Senior Director – Technology Risk

Nasdaq’s Group Risk Management (GRM) is looking for a passionate Senior Director with a focus on Technology Risk, to join the Bangalore technology center in India. If Innovation and effectiveness drive you forward this is the place for you!

The Technology Risk Management team of GRM is seeking an experienced Technology Risk leader. The Technology Risk leader will support broader GRM efforts to implement and mature Nasdaq’s risk management framework and drive the implementation and enhancement of risk management programs across Global Technology to promote transparency and well-informed decision-making, support compliance with regulations and industry standards, and enrich reporting and analysis. The Technology Risk leader will report to the Global Head of Financial Risk Management & Technology Risk Management.

Your role and responsibilities:

You will lead cross-functional teams across the globe, delivering critical solutions and services to world-leading Market Infrastructure Operators and New Markets. You will be responsible for essential project management activities and internal customer interaction, often working on-site building strong relations and trust with your client. 

 In this role, you will have the opportunity to work in a strong experienced team delivering complex technology solutions to international clients. You will work with and learn from subject matter experts, and have the opportunity to take on more responsibility and progress within the Project Management team.  Besides working closely with your colleagues in Bangalore, you will also work closely with Nasdaq teams in other countries.

Furthermore, you will: 

• Develop methodologies and tooling to embed the technology risk management framework across Nasdaq.
  • Integrate risk tolerances into business decision-making;
  • Establish internal standards alongside legal, compliance, technology and infosec defining appropriate (risk-based) controls to identify and address risks from emerging technologies; 
  • Risk assess proposed use cases and partner with the business to control the responsible roll-out of technologies across the firm
  • Perform risk assessment of associated projects as they progress through the software development lifecycle into production.
  • Establish reporting mechanisms to communicate risks across the portfolio of technologies.
• Lead risk management coverage for emerging technologies including artificial intelligence (AI) and ensure Nasdaq’s alignment to evolving industry best practices;
• Representing GRM, serve as a risk management subject matter expert for Global Technology.
• Build key relationships with Global and Divisional Technology management and serve as a trusted partner to the Global Technology management team, contributing to the function’s strategic initiatives in the context of GRM’s risk frameworks. 
• Work with Global Technology senior management to further embed the risk management framework and enhance related risk management reporting and analysis.
• Provide objective assurance and advisory to Technology senior management including identification of significant risks and risk response strategies and actions.  Analyze risks and financial implications and work with management to ensure the level of risk remains within an acceptable level. 
• Establish Key Risk Indicators (KRIs) and perform ongoing oversight across Nasdaq to ensure risks are periodically reviewed, managed within tolerance, and new threats considered in the operation of those services.
• Lead and execute risk assessments including Risk and Control Self Assessments (RCSA), Top Risk Assessments, Project Risk Assessments, New Product Assessments, as appropriate.  Partner with Business Unit Risk Officers to execute business specific risk assessments.
• Support the business in use of third-party tools by conducting due diligence, as appropriate, to assess risks associated with the use and deployment of those tools.
• Execute risk management training and promote a pro-active risk culture.  Provide expertise and guidance on risk management concepts.  Develop related training materials.
• Effectively communicate with the broader global risk team and partner with peers to ensure consistency of approach and awareness of issues, challenges, and opportunities; achieving shared goals and objectives and providing value-add to the organization. 
• Pro-actively engage Internal Audit, SOX, Compliance, Information Security, Supplier Risk Management, Business Continuity, and other assurance functions to support an integrated approach to risk management.  Share knowledge and expertise to achieve shared goals.
• Support Nasdaq’s Business Continuity and Crisis Management program to ensure resilience and crisis preparedness. 
• Contribute as a thought leader through industry discussions and support Nasdaq’s public policy agenda.
• Review and draft responses to industry comment letters and RFIs.
• Monitor and report on the latest industry developments, external incidents and near-misses, regulatory updates and other matters with potential to impact Nasdaq’s strategy and/or operations.

We expect you to have: 


• At least 15+ years in a technology role with 3 – 5 years of experience managing risks associated with emerging technologies like Development processes, Artificial Intelligence (AI), Web 3.0, cloud computing, and cybersecurity.
• Big 4 or other similar consulting experience in executing technology risk audits and/or assessments across client organizations.
• Existing knowledge of the types of risks associated with the use of algorithmic and generative AI –privacy, 3rd party, IP and copyright, legal risks, operational and technology risks.
• Must have in-depth knowledge in conventional technologies such as Networking, Databases, Software Development Cycles (DevSecOps, CICD), Software Testing Methodologies, Cloud computing (IaC, Kubenetes, Containerization).
• Familiarity with industry standards and regulations such as GDPR, ISO 27001, etc.
• Good knowledge of emerging AI regulation including US EOs, the EU AI Act and AI risk management frameworks (NIST RMF).
• Innovative, strategic thinker who can challenge the status quo through openness and without judgement.
• Generates energy and commitment.  Action and results-oriented; ability to drive results, effect change, and have a positive impact on the organization.
• Strong analytical skills and the ability to assess complex technical environments for potential risks. 
• Knowledge and experience portraying complex and analytical information visually with high attention to detail and accuracy.
• Excellent oral and written communication and interpersonal skills, with the ability to collaborate effectively across diverse teams and geographic locations.
• Experience presenting to and reporting into senior management forums.
• Demonstrated ability to work independently and manage multiple priorities.
• Demonstrated ability to develop trusted working relationships with all levels of an organization.  Ability to cultivate relationships and collaborate with multiple stakeholders including business leaders, legal, technology. 
• Experience partnering with business leaders and subject matter experts to review, assess, and propose solutions for specific risk issues as they are identified. 
• Self-motivated, adaptable, and delivery focused individual with a collaborative style to support the broader team as required. 
• Willingness and ability to travel.
• Education Qualification: Bachelor's degree in a relevant field (e.g., Computer Science, Data Science, Information Technology, AI).  Master’s degree a plus.

Come as You Are

Nasdaq is an equal opportunity employer. We positively encourage applications from suitably qualified and eligible candidates regardless of age, color, disability, national origin, ancestry, race, religion, gender, sexual orientation, gender identity and/or expression, veteran status, genetic information, or any other status protected by applicable law.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request an accommodation.