Job Summary The IT Controls & Governance Officer is responsible for ensuring that the Information Technology (“IT”) policies, procedures and practices align with the Bank’s 2nd Line of Defense Operational and Technology Risk and Compliance requirements and providing challenge for continuous enhancements of the IT Organization’s 1st line of defense set-up, as well as meeting reporting requirements. Reporting to the Controls and Governance Manager Group, this position is central to the Technology’s organization’s success in effectively managing IT Risk and meeting regulatory expectations. Responsibilities To coordinate and support IT in implementing any Operational and Technology Risk and Control assessment or program or initiative. To identify and report/escalation alerts on issues related to Governance, Compliance, and Operational Risk. To contribute to any Operational and Technology Risk and Internal Control and statement/reporting. To work in close collaboration / liaise with Operational and Technology Risk and Audit teams (2nd and 3rd lines of Defense, and contribute to 1st LOD governance structure and operational practices. To develop ad-hoc reports supporting the risk profile for IT processes.  To advise senior management and influence a process change. To educate risk owners on risk management best practices and work with other risk functions in the development and implementation of risk controls. To assess the organization’s cyber risk strategy and posture, as it relates to data risk, cyber risk management, cyber risk frameworks and policies, and/or cyber risk measures, methods, and reporting. To deliver key messages with clarity, confidence, and poise to instill confidence process owners. To perform credible challenges during the remediation of findings and adhoc requests related to Issues Management. Qualifications 7+ years’ experience in information technology, information security, risk management, auditing or compliance. Equivalent combination of education and experience may be substituted in lieu of degree. CISA, CRISC, CIA, CPA, CISM, CISSP or other related risk and control certification is an asset. Familiarity with GRC (governance, risk, compliance) methodologies, tools and enablers in the financial services sector IT and financial services industry experience required Some experience writing and managing IT policies and procedures throughout their lifecycle Excellent written and verbal communication skills Strong analytical and problem solving skills Strong computer skills including MSOffice (Excel, Outlook, Powerpoint, Visio) and Sharepoint preferred Ability to work both independently and as part of a team to deliver quality work product in a timely fashion in a fast-paced environment Ability to multi-task and prioritize tasks with a focus on quality, completeness and accuracy The ability to work well with people from many different disciplines with varying degrees of technical experience The ability to adapt to a dynamic, rapidly changing business and technical environment Ability to maintain confidentiality Demonstrate a basic understanding of various compliance and regulatory areas (e.g. FFIEC, GLBA, CCPA) Education Bachelor's Degree  Equal Employment Opportunity Policy Bank of the West is an Equal Opportunity employer and proud to provide equal employment opportunity to all job seekers without regard to any status protected by applicable law. Bank of the West is also an Affirmative Action employer - Minority / Female / Disabled / Veteran. Bank of the West will consider for employment qualified applicants with criminal histories pursuant to the San Francisco Fair Chance Ordinance subject to the requirements of all state and federal laws and regulations.