MUST BE ON W2 - NO THIRD PARTY RECRUITERS OR SUBVENDING PERMITTED
Technology & Cyber Risk Reporting Lead
Location: Hybrid – Mount Laurel, NJ (2 days onsite; expected to increase to 4 days onsite in 2026). Remote may be considered for candidates not within commuting distance.
Duration: 8 months
Extension / Conversion: Possible based on business needs and performance
Role Overview
This senior-level role is responsible for developing and delivering executive reporting and portfolio insights across technology and cybersecurity issue management. The successful candidate will own reporting integrity, data quality, trend analysis, and governance narratives presented to senior leadership and risk committees.
This role does not manage remediation execution. It owns the reporting accuracy, systemic analysis, and executive storytelling of issue health across the Three Lines of Defense (3LoD).
Key Responsibilities
• Develop recurring executive reporting for Technology Risk Committees and Cyber Governance forums
• Produce standardized portfolio views including issue aging, SLA breaches, reopen rates, trends, and systemic control gaps
• Synthesize inputs across 1LoD, 2LoD, and 3LoD to ensure consistent taxonomy, materiality thresholds, and severity alignment
• Perform thematic and root cause analysis across control domains and technology environments
• Translate portfolio data into executive-ready narratives and decision-focused insights
• Maintain reporting controls, reconciliation logic, and audit-ready documentation
• Improve reporting templates, visualization standards, and governance alignment
Required Qualifications
• 8+ years of experience in cyber/technology risk, issues management, audit reporting, cyber GRC, or operational risk
• Proven experience building executive reporting packs covering issue health, audit/regulatory outcomes, and remediation tracking
• Strong understanding of issue lifecycle management and CAP governance
• Advanced Excel and BI reporting tool experience
• Strong written communication and executive presentation skills
Nice-to-Have
• Experience within financial services or another highly regulated environment
• Experience operating within a Three Lines of Defense model
• Familiarity with NIST, ISO 27001, or COBIT frameworks
• Experience with Archer, ServiceNow IRM/GRC, MetricStream, Jira
• Certifications such as CRISC, CISA, CISSP, or CISM
Note: We use AI tools to: obtain basic information, detect plagiarism, false employment history or references, categorize your skills, and do an initial match with job posting.