Risk Management Analyst Job Description Sample
Risk Management Analyst
PSECU, a high-tech progressive financial institution with more than $5 billion in assets, is seeking a Risk Management Analyst who will be responsible for supporting the operation of PSECU's Enterprise Risk Management (ERM) program as directed by the Senior Enterprise Risk Management Specialist. Responsibilities include assisting with the file maintenance quality control function; issue management process, PSECU risk assessment process; enterprise-wide risk analytics and reporting; ERM-related policies and procedures implementation and facilitating the implementation and integration of risk management principles at all levels of the company. This position supports the business units in re-assessing their risks, and reviews / updates business unit risk / control self-assessments and documentation required for ERM.
Benefits: We offer a competitive salary, excellent benefits and a great work environment. Along with excellent medical and retirement programs and a generous leave package, our workplace offers tuition reimbursement.
Employee Type: Full-time, Non-exempt
Schedule: Monday-Friday – 8:00am-4:00pm
Salary Range: $54,405 - $81,608/year, commensurate with experience
Candidate must be bondable and credit worthy.
RequirementsDUTIES AND ACCOUNTABILITIES
- Essential for this position:
Perform file maintenance quality assurance activities, including reviewing and testing file maintenance transactions to ensure compliance with regulatory and internal requirements.
Assist with the development of file maintenance quality assurance reviews, presentations, reports, and analyses required for monthly, quarterly, and annual management meetings.
Prepare, analyze, and distribute monthly and quarterly file maintenance quality assurance dashboards for internal and external clients.
Maintain the Issue Tracking system, ensuring that identified issues are logged, tracked, and addressed in an accurate and timely manner.
Coordinate efforts to remediate identified deficiencies.
Coordinate and conduct risk assessments, which involves analyzing risks as well as identifying, describing and estimating the risks affecting the credit union.
Assist in tracking top corporate risks and business unit risk assessments, mitigation plans and related ERM documentation.
Perform statistical analysis to identify Key Risk Indicators (KRI) and analyze areas of risk, such as operational effectiveness and regulatory compliance risks.
Participate in reviewing risk management processes for large projects / special projects designed to manage/reduce PSECU risk levels.
Work with other PSECU business units on recommending processes and controls to be tested and recording testing results.
Perform internal control testing, drawing accurate and supported conclusions about control design and effectiveness.
Perform and coordinate control self-assessments to help ensure that controls are functioning as designed.
Educate business units on PSECU's Enterprise Risk Management structure, practices and tools.
Utilize managerial skills to analyze alternative and treat identifiable risks with appropriate controls.
Make recommendations to reduce/control risk, which may involve an insurance strategy. Perform quantitative analysis to support recommendations.
Present ideas via reports and presentations, outlining findings and recommendations for improvements.
Work with business units to calculate the risk associated with specific transactions.
Compile reports showing the proposed plan of action for existing and potential clients
Monitor and assess the post-period implementation of risk mitigation strategies.
Make recommendations regarding internal control assurance in the vendor due diligence process as a subject matter expert.
Maintain a high level of professional proficiency; ethics; and due care in the performance of assigned duties.
Excellent organizational, analytical, interpersonal and logic skills.
Knowledge of computers and the ability to use such tools as ACL and Visio.
General knowledge of Enterprise Risk Management as presented by the Committee of Sponsoring Organizations of the Treadway Commission (COSO).
General knowledge of the principles and practices of risk management and banking.
Experience sampling and reviewing data in a financial services capacity.
General knowledge of information system principles, controls, and processes.
General knowledge of compliance laws, rules and regulatory issues affecting the credit union (i.e. Graham Leach Bliley, Privacy Act, etc.)
Ability to work with a high degree of independence and to manage multiple projects with shifting priorities.
Must meet continuing professional education (CPE) credit requirements each year.
Foster a positive, engaging, and productive work environment for each team member by promoting skill development, coaching for improvement and growth, inspiring others through your words and actions, ensuring positive employee morale throughout the credit union.
Perform other ERM duties, as assigned.
