Common Securitization Solutions

Welcome page

IT Risk Management Associate

Job Locations US-Remote
Job ID
2025-2325
# of Openings
1
Category
Tech Strat & Governance
Type
Regular Full-Time

OVERVIEW

 

The Company

 

Common Securitization Solutions (CSS) is seeking an experienced IT Risk Management Associate to join our team of talented professionals. This is a full-time remote opportunity. 

 

CSS built and operates the largest and most advanced mortgage securitization platform in the world, supporting the Uniform Mortgage-Backed Security (UMBS) of Fannie Mae and Freddie Mac.

 

Supporting 70% of the mortgage-backed securities in the market, CSS provides best-in-class single-family issuance, bond administration, disclosure, and tax services. We support a broad portfolio of products for our clients with full lifecycle management.

 

Our market-leading, cloud-based, end-to-end platform executes transactions on an extraordinary scale which has bolstered liquidity in the secondary mortgage market, one of the largest and most important financial markets in the world. Our unique approach to securitization combines the best minds in financial services with the know-how, flexibility, and innovation of leading technologists.

RESPONSIBILITIES

 

Job Information

Technology Governance and Strategy is seeking an Associate to help oversee Application Operations, Infrastructure, and Enterprise Architecture domains’ compliance, regulations, and risk-based controls. The successful candidate is responsible for gathering, identifying, prioritizing, monitoring, and reporting specified domains risks and controls including performing risk and controls assessments.

 

This individual will be working in a high-performing technical environment and will work closely with the business and technology teams to develop a strong understanding of the business in order to have specialized domains risk-based discussions. This relationship will ensure a focus on the right risk priorities. The ideal candidate will be a strong risk management & business acumen who can bridge the gap between business and technology and can understand operational impact. A well-qualified candidate will be comfortable working with executive and technical leadership around the company to embed a security-focused mindset in all areas.

 

The position provides an opportunity to participate in an energetic and fast paced environment using the latest in technology and tools to build and secure an advanced financial services processing platform running in a virtual cloud-based datacenter. This position will report to the CTO First Line Risk Manager assigned to the same specified domains.

 

Key Job Functions

 

  • Act as a trusted advisor and partner in risk-based decision making with Business, IT, and domain stakeholders in CSS and in our client investor organizations (Fannie Mae and Freddie Mac).
  • Understand and articulate risks associated with technology processes and IT general controls and identify process and control gaps proactively.
  • Liaise across relevant business, technology, and control functions to prioritize risks, challenge technology risk decisions, assumptions, and tolerances, and drive appropriate risk response.
  • Provide support for the various internal and external audits that affect Information Security to ensure response timely.
  • Contribute to the establishment of metrics and tools to assess and report on inherent risks, control strength and residual risk in a consistent and objective manner.
  • Perform 1st Line testing activities within assigned domains to validate the effectiveness, design, and implementation of controls; working with control owners to identify compensating controls to document mitigation and remediation plans.
  • Assist assigned control owners in performing Risk and Controls Self Assessments
  • Assist assigned control owners with periodic and timely execution of controls
  • Assist control owners with audit remediation activities
  • Assist with the development and validation of remediation plans for technology deficiencies by providing effective challenge.
  • Monitor internal and external business, regulatory and technology environment to identify new or emerging risks and verify remediation of issues.
  • Coordinate with Legal/Compliance, Enterprise Risk Management, and Internal Audit functions for appropriate impact analysis.

QUALIFICATIONS

 

Education   

  • Bachelor's Degree in Information Systems or related field or an equivalent combination of education and experience.

 

Minimum Experience  

 

  • Minimum 3 years related years of experience in technology.
  • Applicants must be authorized to work in the US without requiring employer sponsorship currently or in the future. CSS does not offer H-1B sponsorship for this position.

 

Specialized Knowledge & Skills     

  

  • Self-starter; adaptable to change; motivated to set personal and program goals and proactively track performance against goals.
  • Experience working with Risk, Security or Audit frameworks (i.e., COBIT, COSO, ISO 27001/2, NIST 800-53, AICPA, BITS).
  • Serve as subject matter expert for assigned domains related topics with experience in technical control testing aligned to NIST 800-53, FISMA, and SOC.
  • Strong understanding of technology processes, risks and issues including application development, records management, data management, and architecture,
  • SDLC and Service Management (knowledge within cloud computing is preferred).
  • Possesses strong analytical skills capable of identifying, evaluating, and mitigating significant risks within an enterprise.
  • Industry Certification desired, e.g. CISSP, CISA, CISM or equivalent designation.
  • Demonstrated experience using and managing Risk Management tools is a plus.
  • Working experience with Microsoft Office Suite and GRC tools preferred.
  • Secondary mortgage market or equivalent financial services experience is an advantage.
  • Ability to document and explain risks and vulnerabilities to both business and technical stakeholders.
  • Ability to influence peers and management; ability to team cross-functionally and form relationships to achieve objectives.
  • Strong oral and written communication skills and ability to work well with others and in a collaborative, complex and fast paced environment.

This is a Non-Exempt position. 

Pay Range $84..750 to $97,500

 

CSS’s pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) a candidate’s qualifications, skills, competencies, and experience, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.  CSS offers a competitive total compensation package, which includes a performance bonus, 401k match, healthcare coverage, PTO, and a broad range of other benefits.

 

Employment

As a condition of employment with Common Securitization Solutions, any successful job applicant will be required to  successfully complete a background investigation, which may also include a credit check for positions in some areas of our business.   

     

Common Securitization Solutions is an Equal Opportunity Employer.

 

##LI-Remote

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Need help finding the right job?

We can recommend jobs specifically for you! Click here to get started.