Guide partners on a broad range of specific Technology Controls and Information Security programs, policies, standards and incidents. Conduct risk assessment, required controls definition, control procedure appropriateness, vulnerability assessments and any other relevant areas. Lead or contribute to the completion of risk and control design assessments for an assigned business application, business portfolio, and overall enterprise, as well as risk mitigation and remediation plans and remediation strategy. Contribute to the definition, development, and oversight of a global security management strategy and framework. Ensure technology, processes, and governance are in place to monitor, detect, prevent, and react to both current and emerging technology and security threats against TDBG’s business. Develop on-going technology risk reporting, monitoring key trends and defining metrics to regularly measure control effectiveness for own area. Adhere to internal policies and procedures, technology control standards, and applicable regulatory guidelines. Contribute to the review of internal processes and activities and assist in identifying potential opportunities for improvement. Adhere to, advise, oversee, monitor and enforce enterprise frameworks and methodologies that relate to technology controls / information security activities. Influence behavior to reduce risk and foster a strong technology risk management culture throughout the enterprise . 指导合作伙伴有关广泛的特定技术控制和信息安全计划，政策，标准和事件的指导。 进行风险评估，需要控制定义，控制程序适当性，脆弱性评估和任何其他相关领域。 领导或为指定的业务应用程序，业务组合和整体企业的风险和控制设计评估以及降低风险的降低和补救计划和补救策略的领导或贡献。 为全球安全管理策略和框架的定义，开发和监督做出贡献。 确保对技术，流程和治理进行适当的监控，以监视，检测，预防和反应对TDBG业务的当前和新兴技术以及安全威胁。 开发正在进行的技术风险报告，监视关键趋势和定义指标，以定期衡量自己地区的控制效率。 遵守内部政策和程序，技术控制标准以及适用的监管指南。 为审查内部流程和活动做出贡献，并有助于确定潜在的改进机会。 遵守与技术控制 /信息安全活动有关的建议，监督，监督和执行企业框架和方法。 影响行为以降低风险并促进整个企业的强大技术风险管理文化。