Carmel Mcmahon Email & Phone Number

New York, NY, US

New York, United States

Greater New York City Area

• Outlined roadmap and implemented Third Party Risk Management (TPRM) program, addressing significant regulatory (MRA) and audit findings.
• Implemented new TPRM framework, policy, procedures, and enhanced due diligence.
• Established and chair TPRM governance committee, with representation from all business lines and control functions, in order to address use of critical and high-risk third parties. Responsible for approving TPRM.
• Established and chair TPRM governance committee, with representation from all business lines and control functions, in order to address use of critical and high-risk third parties. Responsible for approving TPRM.
• Led team responsible for conducting remote and onsite information security assessments of third party suppliers.
• Drove efforts to ensure comprehensive inventory of third party suppliers.

Greater New York City Area

• Led global team of 10 Information Security Coverage Officers who provide advisory services and partner with Business Unit Information Security Officers (BUISOs) to identify, evaluate and manage IS risk. Key areas of.
• Driving consistent execution in order to facilitate risk evaluation, control adoption and risk awareness across all business units firm-wide.
• Partnering with IS program owners to enable delivery of solutions that meet the needs of the business and reduce IS… Show more Led global team of 10 Information Security Coverage Officers who provide advisory services.
• Partnering with IS program owners to enable delivery of solutions that meet the needs of the business and reduce IS risk across the firm.
• Representing Coverage within the IS Governance Committee (ISGC) and various working groups spanning programs such as Access Management, Data Leakage Prevention and Global IS Program Policy. Show less

Greater New York City Area

• Drove implementation and effectiveness of the Information Security (IS) program within the Technology and Information Risk (TIR) division.
• Led global BUISO team in efforts to: raise awareness of IS risk; assess compliance with the Global IS Program Policy; execute annual IS Risk Assessment (ISRA); prioritize assets for on-boarding onto entitlements.
• Evaluated policy exception / risk acceptance… Show more Drove implementation and effectiveness of the Information Security (IS) program within the Technology and Information Risk (TIR) division.
• Evaluated policy exception / risk acceptance requests; determined appropriate course of action following data leakage incidents.
• Participated in IS governance to drive program change to address high priority residual risks. Show less

Greater New York City Area

• Responsible for identification, assessment, management and mitigation of operational risk within the Technology & Information Risk (TIR) division.
• Led the global Risk Officer team in efforts to: promote a culture of risk awareness; assess compliance with Tech & Data Policy; manage execution of regulatory / audit examinations; execute key risk remediation adoption.
• Chaired the TIR… Show more Responsible for identification, assessment, management and mitigation of operational risk within the Technology & Information Risk (TIR) division.
• Chaired the TIR divisional Risk Committee, comprised of the TIR CIO and management team, in order to examine the state of operational risk within the division. Show less

Greater New York City Area

• Led efforts to implement changes to the Information Security (IS) program operating model in order to achieve improvements in the protection of Firm, client and employee information. Key contributions:
• Implemented IS Risk and Control Framework which serves as the cornerstone for all aspects of the IS program; all metrics, projects, and risk assessment / acceptance activities link to the framework.
• Designed and implemented IS Risk Assessment (ISRA) program to assess IS risk across the… Show more Led efforts to implement changes to the Information Security (IS) program operating model in order to achieve.
• Designed and implemented IS Risk Assessment (ISRA) program to assess IS risk across the Firm and drive 3-year IS Strategy.
• Defined role and engagement model for client Coverage organization aimed at enabling BUISOs to develop BU-level IS strategies and execute their BUISO responsibilities.
• Developed Entitlements Strategy, outlining future state vision and identifying gaps within current state.

Greater New York City Area

Developed operational risk technology strategy supporting all divisions firm-wide. Chaired Operational Risk Technology Steering Committee (ORTSC) comprised of senior risk managers and technologists across the Firm in order to drive technology strategy supporting the operational risk agenda.

Greater New York City Area

Led team to implement business intelligence-based reporting in support of marketing function within major retail bank.

Greater New York City Area

Relationship Manager at major retail bank responsible for guiding branch banking channel through a program of technology initiatives designed to improve operating performance and customer service. Provided oversight necessary to address operational issues while mitigating project risk to the business.

Greater New York City Area

• Formed and led Data Management Group responsible for logical modeling and physical design of Sybase and DB2 repositories supporting numerous applications.
• Chaired DB2 Data Access forum in order to develop and implement best practices related to sharing and insulation of physical data structures; forum participants developed standards relating to the use of tables, views.
• Established Data Modeling… Show more Formed and led Data Management Group responsible for logical modeling and physical design of Sybase and DB2 repositories supporting numerous applications.
• Established Data Modeling Forum in order to develop and share data modeling standards across the Firm. Show less

Greater New York City Area

Managed global application development organization supporting institutional Controllers providing application functionality to streamline P&L production, regulatory reporting, books-to-reported reconciliation, and mark-to-market activities.

Greater New York City Area

• Relationship Manager supporting 1200-person Controller Business Unit.
• Provided financial planning and control of $105MM technology budget.
• Co-chaired Controller IT Steering Committee; worked with senior Controllers to define technology objectives. PRIOR RELEVANT EXPERIENCEPEPSI-COLA COMPANY – Somers, NY Manager, Database Design Team: Developed.
• Co-chaired Controller IT Steering Committee; worked with senior Controllers to define technology objectives. PRIOR RELEVANT EXPERIENCEPEPSI-COLA COMPANY – Somers, NY Manager, Database Design Team: Developed.

Mba, Finance

Bs, Computer Information Systems