DUTIES AND ACCOUNTABILITIES
- Essential for all PSECU Management:
- Maintain required knowledge, skills and abilities in assigned area of expertise, including the laws, standards, fundamentals, methods, procedures, and techniques required for job. Maintain up-to-date knowledge of PSECU's Collective Bargaining Unit Agreement, processes, related business processes, and the business world outside PSECU. Maintain knowledge PSECU's goals, culture, philosophy, products and services, bylaws, policies, and internal practices.
- Workflow Management
- Manage time effectively; meet deadlines; and produce quality work requiring little or no review. Manage high volume of work assignments.
- Exercise good judgment and appropriate decision making within scope of job.
- Effectively communicate with audience appropriate content and detail both verbally and in writing.
- Relationship Management
- Maintain strong and effective interpersonal skills and effective working relationships with all stakeholders, both internal and external. Demonstrate PSECUs Operating Principles of PRIDE (Partnership, Reliability, Improvement, Dedication, and Ethics).
Proficiency with Microsoft Office.
Maintain regular and consistent attendance as required for acceptable performance and accountabilities of this position.
Maintain confidentiality, in particular with credit union account information, as well as other information designated as confidential.
Responsible for the establishment and ongoing maintenance of an effective system of internal control within the scope of assigned job responsibilities.
Must meet creditworthiness standards.
Notify Human Resources in writing if convicted of a misdemeanor or felony involving dishonesty, breach of trust or violation of the Pennsylvania Credit Union Code (17 Pa. S. C. A. 101 et seq.) during the course of employment with PSECU.
DUTIES AND ACCOUNTABILITIES - Non-essential:
- Perform other duties and responsibilities as assigned.
PHYSICAL DEMANDS AND SENSORY ABILITIES:
Repetitive movement of hands and fingers, i.e., for typing or writing.
Lifting and carrying containers weighing as much as 20-30 pounds, i.e., to/from building and vehicle, to a storage area
Sitting for long periods of time, i.e., at a desk, in meetings.
Ability to reach above, at and below the waist.
Ability to reach above, at and below shoulder level.
Occasional bending, kneeling, stooping and/or squatting.
This position may be advertised in the public media.
Appointment to this position is not subject to the terms of the Collective Bargaining Agreement.
Applicant may be required to complete one or more employment assessments and/or testing.
This position may be subject to telephone monitoring to assure quality member communications.
Reasonable accommodation may be made to enable a qualified individual with a disability or disabilities to perform the essential duties and responsibilities of the job.
MINIMUM / PREFERRED EXPERIENCE AND EDUCATION:
Bachelor's degree is required with a major in accounting, finance or business preferred.
A minimum of one year in an auditing, accounting or a related field is required.
One or more years in operations at a financial institution.
Certification in field of expertise is desired e.g., CRM; CPA; CIA; CFSA.
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities.
Please view Equal Employment Opportunity Posters provided by OFCCP here.
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)
Risk Management Analyst
Do you possess strong analytical and technical abilities and demand fast, but carefully thought-out results? Are you independent in putting forth your own innovative and original ideas, which can change the organization while being resourceful and persuasive in overcoming obstacles? Are you a decisive self-starter with the competitive drive to win?
If this describes you then we encourage you to apply for our Risk Management Analyst position based in Estero, FL.
The Risk Management Analyst will support the Risk Analysis Group and be responsible for-
Development, update, and maintenance of a global risk / root cause model.
Applying key statistical and data modeling concepts to develop a model which will provide management information and potential solutions for increasing revenue, decreasing expense, and reducing risk. e. How do the major accident cost drivers vary by region?
Determine scope of all data requirements necessary for the global actuarial reserve, ratemaking, bench-marking, and key performance indicators analyses.
Development and coding of new report requirements with respect to these processes.
Assist in streamlining the overall actuarial process with respect to direct integration of data into the current actuarial software or development of a new in-house actuarial tool.
Interact on project requirements and communicate results with various levels of management in both the global finance and risk management groups as well as the Division rental operation groups.
Responsible for the determination of data requirements necessary for all Actuarial/Risk Group data modeling projects. Versatility in the use of programming and data base tools to create, test, and ensure accuracy of all data requirements necessary for the modeling process.
