Technology and Cyber Risk ManagerThe Technology and Cyber Risk Manager role will be responsible for the development and maintenance of second line of defense technology and information risk management, including oversight of cyber risk. risk assessment methodologies for Comerica's IT applications and supporting infrastructure, oversight of IT policy/standards development, and evaluation of the suitability of IT risk acceptances in context of risk appetite. This role will also be responsible for maintenance of the technology and information-related risk management and risk reporting framework, including identification and reporting of key IT risks and Key Risk Indicators (KRIs), risk control self-assessments (RCSAs) for risks related to the achievement of Comerica's IT objectives, and participation in and management of IT governance committees.Position CompetenciesSuccessful incumbents possess leadership skills; have coaching skills; can develop reports; results driven; planning and organizational skills; and have decisive judgment .Position Responsibilities:Maintain methodology and facilitate execution of inherent and residual IT application risk assessments and other technology risk assessments.Challenge IT policy/standards development to ensure conformity with best practices and regulatory guidelines/requirements ((i.e. FFIEC, AIBE, PCI DSSSOX, GLBA, HIPAA, etc.).Maintain the technology- and information-related risk management framework/taxonomy, including identification and reporting of IT risks and Key Risk Indicators (KRIs) and ensure integration with Enterprise Risk Management (ERM) framework.Monitor and challenge key cyber security processes, system development, and technology operations processes, including Data Encryption Methods.Monitor, oversee, and track technology/IT policy-related risk acceptances.Participate in and/or manage IT risk oversight committeesOversee/challenge risk control self-assessments (RCSAs) for risks related to the achievement of Comerica's IT objectives.Utilize knowledge/experience with industry best practices and standards (i.e.NIST, ISO, COBIT, FAIR, etc.).Utilize knowledge/experience with cyber security tool applications, Network Security Design, OS background and/or experience with multi-platforms: UNIX, Windows to provide independent challenge.Leverage experience related to CGEIT, CISSP, CRISC, or CISM.Experience Securing Cloud deployments is a plus (i.e. AWS, Azure, GCP, etc.).Position QualificationsBachelor's degree from an accredited university in Technology, Computer Science, Business, Finance, or related field from an accredited university10 years of experience in technology, cyber security, information risk management or related field2 years of experience leading teams and/or managing personnelWe know that our employees are critical to our overall success. We are dedicated to investing in their future to maintain long-term relationships for lasting commitments. One of the ways we do this is to offer a comprehensive package of compensation and benefits programs which are regularly reviewed to maintain them at competitive levels. Your salary will be commensurate with your work experience.Upon offer, Comerica conducts a comprehensive background check, fingerprint check and a drug test.NMLS certification requirement: where applicable, a favorable background check screening, credit check, fingerprint check, and NMLS certification is required in accordance with the SAFE Act.Comerica Incorporated (NYSE: CMA) is a financial services company headquartered in Dallas, Texas, and strategically aligned by the Business Bank, the Retail Bank, and Wealth Management. Comerica's more than 9,000 colleagues focus on relationships, and helping people and businesses be successful. In addition to Texas, Comerica Bank locations can be found in Arizona, California, Florida and Michigan, with select businesses operating in several other states, as well as in Canada and Mexico.Comerica is proud to be an Equal Opportunity Employer - veterans/individuals with disabilities, committed to workplace diversity.