Technology Risk Management Testing Manager

M&T Bank

The Bank sponsors individuals for TN and H-1B transfers on a case by case basis. Please note that this position is not open to anyone on an F-1 student visa including those eligible for CPT/OPT or the Stem OPT extension.

This role offers a hybrid work schedule; offering the flexibility to work from home two days a week, while providing the opportunity for in-person collaboration.

This position is available in Buffalo, NY

About M&T Bank

At M&T Tech, we’re a team of makers, doers, and builders, working to create the most advanced technology solutions in banking. We’re not your stereotypical suit and tie bankers: we’re an innovative team of leading tech experts, pushing boundaries, and taking risks. We’re building an agile team of the most skilled and creative workers to solve complex problems, architect solutions, write high-performance software, and chart our new path, all to make the lives of our customers, and the communities that we serve, better. Join us and be part of something new as we build tomorrow’s bank, today.


This position is responsible for the managing and leading the Technology Risk testing program utilizing a risk-based approach in line with department standards to ensure the Bank’s compliance with applicable laws, rules & regulations. This leadership role supports continued enhancements to testing methodology, programs, ongoing stakeholder engagement, talent management, and overall promotion of the Technology Risk Management Department within the organization. This role may also be responsible for contributing to special projects occurring within TRM which may entail designing and executing unique approaches to testing and risk management.

Primary Responsibilities:

Develop and maintain a technology risk testing program to support the division in assessing, monitoring, and reporting effectiveness of controls and efforts to support remediation activities.

Perform testing in accordance with department and professional standards.

Manage all phases of the testing program, including multiple simultaneous testing engagements, ensuring that testing engagements are completed within established timeframes and/or provide early escalation to anticipated delays to management.

Build strong partnerships to effectively interface with business stakeholders, senior leadership, compliance, and internal audit partners.

Proactively communicate the status of testing if potential issues are identified.

Review and communicate substantive testing findings and control execution weaknesses to all levels of business unit management.

Support the department’s risk assessment process and development of the annual testing plan to determine testing coverage.

Review and finalize tiering of test findings prior to communication to respective impacted and interested parties.

Consult with business stakeholders proposing solutions to findings and/or offering recommendations for control enhancements.

Possess strong management and interpersonal skills, make sound decisions independently, exhibiting initiative and intuitive thinking.

Encourage integrated testing approaches with Cybersecurity for systems testing and make suggestions on testing approaches to improve the efficiency and effectiveness of testing procedures.

Lead efforts to execute security assessments on the effectiveness of Cybersecurity security control designs, which may include conducting vendor onsite reviews of third parties.

Leverages a risk-based approach to ensure appropriate security principles and controls are applied during the system development life cycle and protect customer and corporate assets in line with the Bank’s risk appetite.

Ensure fulsome reviews of planning, test scoping, execution and reporting for each test area, and provide related feedback, coaching, and mentoring.

Prepare and deliver materials/presentations to senior managers.

Develop solutions to complex issues based upon limited information and direction. The need for and pace of change may be dynamic and frequent.

Provide critical leadership to the department by serving as a champion of departmental goals and objectives as well as risk culture.

Lead special projects that may arise to support Technology Risk Management objectives.

Exercise usual authority of a manager concerning staffing, performance appraisals, promotions, salary recommendations, performance management and terminations.

Understand and adhere to the Company’s risk and regulatory standards, policies and controls in accordance with the Company’s Risk Appetite. Identify risk-related findings needing escalation to a Manager.

Promote an environment that supports diversity and reflects the M&T Bank brand.

Maintain M&T internal control standards, including timely implementation of internal and external audit points together with any issues raised by external regulators as applicable.

Complete other related duties as assigned.

Scope of Responsibilities:

This position plays a critical role in supporting the management and execution of the Technology Risk Management program. This role is responsible for the timely delivery of high quality, value-added testing program. Standards should conformance with professional auditing standards and regulatory expectations. In addition, the incumbent will partner with Risk Division leaders, Technology, and work alongside business partners to coordinate testing plans and methods and ensure awareness and understanding of technology risk requirements which support the Bank’s risk management function. Builds strong partnerships with business stakeholders and compliance and internal audit partners. This role also requires periodic interaction with external regulatory agencies.

Supervisory/ Managerial Responsibilities:

Manage a team of Analysts, Specialists and/or Advisors

Education and Experience Required:

Bachelor’s degree and a minimum of 7 years relevant work experience, or in lieu of a degree, a combined minimum of 11 years higher education and/or work experience, including a minimum of 7 years relevant work experience.

Risk controls background

Minimum of four years’ managerial or supervisory experience.

Demonstrated leadership capabilities.

Familiarity with IT/Cybersecurity audit

Education and Experience Preferred:

Bachelor’s degree and 8 years experience in compliance, legal, audit, risk, or other relevant function,

OR in lieu of degree,

A combined minimum 12 years’ higher education and/or work experience including eight years’ experience in compliance, legal, audit, risk, or other relevant function.

Knowledge of Technology and Cybersecurity

Active CISA (Certified Information Systems Auditor), or CRISC (Certified in Risk and Information Systems Control) certification or other Audit /Technology / Cybersecurity domain-related industry-recognized certification.

Proficient computer skills (including spreadsheet and word processing software), analytical skills, working knowledge of applicable laws, written and verbal communications w/ all levels.

Ability to handle multiple tasks and work under time constraints in support of various assignments.

M&T Bank is a Top 10 US bank holding company and one of the best performing and financial stable regional banks in the country, we offer our technology employees a wide range of performance-based career development opportunities. We have a strong commitment to our customers and the communities we serve, and we continue to grow with a focus on the future. So, when looking to advance your career, look to M&T. Grow with us.

Hiring Immediately.

We support our team members with generous benefits.

Competitive compensation

Health, welfare, and retirement benefits

401(k) match at 5%

Work-life balance and flexible work arrangements

Up to 25 days PTO plus 12 paid holidays

M&T Bank is committed to fair, competitive, and market-informed pay for our employees. The pay range for this position is $115,703.73 – $192,839.55 Annual (USD). The successful candidate’s particular combination of knowledge, skills, and experience will inform their specific compensation.


Buffalo, New York, United States of America

M&T Bank Corporation is an Equal Opportunity/Affirmative Action Employer, including disabilities and veterans.

Show Full Vacancy