The Risk Management Analyst will provide support to the Actuarial / Risk Analysis Group with respect to statistical data modeling, analysis, and mining for all actuarial, underwriting and benchmarking projects. This position is integral helping the Actuarial / Risk Analysis team complete their overall objectives. There have been an increasing number of insurance claims related projects initiated by Hertz's senior management to focus on assessing global revenue-generating insurance premiums charged to our rental customers, which require very detailed analysis covering multiple geographical markets and customer segments. This position will also be expected to take on ad-hoc work assigned by either the Director – Global Actuarial Services & Risk Analysis or the Actuarial Analyst. This position will have significant involvement in these projects with some exposure to Hertz' VP and Treasurer as well as the VP Finance and Corporate Controller.
Educational Background: Four-year college degree in mathematics or related field
Data processing and software applications
Insurance Industry analysis and reporting
Claim administration and reserving
Data systems and Reporting
Analytical skills, Problem solving
Reporting and communication
Detail model design
Communication – both verbal and written
EEO StatementHertz is an equal opportunity affirmative action employer and administers all personnel practices without regard to race, color, religion, sex, age, national origin, sexual orientation, gender identity or expression, marital status or domestic partnership status, disability, protected veteran status or military status, genetic information, or any other category protected under applicable law. Hertz is committed to taking affirmative steps to promote the employment and advancement of minorities, women, persons with disabilities and protected veterans.
Sr. Business Application Analyst - IT Risk Management
Company: FedEx Services
Job Title: Sr. Business Application Analyst
- IT Risk Management
Job Requisition Number: RC102078
Category: Information Technology
Collierville, Tennessee 38017
Under limited supervision, interacts with business partners and/or it staff to gather and document information related to requirements and/or software testing. Gathers information from multiple sources and independently sorts medium to high complexity business issues to recommend appropriate direction. Leads project activities through meeting facilitation, managing, project scope and communicating progress. Analyzes business processed and associates them to software deliverables. Develops and/or executes test scripts against requirements. Drafts and reviews documentation in compliance with the FedEx global development process. Develops and/or maintains a business model that reflects current processes and business rules. Provides and/or consolidate input to scoping and impact analysis for future deliverables. Mentors less sr. positions.
Job Duties and Responsibilities:
Significant experience performing Risk / Control Assessments
Knowledge and experience with implementing processes to identify, assess, and report on risk
Knowledge and experience utilizing control and regulatory frameworks, i.e. COBIT, PCI, HIPAA, ISO, etc., to conduct assessments
Knowledge of Risk Frameworks and Quantification methodologies, e.g. COSO, FAIR, etc.
Knowledge and experience working with Governance, Risk, and Compliance technology, e.g. Archer
Experience communicating and presenting to Senior Executives and Leadership
Industry certifications awarded for experience or knowledge of Audit, InfoSec, or Governance, Risk, and Compliance frameworks and regulations
Relocation assistance is available.
Bachelor's Degree in business, computer science, engineering, information systems or related field and/or equivalent formal training or work experience. Requires five (5) or more years equivalent work experience in information technology or engineering environment. A related advanced degree may offset the related experience requirements
Want a career where you are empowered to make a difference? Want to work for a company that is environmentally responsible? Want to grow and develop on the job? If so, FedEx is the place for you! Every day FedEx delivers for its customers with transportation and business solutions. FedEx serves more than 220 countries and territories around the globe. We can serve this global network due to our outstanding team of FedEx employees. FedEx has over 400,000 talented employees who are tasked with making every FedEx experience outstanding. FedEx has been recognized on many different lists both for business success and for being a great employer.
Here are some of the recognitions FedEx has received from the past couple of years:
- FORTUNE "World's Most Admired Companies" – 2016
- Corporate Responsibility Magazine "100 Best Corporate Citizens" – 2016
- InformationWeek "Elite 100" – 2016
- Women's Business Enterprise National Council "America's Top Corporations for Women's Business Enterprises" - 2016
- Reputation Institute "World's Most Reputable Companies" – 2015
- Black Enterprise "40 Best Companies For Diversity" – 2015
When 400,000 employees around the globe are all working together it is amazing what we can achieve! FedEx connects people and ideas. If you would like to make a difference on a global scale while receiving top notch benefits, competitive pay, and plenty of opportunities to develop, click 'Apply' and tell us more about yourself.
