Technology Governance and Operations Control Specialist

Summary of the Technology Governance and Operations Control Specialist Role

The story of Arvest is one of commitment started by our founders in 1961, with an intense dedication to focusing on our customers. We will always be active and involved members of the communities we serve, and we will always work to put the needs of our customers and associates first as we continue to fulfill our mission – People helping people find financial solutions for life.

A Technology Governance and Operations Control Specialist at Arvest ensures regulatory compliance of technical and business operations related to industry best practices and frameworks such as NIST, COBIT, ITIL, PCI-DSS, and banking regulations of Arvest Bank and its subsidiaries. They assist with multiple assignments involving drafting and indexing policies, standards and procedures, audit liaison, issue remediation management, identifying and mitigating capabilities gaps, performing internal control assessments, conducting investigations, suggesting business process improvements, and training workforce members. In addition, they undertake special assignments as assigned by Technology and Operations Control Management.

What You’ll Do at Arvest

• Identify, assess, and mitigate business unit and corporate risk, evaluate controls, and recommend change that reduces risk.
• Foster strong partnerships with internal and external audit or assessment partners, facilitating audit activities and ensuring effective coordination and communication.
• Measure compliance with implementation and alignment to industry frameworks, conducting gap analysis, risk assessment, and monitoring remediation from planning to resolution.
• Monitor issue remediation and perform first-line reviews of expected deliverable information to ensure they deliver the intended outcomes.
• Partner with SLoD to provide input/review frameworks, policies and standards. Facilitate Business Line awareness of and adherence to risk frameworks, policies, and standards. Report and escalate exceptions and facilitate Business Line corrective actions.
• Assess gaps and emerging threats and perform pre-2LoD and/or 3LoD review readiness.
• Support the technology process in identifying an issue, assessing severity, and developing and tracking remediation action plans.
• Review and validate the accuracy of information to be documented in the GRC and enterprise governance repository.
• Produce periodic reporting on issues management, governance, risk and control issues.
• Maintain centralized document management of all audit and governance documentation artifacts.
• Review technical (IT) policies and transformation by testing business processes to identify efficiencies, key objectives, and the optimal level of risks.
• Investigate and manage key interdependencies that impact risk across technology and operations while developing and monitoring strategies, goals, and processes that assess the level of risk to ensure maximum audit and compliance.
• Monitor and report on compliance with established IT governance frameworks.
• Communicate and collaborate effectively with stakeholders to regularly plan, schedule, and perform audits and assessments.
• Stay current with emerging trends, technologies, and regulatory changes impacting IT governance and operations.
• Challenge the status quo. Find opportunities to improve and streamline existing processes.
• Undertake ad-hoc projects as needed.
• Understand and comply with bank policy, laws, regulations, and the bank's BSA/AML Program, as applicable to your job duties. This includes but is not limited to; complete compliance training and adhere to internal procedures and controls; report any known violations of compliance policy, laws, or regulations and report any suspicious customer and/or account activity.

Toolbox for Success

• Bachelor’s degree in Business Administration, Accounting, Finance, Information Technology or equivalent risk-related financial field of study or equivalent relevant work or military experience.
• 5 years of experience in the Information Technology industry.
• 5 years of IT audit experience or IT audit liaison.
• 5 years of experience implementing regulatory/compliance processes (e.g., FFIEC, CIS, COBIT, NIST, etc.)
• 3 years of experience as a technical governance writer, including policies, standards, procedures, business glossaries, and data catalogs.
• Strong understanding of IT governance frameworks and regulatory requirements.
• Proficiency in regulatory frameworks and best practices in technology and operations control (e.g., FFIEC, COBIT, ITIL, NIST, CIS).
• Broad understanding of technical, risk management, and compliance concepts.
• Experience interpreting and applying banking regulations, technical best practices and control frameworks.
• Experience conducting IT internal audits and assessments.
• Proficiency within Archer, ServiceNow GRC, JIRA, or other GRC Software applications.
• Thorough knowledge of auditing principles and practices and a thorough understanding of banking laws/regulations.
• Excellent risk assessment and management skills.
• Ability to collaborate effectively with cross-functional teams and communicate complex concepts clearly to non-technical stakeholders.
• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills.
• Ability to manage multiple assignments and meet deadlines.
• Relevant military experience is considered for veterans and transitioning service members.

Preferred Qualifications

• Professional designations such as CGRC, CISSP, CISA, and CRISC.

Physical Demands

Regular attendance is an essential function of the job. The associate must be able to travel occasionally by themselves within the US, possibly overnight. Reasonable accommodations may be made to enable qualified individuals with disabilities to perform the essential functions.

Arvest Bank Culture and Benefits

Arvest Bank is committed to providing equal opportunity to all persons regardless of race, color, race-based hairstyles and textures, religion, marital status, sex, sexual orientation, gender identity, pregnancy, age, national origin, disability, veteran status, or any other basis, which now or in the future may be specified by law.

Along with an excellent benefits package, our associates are engaged, rewarded for performance, and encouraged to grow professionally and personally. Our future is driven by our associates. If you want to be recognized for your results and empowered to reach your potential, we urge you to apply.

Key skills/competency

• Risk Management
• Regulatory Compliance
• IT Audit
• Policy Development
• GRC Software
• NIST
• COBIT
• ITIL
• Data Security
• Banking Regulations