Review Vacancy
AgencyFinancial Services, Department of
TitleGovernance, Risk, and Compliance Manager (Special Assistant, NS)
Occupational CategoryFinancial, Accounting, Auditing
Bargaining UnitM/C - Managerial/Confidential (Unrepresented)
Salary RangeFrom $127507 to $160911 Annually
Duties Description The New York State Department of Financial Services seeks to build an equitable, transparent, and resilient financial system that benefits individuals and supports business. Through engagement, data-driven regulation and policy, and operational excellence, the Department and its employees are responsible for empowering consumers and protecting them from financial harm; ensuring the health of the entities we regulate; driving economic growth in New York through responsible innovation; and preserving the stability of the global financial system.
The Department of Financial Services is seeking candidates for the position of Governance, Risk and Compliance Manager within Information Security. This position will report directly to the Deputy Superintendent for Information Security, and will be responsible for ensuring that NYS DFS operates within internal boundaries (governance), manages operational and security (risk), and complies with legal and regulatory requirements (compliance) for all information technology efforts. They will act as bridge between technical teams, the DFS legal department, and executive leadership to maintain a robust, secure, and legally compliant environment.
Duties include, but are not limited to, the following:
• Develops and maintains policies: Drafts, reviews, and updates DFS information security, privacy, and operational policies to align with best practices and business goals;
• Ensures internal controls are mapped effectively. Knowledge of frameworks (e.g., NIST CSF, ISO 27001, CIS Controls);
• Conducts information security risk assessments across various units to identify vulnerabilities and potential threats;
• Collaborates with IT, and other teams to develop, track, and implement risk mitigation plans;
• Maintains and updates the DFS risk register to support leadership in addressing information security risk;
• Stays up to date on global regulatory changes (e.g., HIPAA, PCI-DSS) and assesses their impact on DFS;
• Performs continuous testing of information security internal controls to ensure they are operating effectively and remediate any gaps identified; and
• Other duties as assigned.
Minimum Qualifications Preferred Qualifications
• Minimum of seven (11) years of experience in risk management, internal control, compliance, information security or information technology fields, two years of which must have been at a managerial level.
o Substitutions: An associates degree may substitute for two (2) years of experience; a bachelor’s degree may substitute for four (4) years of experience; a master’s degree may substitute for five (5) years of experience; a J.D. may substitute for six (6) years of experience; and a Ph.D. may substitute for seven (7) years of experience.
• Experience in a leadership role is preferred. Employment history should demonstrate increasing levels of responsibility.
• Knowledge of common information security management frameworks, such as NIST 800-53, CIS Controls.
• Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences.
Appointment Method:
This is an appointment to a position in the exempt jurisdictional class. As such, the incumbent of this position would serve at the pleasure of the appointing authority.
Additional Comments Please note that a change in negotiating unit may affect your salary, insurance and other benefits.
Salary: $127,507 - $160,911 (salary commensurate with experience)
Appointment Status: This is an appointment to a position in the exempt jurisdictional class.
Appointment to this position is pending Governor Appointment’s Office and Division of Budget approval.
Some positions may require additional credentials or a background check to verify your identity.
Email Address NCE.Notifications@dfs.ny.gov
Address
Suite 301
Notes on ApplyingTo Apply: Interested qualified candidates must submit a resume and letter of interest no later than July 23, 2026 to the email address listed below. Please include Box# (Box GRCM-SA-00120) in the subject line of your email to ensure receipt of your application. Email submissions are preferred.
Please be advised that the New York State Department of Financial Services does not offer sponsorship for employment visas.
Nate Keiper
Box GRCM-SA-00120
New York State Department of Financial Services
Office of Human Resources Management
One Commerce Plaza, Suite 301
Albany, NY 12257
Email: NCE.Notifications@dfs.ny.gov
Fax: (518) 402-5071
All candidates that apply may not be scheduled for an interview.
Public Service Loan Forgiveness
Employment with New York State qualifies an individual for Public Service Loan Forgiveness (PSLF). This program forgives the remaining balance on any Direct Student Loans after you have made 120 qualifying monthly payments while working full-time for a U.S. federal, state, local, or tribal government or not-for-profit organization. To learn more about the program and whether you would qualify, please visit: https://studentaid.gov/manage-loans/forgiveness-cancellation/public-service
AMERICANS WITH DISABILITIES ACT: REASONABLE ACCOMMODATIONS
Under the Americans with Disabilities Act (ADA), the Department of Financial Services is required to provide reasonable accommodation for known physical or mental limitations of an otherwise qualified applicant with a disability if an accommodation would enable the applicant to perform the essential functions of the job. If the accommodation would constitute an undue hardship on the operations of the agency, the agency is not required to provide it.
All people with disabilities are encouraged to apply to all jobs for which they meet the minimum qualifications.