- FedEx is an equal opportunity/affirmative action employer (minorities/females/disability/veterans) that is committed to diversifying its workforce.
Business Analyst Risk Management Applications
Datanomics, a full service provider of computer consulting services since 1982, is currently seeking a Business Analyst, Risk Management Applications for a contract position with our client in Montvale, New Jersey.
Candidates must be on our W2! No Subcontracting!
No Corp to Corp!
No 3rd Parties!
Business Analysis, Business Process Improvement, Business Process Management, Change Management, Documentation
You will work closely with functional risk management, Independence leadership, US leadership, and other operational/functional groups to understand and prioritize business process improvement opportunities to ensure proper controls are in place to mitigate risks that can potentially be managed through applications and systems.
Critical skills include 10+ years’ business analysis experience.
Risk management experience within large, complex organizations with multiple functional groups and lines of businesses, to ensure compliance, change management, adoption of new processes.
Strong quantitative and analytical, writing and communication skills a must.
Ability to work with various levels of management.
Ability to work independently and as part of a team.
Based on successful performance this can become a long-term consulting arrangement.
Must be on our W2.
After you send your resume to , feel free to call Scott at Extension 2183.
Datanomics is an equal opportunity employer.
Business Analysis, Business Process Improvement, Business Process Management, Change Management, Documentation
Model Risk Management Analyst I
Job ID: 18006863 Company Name: TIAA Bank Description:
The Model Risk Management Analyst focuses on the oversight and validation of financial and non-financial models as it relates to TIAA Bank's Model Risk Management Program. The Analyst will learn and apply an understanding of the principles, concepts, practices, and standards of model risk management including regulatory standards to help identify, evaluate, and document internal processes and controls. In addition, the analyst will assist in the tracking of remediation of identified deficiencies, prepare and review reports for management, assist in maintaining database of record of model risks and controls. Analyze data for holistic enterprise view for management reporting. Work closely with Risk Officers, Senior Risk Officers and other members of the Enterprise Risk Management Team.
Analyze all aspects of models in use by TIAA Bank, including but not limited to, overall model suitability, mathematical theory, model inputs, assumptions, functionality, vendor controls, use, documentation and output.
Identify model limitations and / or weaknesses and clearly articulate those limitations and weaknesses in writing.
Monitor ongoing model performance through review of performance assessments (back-testing, benchmarking or sensitivity analysis)
Review model reports for accuracy and completeness
Organize data in a concise manner that supports a logical flow of information.
Document validation report for the purpose of review of a risk committee, auditors, and/or regulators.
Ability to analyze large amounts of data and identify any areas for improvement by way of written recommendations.
Follow-up with Model Owners to remediate any validation findings.
Create, manage and maintain dashboards related to model risk management
KNOWLEDGE, SKILLS, AND ABILITIES REQUIREMENTS
Must have the ability to interpret technical-level data with a functional-level understanding of risk analytics
Must have strong problem-solving skills, including the ability to formulate solutions to non-routine problems
Must be detail oriented
Must be self-motivated and capable of working independently
Must have excellent time management skills
Must have excellent written and verbal communication skills and a professional ability to work with all levels including executive management
TRAINING AND EXPERIENCE
Bachelor's degree in quantitative subject such as Finance, Economics, Mathematics, Statistics, or Engineering required
Familiarity with various types of models for purposes such as valuation, income forecasting, credit migration, etc.
Advanced database and spreadsheet management skills
Pre-Employment Screening May Include:
Criminal Background Check
Past Employment Verification
Social Security Verification
Note: The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all duties, responsibilities, and skills required of personnel so classified, and they may change at any time.
TIAA, FSB is an equal opportunity employer. No associate or applicant for employment will be discriminated against on the basis of race, creed, ethnicity, color, age, religion, sex, sex stereotype, pregnancy (including childbirth, breastfeeding or related medical conditions where applicable), sexual orientation, gender, gender identity, gender expression, transgender, marital status, national origin, ancestry, physical or mental disability, requesting a reasonable accommodation based on mental or physical disability, medical condition (as defined by applicable law), genetic history and information, citizenship status, military or veteran status, or any other status protected by federal, state, or local law or ordinance or regulation.
