National War College Alumni Association

What does a great Director of Risk and Compliance do?

The Director of Risk and Compliance will perform activities to ensure the Fiserv Account Processing Group maintains compliance with internal policies, standards, and guidelines as well as client-specific, audit, and/or legal and regulatory requirements. Account Processing Solutions provides core banking systems, support tools and related products and services for financial institution bank and credit union clients. You will aid in ensuring that the AP user community is aware, comprehends, and adheres to necessary policies and procedures related to managing risk, controls, and compliance. As part of this work, you will also be responsible for ongoing assessments of business processes and controls.

As a Director of Risk and Compliance, you can look forward to a diverse environment, working on multiple initiatives across multiple teams.

As a Director Risk and Compliance you will:

• Act as subject matter expert for ensuring adherence to Fiserv and AP policies, including leading various annual assessments and documenting and monitoring remediation of gaps to Fiserv Policies and Standards

• Direct Operational Risk Assessment (ORA) program, including responsibility for LOB-wide tracking, reporting to senior management, and day-to-day management of all ORA activities

• Provide Risk Leaders guidance and support on Operational Risk Assessment reviews. This includes overseeing completion of Phase I (Product Assessment) and Phase II (Process Assessments)

• Conduct ORA Phase III reviews with limited support from Risk Leaders. This includes facilitating review of critical business and operational processes through collaboration with the process stakeholders

• Document process steps and workflows to illustrate end-to-end process

• Discuss control gaps with process owners, facilitate exploration of risk treatment options, and provide guidance on creation of management action plans where needed

• Support Risk Leaders on Compliance Risk Assessments (CRA), where needed. This includes providing walkthrough of the process, helping to address concerns/escalations, and ensuring timely completion of the CRAs

• Assist with enhancement of ORA techniques and methodologies to improve risk identification more effectively

• Lead, coordinate, and drive other risk initiatives and an ongoing portfolio of 'special projects' related to risk reduction, controls monitoring, etc.

Basic Qualifications for consideration:

• Bachelor's degree or equivalent work experience. Four years of military experience may also be substituted for degree requirement.

• Minimum 6+ years of Compliance, Risk Assessment, and/or Audit experience

• Direct experience performing information security and risk management audits or assessments

• Strong background including application of fundamental Risk & Compliance concepts, practices, and procedures to effectively manage risk to achieve defined outcomes and desired results

• Working knowledge of technology and cybersecurity topics, including common technical security controls, data privacy, application security, network infrastructure, computer operations, database management, and systems acquisition, development & maintenance

• Management of audit, assessment, or regulatory issues or findings, including understanding and application of appropriate risk treatment

• Working knowledge on various operational/security/IT processes including Client Support, SDLC, Incident Management, DR/BCP, Change Management, Vulnerability Management, Infrastructure Management, file transmission, and other processes identified to be critical to Fiserv

• General understanding of compliance management fundamentals and technology regulations and standards (NIST, GLBA, PCI DSS, HIPAA, HITRUST, etc.) governing tech and financial services industry

• Ability to continuously prioritize projects based on risk or impact, confront conflict and difficult issues in a professional, assertive, and proactive manner

• Mature communication skills, both oral and written, to concisely communicate status, key issues, and resolutions in manners appropriate to the audience

• Skilled negotiator with the ability to lead without direct authority, influence and build consensus across functional teams

• Experience managing and communicating with staff at all organizational levels, from senior management to individual contributors

• Ability to set strategy, but focus on tactical and detail for execution

• Ability to continually asses options to utilize data and automation to improve controls, monitoring and assessments

• Sharp decision-making skills and an ability to prioritize and execute on multiple activities

• Proficient with MS Office applications (Word, Excel, PowerPoint, Visio)

Preferred Qualifications:

• Understanding of formal Software Development Life Cycle (SDLC) methodologies a plus

• Knowledge and experience with SOC or PCI-DSS control requirements

• Experience and/or expertise in banking/payments business a plus

• Certifications: CISSP, CISM, or CISA strongly preferred

Travel Required: Up to 10% Percentage/frequency of travel, depending on where you are located

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

To support the total well-being of our associates, Fiserv takes a broad approach to our benefits. We offer a comprehensive benefits package that provides flexibility and affordability with a variety of medical, dental, vision, life insurance and disability options.

We are #FISVProud of our benefits and well-being programs. Our commitment to wellness, wellness education, preventive services and fitness activities are designed to meet you where you are.

Life moves fast. And as it does, we know most people aren't thinking about "financial services". But we are.

We help people and businesses move money and information every minute of every day. Our solutions connect financial institutions, corporations, merchants and consumers to one another, millions of times a day, behind the scenes, reliably and securely.

We're Fiserv, a global leader in Fintech and payments enabling innovative financial services experiences that are in step with the way people live and work today. The company's approximately 44,000 associates proudly serve clients in more than 100 countries, so their customers, members and consumers can move money when and where they need it, at the point of thought.

Our Aspiration is to move money and information in a way that moves the world. As a FORTUNE(tm) 500 company and one of FORTUNE Magazine World's Most Admired Companies for the seventh consecutive year, we are committed to excellence and purposeful innovation.

We welcome and encourage diversity in our workforce. Fiserv is an Equal Opportunity Employer (People of Color/Females/Vets/Disabled/LGBT)

Explore the possibilities of a career with Fiserv and Find Your Forward with us.

In order to protect our Fiserv community, Fiserv requires all newly hired employees in the United States to be fully vaccinated before their start date. Proof of vaccination will be a condition to hiring. Fiserv complies with all applicable laws regarding the reasonable accommodation of individuals with disabilities and/or sincerely held religious beliefs.