Technology Risk ConsultantWould you like to join a team focused on Fidelity's Emerging Technology, Start Ups and Incubator programs, specifically Fidelity Private Markets? The Technology Risk team for Enterprise Services (ES) within Enterprise Technology Risk & Analytics (ETRA) group is seeking a passionate, driven, and experienced professional to join the team! This is an opportunity to be involved in the newest and most innovative areas of the firm, including Fidelity Private Shares, an all-in-one equity management platform. You will help enhance and manage the core technology risk program activities, including refining and executing the technology risk strategy and program, and working with Technology, Operations, Legal Risk and Compliance teams to holistically manage technology risk of Enterprise Services and its varied initiatives across the Firm.The Expertise We're Looking ForExperience with emerging technology, start-up companies, and cloud infrastructureExperience with AI controls, tools usage and evaluation of AI risks8-10 years' experience in information technology risk, cyber security, controls or audit rolesBachelor's degree in Computer Science, Technology, or a related field of study preferredDemonstrated technical abilities in multiple areas (e.g., technology infrastructure and application controls, cyber security, access management, network and cloud, resiliency, etc.)Professional technology risk certifications (CISSP, CISA, CRISC, CISM) and/or Cloud Certification(s) (CCSP, CCSK, AWS) preferredThe Purpose of Your RoleIn this position you will act as a consultant and provide expertise in information technology controls design, effectiveness, management and monitoring for new and existing start-ups and incubator programs using emerging technology, including AI. You will report to the Technology Risk leader and partner with Operational Risk, Product Teams and Legal, Risk and Compliance associates. The Enterprise Technology Risk team oversees the management of controls, and the mitigation of risk related to the technology environment, systems, and processes across the enterprise. Technology Risk is part of the broader Legal, Risk and Compliance group and partners with Corporate Audit, Enterprise Compliance, and Security to protect the interests of our customers, our employees, and Fidelity's brand. You will also work closely with other ETRA Risk teams and Centers of Excellence as well as Fidelity technology and business owners, Operational Risk teams, and Fidelity external auditors and regulators.The Skills You BringYour curiosity and desire to support innovative business units in understanding and managing the risk of emerging technologies.Your ability to research and quickly get up to speed on new initiative and technologies, see ways to apply existing processes and controls to new situations and mitigate new types of technology riskYour willingness to assess and manage technology risks in areas of the firm that are on the cutting edge, supporting the newest product developments and outside of the box activities with a dynamic can do attitude.Your love of solving complex problems, and comfort with ambiguous situations, and your ability to help solution innovative ways to mitigate risk using your advanced analytical and critical thinking skillsYour expert knowledge of information technology processes and controls and a comprehensive understanding of risk and quality control and assurance functionsYour familiarity with emerging technology, cloud-based platforms, microservices and infrastructure security best practices.Your excellent verbal and written communication skills enabling candidate to prepare and present recommendations to senior managementYour ability to manage multiple projects concurrently and to work under pressure to meet tight time commitmentsYour ability to build and maintain collaborative working relationships with Information Technology and Business personnel to design and assist in the execution of appropriate controls design and monitoringYour ability to influence information technology leaders in the effective review and management of controls to mitigate risk in an emerging technology areaThe Value You DeliverEstablishing an IT Risk Strategy and Framework specific to the emerging technology and incubator space, with a focus on business impactsProviding advice, guidance, and IT risk program managementAssessing the various information technology risks that the business faces in its operations and implement action plans, policy and procedural changes for risk avoidance and mitigationConducting in depth information technology risk assessments including identifying and documenting controls, creating detailed process flows, identifying potential gaps and/or inconsistencies and making sound recommendations for improvement and/or mitigationDetermining appropriate KPIs/KRIs for IT risk monitoringUnderstanding and consulting on information security standards and industry best practicesReviewing third party vendors and contracts to ensure appropriate controls are in place and functioning effectivelyAnswering questions from internal and external Audit on information technology controlsTracking action steps and ensure that findings are remediated appropriately and in a timely mannerConducting readiness reviews over large information technology development projects ensuring strong risk management