TIAA, FSB is not seeking assistance or accepting unsolicited resumes from search firms for employment or contractor opportunities. Regardless of past practice, all resumes submitted by search firms to any employee at TIAA, FSB via e-mail, the Internet, or directly to hiring managers at TIAA, FSB in any form without valid written search agreements executed by the VP, Talent Acquisition for that specific position will be deemed the sole property of TIAA, FSB, and no fee will be paid in the event the candidate is hired by TIAA, FSB as a result of the referral or through other means.
TIAA, FSB will not discharge or in any other manner discriminate against associates or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another associate or applicant. However, associates who have access to the compensation information of other associates or applicants as a part of their essential job functions cannot disclose the pay of other associates or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by TIAA, FSB, or (c) consistent with TIAA, FSB's legal duty to furnish information.
EXPERTISE Risk Management JOB TYPE
Critical Infrastructure Risk Management Analyst
Job Description: Job Number: R0040195
Critical Infrastructure Risk Management Analyst
Provide non-personal professional services to plan, coordinate, and conduct critical infrastructure risk management activities at client's headquarters and other locations. Coordinate closely with government program leads on risk management program elements to include the critical asset identification process, threat and hazard assessment, vulnerability assessment, risk identification, countermeasure planning, and packaging risk decision information for senior leader decision-making. Participate in various meetings, conferences, working groups with stakeholders to support risk management data gathering. Use various automated tools, databases, and other software programs to document, quantify, and coordinate program activities with other stakeholders. Prepare and deliver briefings to stakeholders and senior leadership, conduct site surveys and assessments at locations determined by government leads, collaborate with active duty and civil service government staff, counterparts across Army organizations and other government agencies. This position is located in San Antonio, TX.
3+ years of experience with risk management programs in DoD organizations
Knowledge of DoD analytical risk management construct
Ability to exhibit leadership expertise, initiatives, and work without direct supervision
Ability to work extended hours, sometimes outdoors, and in austere conditions with travel up to 25% required.
Top Secret clearance
BA or BS degree
Experience with Army CIRM program
Possession of excellent oral and written communication skills
Completion of formal DoD risk management program training, such as AT Level II, DTRA MTT, or DoD Security Engineering Course
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Top Secret clearance is required.
We're an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.
Enterprise Risk Management - Cyber Analyst - MB
At Brown Brothers Harriman, we believe no job is too big or small for any of us to handle if it helps our clients. We value passionate, committed people who enjoy collaborating with others to find new solutions to complex business challenges. We are looking for the type of person who speaks their mind, truly listens and steps outside their role to add value wherever they can. Someone who is driven to get things done and views obstacles as an exciting challenge that demands a creative solution. Above all, we seek someone who takes great pride in their work and is inspired and motivated by their role in protecting and enhancing our client's financial well-being.
If you are looking for an entrepreneurial environment where you can learn and thrive, Brown Brothers Harriman is the right place for you
Join us as a Cyber Analyst
Brown Brothers Harriman is currently recruiting Cyber Analyst to join our Enterprise Risk Management team In this role you will assists in the maintenance of the Firm's technology and cyber risk management oversight program. The Cyber Analyst supports and owns a variety of risk management processes and activities, including developing and monitoring key risk analysis, maintaining and communicating Enterprise Risk Management policies and procedures, facilitating internal and external ERM & cyber communications. This role is responsible for maturing the firm-wide cyber security training and awareness program, making decisions and managing initiatives to drive the program.
This position serves a central point of control for the internal ERM Cyber Risk program and works with a broad audience to promote the importance of the program. This position works closely with the entire Enterprise Risk Management team as well as multiple departments and groups within the Systems organization to maintain and continually evolve a resilient and effective Enterprise Risk Management Cyber risk management function and is an opportunity to gain experience in risk, technology, and cyber security.
Some of your key responsibilities include:
Perform cyber risk analysis which facilitates educated recommendations and decisions assisting with the identification, assessment and mitigation of technology and cyber risk inherent in the Firm from various risk drivers.
Develop reporting of the cyber and technology key component areas.
