Technology Risk Manager Cover Letter

I would like to submit my application for the technology risk manager opening. Please accept this letter and the attached resume.

Previously, I was responsible for guidance on other elements of a security program necessary to support information security in compliance with established company policies, regulatory requirements and generally accepted information security controls.

I reviewed the requirements of the job opening and I believe my candidacy is an excellent fit for this position. Some of the key requirements that I have extensive experience with include:

• Familiarity data management tools
• Familiarity with risk technology and assessment tools
• Hands-on application development life-cycle practices
• Strong background in data control evaluation, data life-cycle management, and database technology
• Experience in software development of transactional and analysis/reporting
• IT Risk management or governance certifications (CGEIT, CRISC, CISA)
• Previous work within Risk and/or Finance
• Practical experience of working in Technology Risk, Controls & Analytics within a professional services firm or FTSE 350

I would like to submit my application for the technology risk manager opening. Please accept this letter and the attached resume.

Previously, I was responsible for recommendations to project teams, application owners, and other information security teams on controls pertaining to identity and access management.

My experience is an excellent fit for the list of requirements in this job:

• Improving formality and documentation of business unit policies, procedures, and training
• Reviewing process and procedural changes, implementing risk management and compliance initiatives, organizing working groups and performing analysis on loss events
• Mitigating errors and incidents through analysis and remediation of root causes with subsequent process improvement resulting from lessons learned
• Documenting and maintaining risk maps and key risk indicators
• Participating in internal risk forums
• Working with and managing our offshore resources
• Intermediate level understanding of the financial markets
• Team player who is able to work in a global team

In response to your job posting for technology risk manager, I am including this letter and my resume for your review.

Previously, I was responsible for oversight of the Sempra/SDG&E and SoCalGas Risk/Intelligence Analysts who assist with maintaining effective risk management and intelligence programs; the Physical Security Operations Advisor who implements and maintains access and detection security systems; and the Security Compliance Coordinator who ensures appropriate compliance with regulatory standards.

Please consider my experience and qualifications for this position:

• Be able to demonstrate a track record in strengthening existing & developing new client relationships
• Experience of working on large scale projects within the corporate sector
• Extensive experience coordinating, facilitating and managing security and compliance audits
• Successful record of implementing and improving operational processes
• To be successful in this role we are looking for someone with experience implementing and leading through significant technology projects experience
• Strong risk and controls acumen with knowledge and awareness of the compliance competitive and regulatory landscape, with specific knowledge of Technology specific issues
• Strong understanding of the software development lifecycle including web development
• Extensive experience leading solution delivery teams inclusive of scope, scheduling, budgeting and project planning in an environment with aggressive delivery goals

I am excited to be applying for the position of technology risk manager. Please accept this letter and the attached resume as my interest in this position.

In the previous role, I was responsible for guidance to internal customers regarding practical application of information security policies and standards and regulatory requirements.

Please consider my qualifications and experience:

• Experience building teams and motivating all levels of staff towards both tactical and strategic delivery goals
• To be successful in this role we are looking for someone with experience implementing and leading through significant technology projects experience , preferably in cyber security
• Experience architecting security solutions and remediating vulnerabilities related to web services, mobile development, or 3rd party integration
• Experience with assessment, development, implementation, and documentation of a comprehensive and broad set of security technologies and processes (secure software development (Application Security), data protection, cryptography, key management, identity and access management (IAM), and network security
• Knowledge of API development and Java
• Proficiency in IT Security and Compliance, Regulatory Requirements (SOC 2, ISO27001, NIST800-53, PCAOB, CSA)
• Familiar with industry compliance standards as they relate to Software as a Service and Cloud Computing, such as SOC1, SOC2, ISO27001, ISO27018, PCI
• Audit management experience (auditor-facing or customer-facing)

I would like to submit my application for the technology risk manager opening. Please accept this letter and the attached resume.

In the previous role, I was responsible for expertise planning & delivering multiple complex, enterprise, Security Information projects and programs within the Identity & Access Management (IAM) domain.

Please consider my experience and qualifications for this position:

• Leading 2nd Line of Defence activities over technology and change risks in the business, including development of appropriate risk management frameworks and independent assurance activities
• Providing oversight and effective challenge over risks relating to technology and change, including projects and major transformational programmes, to influence senior management decision-making
• Supporting, advising and partnering with the 1st Line of Defence to implement risk management tools, processes and methodologies to help identify and manage risks associated with technology and change and ensure they are used effectively
• Develops frameworks for management of technology and change risks that are appropriate for the business
• Partners with the 1st Line of Defence to ensure the frameworks are implemented effectively by promoting a strong awareness of tools, processes and methodologies and supporting risk specialists
• Identifies and works closely with areas of the 1st Line of Defence most closely associated with technology and change risks
• Provides oversight and assurance over risks in respect of major transformational programmes
• Delivers 2nd Line of Defence assurance activities over technology and change risks and reports findings in a compelling, impactful and actionable manner