Head of Technology Risk, Governance, and Controls

S&P Global

Hybrid

Quick summary

Work type
Hybrid
Location
New York, NYRaleigh, NCPrinceton, NJCharlottesville, VA
Salary
$220,000–$350,000 / yr
Posted
3 days ago

Market check

Salary context

Above market

How this pay compares to similar roles

Similar $208k
This role $285k
$142k most similar roles pay here $372k

This role pays more than 89% of similar roles. Most pay $170,250–$246,425 — the shaded band above. At the midpoint, this role pays about $285k versus about $208k for comparable roles.

Based on 239 similar postings.

Employer

About S&P Global

S&P Global delivers Essential Intelligence® that shapes decision making. We provide the world’s leading organizations with the right data, connected technologies and expertise they need to move ahead.

S&P Global currently has 19 open roles on FindRole.

Listed pay typically runs $149,515–$226,998 across 14 roles with salary data.

Most-posted roles

View all roles at S&P Global

At a glance

TL;DR · Head of Technology Risk, Governance, and Controls

The Head of Technology Risk, Governance, and Controls at S&P Global is a senior leadership role within the Digital Technology organization, responsible for overseeing first-line risk management across technology teams. This position involves developing and implementing strategies to ensure regulatory compliance, manage internal controls, and mitigate risks associated with emerging technologies like AI/ML and cloud services. Key responsibilities include liaising with Internal Audit and External Auditors on SOX controls, collaborating with Enterprise Risk and Compliance to operationalize the enterprise risk framework, and establishing KPIs for technology risk and compliance. The ideal candidate has extensive experience in technology risk management, stakeholder engagement, and familiarity with frameworks such as NIST CSF, ISO 27001, COBIT, and SOX IT General Controls. Additionally, proficiency with GRC platforms and relevant certifications like CRISC or CISM is preferred.

What you'll do

  • Lead the development and execution of technology risk management strategies.
  • Oversee and manage SOX controls and annual testing in collaboration with finance and audit teams.
  • Establish and track KPIs and KRIs for technology risks and compliance across all tech teams.
  • Design and implement a comprehensive control environment for AI technologies, including monitoring and secure deployment.
  • Own the identification, remediation planning, and escalation of technology risks from third parties and cloud providers.

What we're looking for

  • Minimum 15 years of technology risk management and internal controls implementation experience.
  • Proven ability to manage people and navigate stakeholder relationships in a global environment.
  • Deep understanding of technology risk frameworks like NIST CSF, ISO 27001, COBIT, and SOX IT General Controls.
  • Experience with emerging tech risks such as AI/ML, cloud computing, and data privacy.
  • Hands-on experience using GRC platforms for governance and reporting at scale.
  • Relevant professional certifications in risk management or information security (e.g., CRISC, CISM).
  • Demonstrated success operating within a Three Lines model, collaborating with second-line risk functions.

More like this

Similar roles

Technology Risk Executive

JPMorgan Chase

Jersey City, NJ +2 20 days ago $185,250$285,000
AWS Azure GCP JIRA Jenkins Artifactory ITIL CI/CD resiliency observability cloud architectures vendor management application testing quality control change and release management public cloud private cloud

Director, Technology & Cyber Risk Metrics

Capital One Financial

Richmond, VA +1 34 days ago $230,400$263,000
Python SQL Azure AWS GCP Kubernetes Docker CI/CD Prometheus Grafana PostgreSQL Snowflake GitLab Jira Confluence NIST ISO27001 SOC2 DevOps Agile

Senior Manager, Technology Operations

Walmart

Hoboken, NJ +1 7 days ago $108,000$216,000
Python SQL Kubernetes AWS Terraform CI/CD Docker Prometheus Grafana PostgreSQL Git Jira Confluence Scrum Agile

Technology Operational Risk Management Lead, Cybersecurity

JPMorgan Chase

Jersey City, NJ +3 5 days ago $147,250$215,000
Cybersecurity Operational_Risk_Management KPIs_KRIs Control_Assessment Infrastructure_Architecture Application_Architecture Testing_and_Monitoring Data_Driven_Approaches Automated_Testing Complex_System_Analysis Business_Process_Support Risk_Framework_Procedures Senior_Level_Influence Multi_Tasking Verbal_Communication Written_Communication Persuasive_Presentation