Director - Technology Risk Management

Your Opportunity

At Schwab, you’re empowered to make an impact on your career. Here, innovative thought meets creative problem solving, helping us “challenge the status quo” and transform the finance industry together.

We believe in the importance of in-office collaboration and fully intend for the selected candidate for this role to work on site in the specified location.

Your Opportunity

The Technology Risk Management (TRM) Organization provides ‘Second line-of-Defense’ oversight for information security, technology, data, and operational resilience.  This includes activities related to policy and governance, risk identification and assessment, risk response, risk measurement and risk reporting for cyber and technology risks.

This Director-level role is responsible for strategic ownership and governance of critical TRM programs that enable consistent risk execution, leadership oversight, and workforce readiness across the organization. The position serves as a central point of accountability for TRM observation enablement, certification strategy, and external advisory and training partnerships, ensuring these capabilities scale with the maturity of the TRM organization.

Reporting to the Director of TRM Strategy and Operations, this role is expected to set vision, define standards, influence behavior, and drive modernization through data-driven insights, automation, and AI-enabled solutions. The role partners closely with TRM Managing Directors, Discipline Leads, Centers of Excellence, and enterprise stakeholders to ensure TRM governance mechanisms are effective, transparent, and leadership ready.

Enterprise Ownership of TRM Disposition & Activity Governance

• Provide strategic direction and enterprise-level ownership of the TRM Disposition Log (DLog) and Activity Log, establishing these mechanisms as authoritative governance tools for TRM risk oversight.

• Define and maintain standards, expectations, and success criteria for risk disposition documentation, quality, aging, and escalation across TRM.

• Oversee the design and evolution of Copilot-assisted and automated quality assurance capabilities, ensuring consistent, scalable feedback and continuous improvement in risk documentation practices.

• Deliver executive-level reporting and insights on DLog health, trends, systemic issues, and areas requiring leadership attention.

• Set the roadmap for DLog functionality, automation, and reporting, partnering with Strategy & Operations, TRM Disciplines, and TRM leadership to modernize tooling and reduce operational friction.

• Act as an escalation point and advisor to senior TRM leadership on disposition themes, governance gaps, and systemic process opportunities.

TRM Certification Strategy & Workforce Readiness

• Own the end-to-end TRM certification strategy, ensuring alignment between organizational risk priorities, leadership expectations, and workforce capability needs.

• Direct the annual TRM certification planning, aggregation, and approval process, providing senior leaders with a clear, enterprise view of certification coverage and investment.

• Continuously assess and evolve the certification framework to ensure it remains relevant, risk-aligned, and scalable as TRM matures.

• Partner with TRM leadership to identify capability gaps and inform broader workforce enablement and development strategies.

Strategic Vendor & External Enablement Leadership

• Own TRM’s strategic relationships with Gartner and SANS, ensuring services are aligned to TRM priorities and deliver measurable value.

• Provide executive oversight of contract strategy, renewals, funding decisions, and leadership approvals related to external advisory and training services.

• Establish governance and approval frameworks for TRM-funded training investments, including SANS vouchers.

• Drive a cohesive, leadership-visible view of external enablement offerings available to TRM.

Leadership, Influence & Continuous Improvement

• Serve as a trusted advisor to TRM senior leadership on governance, enablement, and operational maturity topics.

• Translate leadership direction into scalable governance models, operating rhythms, and executive-ready reporting.

• Influence consistent risk behaviors across TRM disciplines through clear standards, transparency, and data-driven insights.

• Champion the use of analytics, automation, and AI-enabled tooling to improve efficiency, quality, and insight generation.

• Mentor and guide team members and partners, fostering a culture of accountability, innovation, and continuous improvement.

What you have

To ensure that we have fulfilled our promise of "challenging the status quo," this role has specific qualifications that successful candidates should have.

Required Qualifications

• 10+ years of experience in Technology Risk Management, Operational Risk, Information Security, or a related second line-of-defense function, with demonstrated leadership at scale.

• Bachelor’s Degree required

• Proven experience owning enterprise-wide governance programs and influencing outcomes across senior leadership.

• Strong executive communication skills, with the ability to distill complex topics into clear, actionable insights.

• Demonstrated ability to set strategy, define standards, and drive execution through others.

• Experience leveraging data, automation, and emerging technologies (including AI-enabled tools) to modernize risk processes.

• Strong background with GRC tools, risk governance frameworks, and oversight mechanisms.

• Exceptional judgment, organizational awareness, and ability to operate effectively in a highly matrixed environment.

Preferred Qualifications

• Advanced degree preferred.

In addition to the salary range, this role is also eligible for bonus or incentive opportunities