Assist with the development of key performance indicators and key risk indicators necessary to properly govern over the Firm's cyber security program. Support management of Enterprise Risk Management policies through the process of initial analysis, continuous revision, and consistent communication of requirements to constituents.
Be a member of the appropriate working groups and committees necessary to drive the policy management process.
Perform detailed research, review and investigation to assist with the completion of deliverables that arise with respect to various management committees such as the Cyber Security Oversight Committee
Conduct detailed research to review and assess regulatory requirements to be incorporated into the policies.
Facilitate the management of cyber related due diligence and request for proposals by interfacing with various senior managers across the Firm to obtain the necessary information.
Attend various committees and working groups to ensure the ERM Cyber and Technology Risk team is appropriately aware of various initiatives and projects.
Assist with the development of client board presentation materials.
Enable the management of internal Enterprise Risk Management communications, such as monthly cyber and technology related communicator articles.
Maintain cyber related due diligence documentation, developing new client responses as necessary.
Interface with vendors as necessary to further drive the objectives of the cyber security training and awareness program.
Serve as the key point of contact, maturing the cyber security training and awareness program consisting of written and oral communications, in person presentations, webinar development, and formal computer-based training seminar development.
Conduct analysis and build reporting of program effectiveness through the use of tools such as surveys, statistical analysis, and key performance indicators.
Support the management of and interface with members of the Cyber Security Ambassador Program.
BA/BS degree in related field and/or equivalent experience.
6 plus years of work experience with 2 plus years of related risk, technology, cyber security, analytical, project management or business experience.
Fundamental understanding of cybersecurity
Strong analytical and problem solving skills.
Excellent written and oral communication abilities.
Exceptional client service skills, business acumen and professionalism.
Proven ability to take the initiative as well as manage multiple priorities.
Any of the following are a plus: Knowledge of internal BBH areas such as AML, KYC, Compliance, Audit, Systems, Risk
What We Offer:
A collaborative environment that enables you to step outside your role to add value wherever you can
Direct access to clients, information and experts across all business areas around the world
Opportunities to grow your expertise, take on new challenges, and reinvent yourself—without leaving the firm
A culture of inclusion that values each employee's unique perspective
High-quality benefits program emphasizing good health, financial security, and peace of mind
Rewarding work with the flexibility to enjoy personal and family experiences at every career stage
Volunteer opportunities to give back to your community and help transform the lives of others
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, age, genetic information, creed, marital status, sexual orientation, gender identity, disability status, protected veteran status, or any other protected status under federal, state or local law.
GPS Risk Management Analyst
Engility, the sole provider for the Global Positioning System (GPS) Systems Engineering & Integration (SE&I) team is looking for a Risk Analyst with experience in Department of Defense (DoD) acquisition programs. The GPS SE&I Team provides specialized engineering, analysis, operations support, and subject matter expertise to the GPS Directorate. Major duties of the position include:
Serve as the process expert for Segment teams demonstrating command of the subject matter and the methods of implementation and providing in depth training as required
Assist program managers in the identification and management of risks and issues; including facilitation of formal risk identification sessions, development of risks statements, performing critical path and root cause analysis, implementation of comprehensive handling/fallback plans, and conducting impact and resource assessments
Ensure integration of risks into the Enterprise Master Schedule (EMS) and program Integrated Master Schedules (IMS)
Prepare situational awareness briefings for internal and external customers, including risk status reports and metrics
Review contractor risks for cross-program impacts, adequacy of analysis and effectiveness of handling approach
Collaborate with prime contractors, other support contractors, government civilians, and members of the U.S. Air Force
Bachelor's Degree plus 5 years of relevant experience
Experience in Department of Defense (DoD) acquisition programs/customers
Current DoD Secret Security Clearance
Strong, proactive leader who takes the initiative to identify, own and solve customer challenges
Excellent verbal and written communications skills as well as organizational skill
Enterprise Risk Management Analyst
When joining Elevations, you can expect to work for a company that:
Provides amazing experiences and creates raving fans.
Strives to provide solutions for a better life and promises employees it will be the best place they have ever worked.
Wins awards such as "Best Bank", "Best Companies to Work for in Colorado" and even the "Malcolm Baldrige National Quality Award", the only Presidential award for quality.
