Your Opportunity

Managing Director, Technology Risk & Compliance Program

The Managing Director, Technology Risk & Compliance Program leads enterprise technology risk, compliance, and cybersecurity governance for Schwab Technology Services (STS). This role sets strategy, builds and operates first-line programs for control testing and issue management, and partners with senior technology leaders, Internal Audit, external auditors, and regulators to strengthen risk outcomes and protect client trust.

This role will be based in Southlake, Denver or Phoenix.

Key responsibilities

• Drive technology planning, strategy, application development, implementation, and support for Security Technologies, Security Operations, and Risk Management.
• Refine and execute the Technology Risk & Compliance program for Schwab Technology Services (STS), integrating security standards, risk/compliance requirements, and senior technology leadership expectations.
• Lead transformation efforts to strengthen the technology risk and compliance environment across STS, including Cybersecurity.
• Establish proactive controls testing for technology risk and cybersecurity controls, including internal testing and management of SOC 1 and SOC 2 reporting.
• Own and operate first-line issue management for audit, regulatory, and self-identified issues; coordinate audits, assessments, and testing with Internal Audit, external auditors, and second-line teams.
• Develop and maintain the technology risk framework, risk analytics and reporting, and training to enable a strong risk culture within STS.
• Build first-line third-party vendor security oversight in partnership with corporate risk management, Legal, and vendor management.
• Form and lead a team of Technical Information Security Officers to proactively engage business teams in cybersecurity activities.
• Engage directly with independent advisor firms to provide governance and oversight of the security program and consult on cybersecurity best practices.
• Manage the Business Risk Internal Controls Specialists Program (BRICS).

Scope & impact

• Enterprise-facing impact: helps maintain client trust, protect Schwab’s brand, and support safe operations by treating cybersecurity and technology risk management as a product/service for stakeholders.
• STS-wide scope across cybersecurity and technology risk, including standards compliance, risk assessments, issue management, audit/exam readiness, and control testing.
• High external visibility through coordination with Internal Audit, external auditors (e.g., Deloitte, RSM), and domestic/international regulatory exams, inspections, and inquiries.
• Oversight spanning internal and third-party technologies (applications, platforms, services), including emerging areas such as Artificial Intelligence.
• Drives measurable risk outcomes through risk analytics, risk appetite/metric programs (e.g., KRIs, risk appetite metrics), and recurring executive reporting on the firm’s IT and cyber risk posture.
• Shapes organizational culture by embedding risk mitigation into daily work, improving incident preparedness/response, and strengthening accountability across stakeholder groups.

What you have

Qualifications

• Experience: 10+ years in technology security and/or audit testing with a focus on technology risk management; 7+ years of senior management experience.
• Methods and frameworks: Experience working in an Agile model; service management exposure to COBIT, ISO, NIST, and Lean IT preferred.
• Leadership: Results-oriented, proactive, and able to distill strategy and analytics into decisions and execution; able to act decisively in a complex regulatory environment.
• Influence and communication: Strong business influence and executive presence; excellent written and verbal communication across all organizational levels; develops clear action plans and regular executive communications.
• Financial and talent leadership: Experience managing significant budgets and hiring plans with enterprise-wide impact; proven ability to assess, select, and develop talent; provides balanced, actionable feedback.
• Relationship management: Strong client relationship management and negotiation skills; collaborative and able to build alignment across organizational silos, including with senior executives.
• Education and certifications: Bachelor’s degree required (IT, Finance, Computer Science, or related); Master’s preferred; CISA/CISSP/CISM a plus; ITIL certification.