Wealth Management- Security Engineer -New York-Vice President (2024)

What We Do

At Goldman Sachs, our Engineers don’t just make things – we make things possible. Change the world by connecting people and capital with ideas. Solve the most challenging and pressing engineering problems for our clients. Join our engineering teams that build massively scalable software and systems, architect low latency infrastructure solutions, proactively guard against cyber threats, and leverage machine learning alongside financial engineering to continuously turn data into action. Create new businesses, transform finance, and explore a world of opportunity at the speed of markets.

Engineering, which is comprised of our Technology Division and global strategists groups, is at the critical center of our business, and our dynamic environment requires innovative strategic thinking and immediate, real solutions. Want to push the limit of digital possibilities? Start here.

Who We Look For

Goldman Sachs Engineers are innovators and problem-solvers, building solutions in risk management, big data, mobile and more. We look for creative collaborators who evolve, adapt to change and thrive in a fast-paced global environment.

Asset & Wealth Management Engineering

Across Wealth Management, Goldman Sachs helps empower clients and customers around the world to reach their financial goals. Our advisor-led wealth management businesses provide financial planning, investment management, banking and comprehensive advice to a wide range of clients, including ultra-high net worth and high net worth individuals, as well as family offices, foundations and endowments, and corporations and their employees. Our consumer business provides digital solutions for customers to better spend, borrow, invest, and save. Across Wealth Management, our growth is driven by a relentless focus on our people, our clients and customers, and leading-edge technology, data and design.

JOB SUMMARY:Lead and execute firmwide and divisional initiatives while representing Governance, Risk and Compliance (GRC) mandates. Utilizing prior experience and knowledge, the Tech Risk Governance VP will challenge decision and direction using a risk-based mindset and methodology.

JOB DUTIES:

• Work with internal application development and engineering teams that are developing the next generation of critical business applications, help them to understand Information Security and Risk Management control requirements, and advise on the integration of these controls into their applications.
• Ensure compliance with required control activities based on directives from operational risk management, internal audit and compliance teams.
• Conduct and lead testing of data governance controls.
• Develop and present executive-level risk presentations and communications to provide program approach.
• Assist in developing various assessment programs; review and evaluate the evidence of the controls to ensure control performance
• Communicate the impact of technology risks and the approach to mitigation/acceptance and provide risk assessment and advisory services to technology engineers, and technology and business management.
• Assess identified risks for applications, infrastructure and data and assist teams in determining appropriate remediation steps.
• Identify risk themes and systemic operational issues to escalation and remediation.
• Drive adoption of embedded application security controls as part of the Software Development Life Cycle (SDLC).
• Contribute to the technical understanding, adoption and convergence of information security standards, solutions and tools.
• Work with developers and central teams to automate reporting and operational activities
• Suggest and lead improvements in metrics and monitoring via the creation/improvement of KPIs, KRIs and other operational metrics to help illustrate highest areas of risks for senior leadership

EDUCATIONAL REQUIREMENTS:

Bachelor’s degree (US or foreign equivalent) or minimum 5 years of industry experience

SPECIAL SKILLS AND/OR LICENSES:

The following certifications are a plus:

• CISSP
• CRISC
• CISM
• CISA
• ISO 27001/2
• Knowledge or prior experience with NIST, SOC I / II, data privacy and data governance controls.

Travel required: No

ABOUT GOLDMAN SACHS

At Goldman Sachs, we commit our people, capital and ideas to help our clients, shareholders and the communities we serve to grow. Founded in 1869, we are a leading global investment banking, securities and investment management firm. Headquartered in New York, we maintain offices around the world. We believe who you are makes you better at what you do. We're committed to fostering and advancing diversity and inclusion in our own workplace and beyond by ensuring every individual within our firm has a number of opportunities to grow professionally and personally, from our training and development opportunities and firmwide networks to benefits, wellness and personal finance offerings and mindfulness programs. Learn more about our culture, benefits, and people atGS.com/careers.

We’re committed to finding reasonable accommodations for candidates with special needs or disabilities during our recruiting process. Learn more:https://www.goldmansachs.com/careers/footer/disability-statement.html©

The Goldman Sachs Group, Inc., 2023. All rights reserved.

Goldman Sachs is an equal employment/affirmative action employer Female/Minority/Disability/Veteran/Sexual Orientation/Gender Identity