Has a highly-engaged workforce and emphasizes career growth, empowerment and servant leadership.
What's in it for you:
Competitive pay, organization-wide incentive program, 401k matching, mortgage and auto discounts
4 weeks min. paid time off, work anniversary paid time off, 11 paid holidays, and 16hrs paid volunteer time off
Medical, dental, and vision health plans with FSA or HSA options
Onsite fitness center, Zumba and yoga classes, health fairs with biometrics screening and flu shots
Employee Assistance Program with a variety of services
Career development, trainings, career coaching, job shadowing, mentoring program, tuition reimbursement up to $5,000/year, and a recognition system
Culture of excellence and continuous improvement
We strive to be the best place you've ever worked!
The ERM Analyst will facilitate the identification, evaluation, and effective mitigation of risks that arise from inadequate or failed internal processes, people, systems, or external events. This includes completing Enterprise Risk Assessments (ERAs) and generating periodic risk metrics, dashboards, and trend analyses for senior leadership and the Board of Directors.
Essential Functions include:
Coordinate with business owners, Compliance, Corporate Risk Management, Internal Audit, and Information Security in completing ERAs to identify risks and internal controls, evaluate inherent and residual risk to the Credit Union associated with projects and processes, and facilitate appropriate mitigation of significant risks.
Communicate effectively with all risk assessment stakeholders in a timely manner regarding information requests, risk workshops and questionnaires, risk evaluations, control design evaluations, periodic updates to documented risk assessments, and other work necessary to maintaining a strong risk management program.
Maintain an automated risk assessment system (currently, Audit Command Language, or ACL) to complete ERAs, monitor and reasonably ensure timely remediation of identified issues, and generate risk reports to meet the needs of business owners, Risk Oversight Committee, Audit Committee, Board of Directors, external auditors, and regulators.
Maintain awareness of business initiatives and projects and consult with product and project owners, as needed, to reasonably ensure that all significant risks are identified and addressed prior to implementation.
Identify opportunities for process improvement and facilitate the implementation of operational enhancements.
Actively utilize external resources and engage in other learning to improve risk mitigation strategies.
Adhere to all applicable Federal and State laws and regulations governing the Credit Union, including the Bank Secrecy Act (BSA)/AML.
VP, Enterprise Operational Risk
This role does not have supervisory responsibility.
Required Competencies: Quality Orientation, Building Partnerships, Influencing, Monitoring Information, Planning and Organizing, High Impact Communication
Required Education, Experience, and
Bachelor's degree in related field
3+ years of experience in risk management, compliance, or audit in a highly regulated financial services environment (preferably, a credit union)
Experience with designing, implementing, managing, and/or maintaining automated risk assessment systems, such as ACL GRC
Proficiency in Microsoft Excel, Word, PowerPoint, and SharePoint
Demonstrated understanding of risk management processes and assessment techniques
Ability to multi-task within a fast paced, complex environment so as to complete assigned tasks with a high degree of initiative and within established deadlines
Excellent verbal and written communication skills, including the ability to communicate with senior leadership
Strong analytical, logical reasoning, and problem solving skills
This job operates in an office setting and routinely uses standard office equipment.
Sitting frequently, walking occasionally, use of hands frequently, listening constantly, talking frequently, exerting up to 10 lbs of force occasionally to lift, carry, push, pull, or move objects.
Position Type/Expected Hours of Work:
Full time / 40 hours per week
Elevations Support Center
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.
About Us: Elevations Credit Union is a member-owned not-for-profit financial institution serving Colorado's Front Range. Founded in 1953, we've grown from 12 members and less than $100 in assets to an institution with 13 branches and more than 120,000 members that manages over $2 billion in assets and is the No. 1 credit union mortgage lender in Colorado. At Elevations, we've made a commitment to move away from a product-centered business model and focus instead on creating consumer solutions. Our objective is to provide our members, as well as the entire community, with unbiased consumer information.
EEO Statement: Elevations Credit Union is an equal opportunity employer. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law. All aspects of employment including the decision to hire, promote, discipline, or discharge, will be based on merit, competence, performance, and business needs.
