Comerica
BRCO Risk Partner Lead / Cloud Data Warehouse Risks
We are seeking a Cloud Data Risk Partner to support cloud-based data warehouses, data lake, data mining and AI environments. This role focuses on early lifecycle risk identification, robust control design, and continuous oversight of risk remediation activities. You'll partner with business, engineering, data, and security teams to embed strong, sustainable controls and play a key role in First Line of Defense (1LOD) challenge and issue management. The Business Risk and Control Officers (BRCO) play a pivotal role in guiding business units to identify and understand risk exposures and the controls needed which are integral to reducing risk and safeguarding our customers and colleagues. BRCOs are members of the First Line of Defense (1LOD) in Comerica's strong Three Lines of Defense (3LoD)-centric environment. They proactively advise businesses on risks and controls. They efficiently own issue management. They support business units on risk and control audits. Position Responsibilities: Strategic Risk Leadership Guide the business in identifying and mitigating risk exposures in the data warehouse environment. Drive end-to-end risk lifecycle: Planning, Identification, Assessment, Mitigation, Monitoring, Reporting. Serve as the key 1LOD liaison to enable early, effective risk management for business applications. Issue Management & Governance Proactively lead risk closure tracking, issue validation, and formal documentation for internal audit and Second Line of Defense (2LOD) alignment. Provide effective challenge to 1LOD colleagues where necessary to uphold control rigor. Analyze themes across issues to highlight emerging risks and drive preventive solutions. Control & Compliance Advisory Advise on control design for cloud, Artificial Intelligence (AI), Data governance, and data warehouse platforms (like Snowflake) aligned with SOX, NIST, GLBA, HIPPA and data privacy requirements. Ensure controls are risk-appropriate, efficient, and aligned with regulatory expectations. Partner with control owners on remediation plans and validate resolution effectiveness. Collaboration & Enablement Build strong relationships with data, AI working groups, cloud, infrastructure, and governance teams. Support education and enablement of control owners to improve risk awareness. Align new and evolving technologies (e.g., CI/CD, cloud-native platforms) with enterprise risk posture.
We are seeking a Cloud Data Risk Partner to support cloud-based data warehouses, data lake, data mining and AI environments. This role focuses on early lifecycle risk identification, robust control design, and continuous oversight of risk remediation activities. You'll partner with business, engineering, data, and security teams to embed strong, sustainable controls and play a key role in First Line of Defense (1LOD) challenge and issue management. The Business Risk and Control Officers (BRCO) play a pivotal role in guiding business units to identify and understand risk exposures and the controls needed which are integral to reducing risk and safeguarding our customers and colleagues. BRCOs are members of the First Line of Defense (1LOD) in Comerica's strong Three Lines of Defense (3LoD)-centric environment. They proactively advise businesses on risks and controls. They efficiently own issue management. They support business units on risk and control audits. Position Responsibilities: Strategic Risk Leadership Guide the business in identifying and mitigating risk exposures in the data warehouse environment. Drive end-to-end risk lifecycle: Planning, Identification, Assessment, Mitigation, Monitoring, Reporting. Serve as the key 1LOD liaison to enable early, effective risk management for business applications. Issue Management & Governance Proactively lead risk closure tracking, issue validation, and formal documentation for internal audit and Second Line of Defense (2LOD) alignment. Provide effective challenge to 1LOD colleagues where necessary to uphold control rigor. Analyze themes across issues to highlight emerging risks and drive preventive solutions. Control & Compliance Advisory Advise on control design for cloud, Artificial Intelligence (AI), Data governance, and data warehouse platforms (like Snowflake) aligned with SOX, NIST, GLBA, HIPPA and data privacy requirements. Ensure controls are risk-appropriate, efficient, and aligned with regulatory expectations. Partner with control owners on remediation plans and validate resolution effectiveness. Collaboration & Enablement Build strong relationships with data, AI working groups, cloud, infrastructure, and governance teams. Support education and enablement of control owners to improve risk awareness. Align new and evolving technologies (e.g., CI/CD, cloud-native platforms) with enterprise risk posture.