First Horizon
Technology Risk Oversight Program Director
First Horizon, Charlotte, North Carolina, United States, 28202
Technology Risk Oversight Program Director
We are seeking a strategic and experienced Technology Risk Oversight Director to lead the independent oversight of technology, cybersecurity, AI and data risks across the enterprise. This role is responsible for challenging, advising, and independently assessing technology and data risk management practices to ensure effective risk governance, regulatory compliance, and resilience of critical systems in alignment with the bank's risk appetite. Job Responsibilities: Serve as the second line subject matter expert in technology, cybersecurity, and AI risk, including cloud, infrastructure, third-party tech risk, and data management. Provide credible challenge to first-line technology, information security, AI and data functions regarding risk assessments, controls, remediation plans, and project delivery. Review and assess the effectiveness of technology risk frameworks, control testing, key risk indicators (KRIs), and issue management. Partner with business and technology leaders to ensure risk-aware decisions and alignment with regulatory expectations (e.g., FFIEC, FRB, FDIC, NIST, GLBA). Monitor emerging technology risks (e.g., AI, quantum computing, ransomware), advising on implications for risk posture and required controls. Participate in the development and maintenance of enterprise risk policies, standards, and taxonomies related to technology. Support board- and executive-level reporting with clear, concise analysis of key tech risk exposures, trends, and mitigations. Coordinate with other risk areas across the enterprise to ensure integrated oversight and response to identified risk themes. Lead or support risk assessments of material technology changes, incidents, and strategic initiatives. Engage in regulatory exams, audits, and risk assessments involving technology risk topics. Participate in industry forums and build relationships with other financial institutions across the industry. Required Qualifications/Knowledge, Skills, and Abilities: Bachelor's degree and 10+ years of IT risk management experience at a large financial institution, including leadership roles. Deep understanding of technology risk, cybersecurity risk, data risk, and AI governance. Demonstrated experience in developing and implementing IT Risk Management Frameworks and related policies and standards. Strong knowledge of risk and governance frameworks (e.g., NIST, ISO, FFIEC, COBIT). Proven ability to engage and influence senior executives and stakeholders across the organization. Experience leading teams through change by creating a compelling vision for transformation. Strong project management skills with ability to manage multiple concurrent projects successfully and a proven history of strong execution on major initiatives. Proficient at collaborating with stakeholders to drive mutually beneficial processes and practices that meet the needs of the company. Experience interacting with federal banking regulators including preparing for exams, presenting materials, and articulating the bank's risk management strategy. Experience interpreting regulatory guidance and transforming guidance into executable actions. Ability to articulate the connections across risk programs and influence stakeholders to leverage risk data in business decision-making processes. Proficiency at assessing current processes with an eye towards efficiency and automation. Strong oral and written communication skills with ability to communicate at all levels of an organization. Proven ability at collaborating across the enterprise to solve complex challenges. Demonstrated ability to influence change across the organization. About Us: First Horizon Corporation is a leading regional financial services company, dedicated to helping our clients, communities and associates unlock their full potential with capital and counsel. Headquartered in Memphis, TN, the banking subsidiary First Horizon Bank operates in 12 states across the southern U.S. The Company and its subsidiaries offer commercial, private banking, consumer, small business, wealth and trust management, retail brokerage, capital markets, fixed income, and mortgage banking services. First Horizon has been recognized as one of the nation's best employers by Fortune and Forbes magazines and a Top 10 Most Reputable U.S. Bank. Benefit Highlights: Medical with wellness incentives, dental, and vision HSA with company match Maternity and parental leave Tuition reimbursement Mentor program 401(k) with 6% match More -- FirstHorizon.com/First-Horizon-National-Corporation/Careers/Our-Benefits Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.
We are seeking a strategic and experienced Technology Risk Oversight Director to lead the independent oversight of technology, cybersecurity, AI and data risks across the enterprise. This role is responsible for challenging, advising, and independently assessing technology and data risk management practices to ensure effective risk governance, regulatory compliance, and resilience of critical systems in alignment with the bank's risk appetite. Job Responsibilities: Serve as the second line subject matter expert in technology, cybersecurity, and AI risk, including cloud, infrastructure, third-party tech risk, and data management. Provide credible challenge to first-line technology, information security, AI and data functions regarding risk assessments, controls, remediation plans, and project delivery. Review and assess the effectiveness of technology risk frameworks, control testing, key risk indicators (KRIs), and issue management. Partner with business and technology leaders to ensure risk-aware decisions and alignment with regulatory expectations (e.g., FFIEC, FRB, FDIC, NIST, GLBA). Monitor emerging technology risks (e.g., AI, quantum computing, ransomware), advising on implications for risk posture and required controls. Participate in the development and maintenance of enterprise risk policies, standards, and taxonomies related to technology. Support board- and executive-level reporting with clear, concise analysis of key tech risk exposures, trends, and mitigations. Coordinate with other risk areas across the enterprise to ensure integrated oversight and response to identified risk themes. Lead or support risk assessments of material technology changes, incidents, and strategic initiatives. Engage in regulatory exams, audits, and risk assessments involving technology risk topics. Participate in industry forums and build relationships with other financial institutions across the industry. Required Qualifications/Knowledge, Skills, and Abilities: Bachelor's degree and 10+ years of IT risk management experience at a large financial institution, including leadership roles. Deep understanding of technology risk, cybersecurity risk, data risk, and AI governance. Demonstrated experience in developing and implementing IT Risk Management Frameworks and related policies and standards. Strong knowledge of risk and governance frameworks (e.g., NIST, ISO, FFIEC, COBIT). Proven ability to engage and influence senior executives and stakeholders across the organization. Experience leading teams through change by creating a compelling vision for transformation. Strong project management skills with ability to manage multiple concurrent projects successfully and a proven history of strong execution on major initiatives. Proficient at collaborating with stakeholders to drive mutually beneficial processes and practices that meet the needs of the company. Experience interacting with federal banking regulators including preparing for exams, presenting materials, and articulating the bank's risk management strategy. Experience interpreting regulatory guidance and transforming guidance into executable actions. Ability to articulate the connections across risk programs and influence stakeholders to leverage risk data in business decision-making processes. Proficiency at assessing current processes with an eye towards efficiency and automation. Strong oral and written communication skills with ability to communicate at all levels of an organization. Proven ability at collaborating across the enterprise to solve complex challenges. Demonstrated ability to influence change across the organization. About Us: First Horizon Corporation is a leading regional financial services company, dedicated to helping our clients, communities and associates unlock their full potential with capital and counsel. Headquartered in Memphis, TN, the banking subsidiary First Horizon Bank operates in 12 states across the southern U.S. The Company and its subsidiaries offer commercial, private banking, consumer, small business, wealth and trust management, retail brokerage, capital markets, fixed income, and mortgage banking services. First Horizon has been recognized as one of the nation's best employers by Fortune and Forbes magazines and a Top 10 Most Reputable U.S. Bank. Benefit Highlights: Medical with wellness incentives, dental, and vision HSA with company match Maternity and parental leave Tuition reimbursement Mentor program 401(k) with 6% match More -- FirstHorizon.com/First-Horizon-National-Corporation/Careers/Our-Benefits Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.