Candidates for certain positions may be required to submit to a credit history report in determining qualification for employment with Elevations Credit Union. If the position you are applying for requires a credit history report, any information received in such a report will not be the sole factor in making an employment decision. A history of personal financial irresponsibility may be reason for disqualification insofar as it relates to your potential job duties. Elevations Credit Union is aware that occasionally there are extenuating circumstances that may affect an individual's credit history. We comply with the Fair Credit Reporting Act and the Colorado Employment Opportunity Act.
Senior Analyst - Cyber Risk Management
Our client is a leading computer forensics and investigations firm with offices in San Francisco, Denver, New York City, Canada, Europe, and the Washington, D.C. area. The firm’s primary areas of service lie within cyber extortion / ransomware, cyber security, computer forensics, and data breach response. They blend technical and legal expertise to deliver investigative, forensic, and discovery solutions globally.
They are seeking an experienced Cyber Security professional in the Washington, DC office. The ideal candidate will have hands-on Big 4 or similar Tier 1 or 2 consulting experience performing security assessments, extensive knowledge of computer networks, infrastructure, information technology security, as well as experience with incident response and computer forensics matters. A high level of customer service and communication skills is also required.
The Senior Analyst for Cyber Risk Management consulting will be responsible for managing teams that review and test their clients’ technical, administrative and physical controls within their information technology environment and provide guidance on mitigating risks based upon the results of the analyses. The role will also focus on marketing, performing security assessments, leading penetration and vulnerability testing, and generalized information security consulting.
The candidate must also have the ability to manage and develop junior staff and peers. Strong written and verbal communication skills are essential to successfully translate technology and security requirements into business terms. Flexible and extensive client service skills are necessary for interacting with various levels of internal IT staff as well as corporate leadership.
- Maintain working knowledge of advanced cyber threat actor tactics and techniques;
- Research, identify and understand new threats;
- Conduct, security audits and risk assessments with commercial, open source and self-developed tools and techniques;
- Report and present findings to team and clients;
- Manage, mentor and train fellow team members;
- Be involved with the sales process by working with the business development staff and clients to explain and demonstrate services and products as a subject matter expert;
- Assist sales staff with the creation and delivery of proposals;
- Internally educate business unit leaders, staff and executive leadership on the information protection practice;
- Excel as a self-motivated individual who can work on their own as well as integrated with a team in a variety of situations
- Consistently work to improve the client brand through thought leadership.
- BA or equivalent field experience in Cybersecurity, Computer Science, Information Security or other related fields;
- 3-5 years of consulting experience leading and performing Information security assessments, Information security risk assessments, Business Impact Analyses & IT audits;
- Liaising with Leadership – C and E suite; internal and external counsel; department head level client staff;
- Project management experience;
- Leadership and staff development experience;
- Strong verbal and written skills – report writing, revision & review represent a significant portion of responsibilities;
- Strong knowledge of the Windows & Linux – client/server architecture; significant familiarity with Linux/Unix (including shell scripting).
Preferred Skills and
- Certifications from ISC2, ISACA, SANS, OSCP/OSCE;
- Windows embedded systems, Linux, and Unix Systems;
- Leadership of penetration testing engagements;
- Enterprise planning systems- SAP, Oracle e-Business Suite, Sage, Microsoft Dynamics;
- Encryption and encoding methods, communication protocols, and algorithms;
- NIST frameworks including SP800-15;
- Multi-disciplinary IT experience (IT Security, IT Incident Response Team, IT Operations, Tier 2-3 Support, Data Mining/Database management, etc.);
- Security tools such as Nexpose, Metasploit, Nessus, Kali Linux, etc., as well as other various commercial and self-developed tools;
- Strong networking knowledge with a focus on security;
- Incident handling techniques and processes;
- Business development skills;
- Industry visibility through conference presentations, blogging, academic papers and social media.
The position is based in Washington, DC and is full-time. Compensation will include an attractive base salary, incentive compensation, and full benefits including health and 401(k). Salary is commensurate with experience.
NOTE: applications without a detailed cover letter will not be considered.
Making better hires starts with building better job descriptions
- Browse 100s of templates across 40+ industries
- Customize your template with your company info & job requirements
- Post it to 20+ job boards in seconds – for FREE!