Ryan Aherne

Product & Experience Optimization

• Enhanced the Risk Activity Review (RAR) with managed regulatory engagements to provide transparency of assessment timelines and status; added Control Test Automation and verified Issues/Control data.
• Represented team during ECIO Consolidated Assessment Schedule (ECAS) routine; synced on active/upcoming engagements for ECORT, Risk, and Audit.
• Supported Deploy Tool Governance: identified and communicated change log requirements to application teams; tracked and categorized applications into governance buckets with tailored action plans; reported progress to leadership biweekly.
• Facilitated Capacity & Network monthly meetings; supported discussions on Cisco to Arista transition and impacts on Capacity process monitoring.

Data‑Driven Insights & Reporting

• Performed data reconciliations for multiple dashboard exports (controls/issues); reported discrepancies and revised formulas used to pull data from ServiceNow sources.
• Built an RCSA pre‑submission model calculating 17 PL3 Tier 2 Risk Matrix scores (replicated rating logic, completeness weights, and projections); delivered a visual summary comparing IR/CS/RR year‑over‑year with explanations for changes/stability.
• Completed year‑end analysis comparing PL1 IR/CS/RR ratings for process domains ITOM, DDA, and Enterprise Architecture Tier 2 risks against other PL1s to assess alignment and consistency.

Cross‑Functional Collaboration & Alignment

• Provided support for the ongoing 2026 Batch Processing Audit by completing key Client Information Form sections and participating in various application team scope‑defining sessions, control walkthrough, and evidence requests.
• Created weekly engagement updates for assigned VBCM team members and leadership awareness with reminders and final changes; provided coverage in ITOM/DDA on blackout dates while developing Audit 2026 schedules.
• Coordinated inputs and deadlines with VBCM to project RCSA completeness and outcomes before tool entry.

Risk Governance & Issue Management

• Assisted in two low‑rated Mainframe SFTP issues (ISSUE‑00110885, ISSUE‑00112749): defined scope, met with impacted areas, coordinated 4Cs, performed severity calculation, set action plans, reviewed standards, assigned ownership, tracked action items, and formed closure packages.
• Overtook PL3‑E003 IT Infrastructure Capacity Management as VBCM and issue delegate for two low‑rated issues (ISSUE‑0010798, ISSUE‑00116008) on track for closure; provided critical info to SLOD, finalized closure packages, and onboarded two new KPIs.
• Contributed to Significant Risk Taker (SRT) Mid‑Year Check‑In by evaluating programs from a risk perspective and summarizing key accomplishments at the business leadership level.

• Formed business case for FLoD repository of Audit, Risk & ECORT assessment engagements, aligning with Regulatory Relations overview tools with created pilot using Microsoft Access presented to approving leadership
• Integrated Issue Management Systems Network from Service Now towards an automated import process within Jira Agile workflow

• Oversaw and performed the data restructuring and migrations of retiring applications (Asana to Atlassian)
• Designed Agile project structure for team workflow along with embedded leadership reporting metrics used in unit cost analysis, launched across department of ECIO Business Controls & Third Party Mgmt
• Automated Vulnerabilities, Pre-Issue and Issue Submission/Requests within Issue lifecycle process
• Performed control strengthening identification analysis with goal of leveraging greater automated control ratio