, by charging a small fee to provide them with curated access to the best companies and up-to-date jobs. This focus allows us to deliver a more personalized and effective job search experience.
- We've got about 70,000 jobs from 5,000 vetted companies. No fake or sleazy jobs here!
- We aggregate jobs from 5,000+ companies' career pages, so you can be sure that you're getting the most up-to-date and relevant jobs.
- We're the only job board *for* software engineers, *by* software engineers… in case you needed a reminder! We add thousands of new jobs daily and offer powerful search filters just for you. 🛠️
- Every single hour! We add 2,000-3,000 new jobs daily, so you'll always have fresh opportunities. 🚀
- Typically, job searches take 3-6 months. EchoJobs helps you spend more time applying and less time hunting. 🎯
- Check daily! We're always updating with new jobs. Set up job alerts for even quicker access. 📅
What Fellow Engineers Say