IT Operational Risk Analyst

Location: Vienna, Virginia
Category: Project Management
Employment Type: Contract
Job ID: 16239
Date Added: 02/09/2024

Apply Now

Fill out the form below to submit your information for this opportunity. Please upload your resume as a doc, pdf, rtf or txt file. Your information will be processed as soon as possible.

* Required field.
Desired:
    • Advanced experience with IT General Control and Information Security risk assessments
    • Significant experience in collaborating across organizational boundaries and building partnerships across various functions
    • Knowledge of mortgage lending
    • Knowledge of industry risk frameworks (i.e. COSO/COBIT/NIST 800-53)
    • Knowledge of Data Governance and Data Privacy Principles
    • CIA, CISSP, and/or CISA certifications
    • Curiosity and ability to learn new technologies on the fly to solve complex problems
Nice to Haves:
    • Experience with SQL programming and Data Visualization tools like Microsoft PowerBI
    • Experience working across all aspects of the Software Development Lifecycle (e.g., Requirements Gathering, Development, Testing, and Production Readiness/Training)
    • Knowledge of Robotic Processing Automation (RPA) capabilities and their value proposition

Job Description:
Operational Risk Analysts are responsible for analyzing, and reporting on Navy Federal’s risk, quality, service, and controls, to improve operational efficiency and effectiveness, mitigate risk and remediate operational and regulatory vulnerabilities.

Responsibilities:
  • Conduct risk assessments to ensure compliance with federal and state regulatory requirements, industry standards, and Navy Federal operating procedures
  • Develop standard risk assessment scopes and conduct re-scoping of already established reviews to ensure validity
  • Identify and evaluate risks and associated controls using the RCSA (Risk Control Self-Assessment) method/process
  • Prepare and present to management and/or affected business unit summaries, operational and regulatory risk assessment reports, trending, and remediation or mitigation solutions
  • Develop and implement operational risk management frameworks, methodologies, reporting, quantification/testing, policies, standards, and procedures as appropriate
  • Support special projects related to improving internal risk and compliance processes (e.g., automation and optimization efforts)
Additional Details:
  • Locations: GPO or HQ
  • Hybrid: Onsite 4 days/month

#LI-RS
#DICE