YOUR LIFE’S MISSION: POSSIBLE
You have goals, dreams, hobbies and things you’re passionate about.
What’s Important to You Is Important to UsWe’re looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them—friends, family and passions. And we’re looking for team members who are passionate about our mission—making a difference in military members’ and their families’ lives. Together, we can make it happen.
Don’t take our word for it.
FORTUNE 100 Best Companies to Work For®
Computerworld® Best Places to Work in IT
FORTUNE® Best Workplaces for Millennials
Forbes® America’s Best Employers
IND123
Basic Purpose
The InfoSec Lead Risk & Control Analyst supports Navy Federal Credit Union’s (NFCU) Information Security Division in effectively managing the 1st Line of Defense internal control environment through the execution of the Risk Control Self-Assessment (“RCSA”) program. In collaboration with business process owners the lead role proactively builds and maintains process maps and risk and control matrices to identify, assess, monitor, update and report out operational risks. This role includes effective partnership with risk partners and process owners within Information Security and throughout the enterprise as RCSAs are coordinated, facilitated, completed and reviewed. The Lead will also partner with Control Testing and Issue and Event Management functions within the 1st Line InfoSec Risk Management department.Responsibilities:• Partner with stakeholders, including process owners and control officers, to document processes (via process flows), risks and controls, enhance control language, and assist to develop/maintain test scripts that validate controls are being performed in compliance with policies, standards, procedures, and other requirements to mitigate information security risk • Support the execution of front line controls, self-assurance, and risk assessment activities (ad-hoc controls review, business process management (BPM), risk control self-assessment (RCSA), and independent risk and audit activities as directed • Provide ongoing assessment of InfoSec’s risk profile through regular monitoring and status reporting of risks, issues, events and initiatives within core processes• Support iterative review and challenge of assessment results, working with appropriate stakeholders across the lines of defense• Perform and facilitate the collection, review and assimilation of RCSA assessment data and reporting into concise and meaningful reports• Assess exposure to risk, measure operational risk against ERM frameworks, assist establishing policies and procedures to minimize risk, identify ways to protect the organization from data loss and reputational damage • Coordinate efforts with InfoSec’s Issues and Events Management and Control Testing functions, to continually update control effectiveness and residual risk rating of InfoSec’s business processes as needed• Support implementation for change management needs with appropriate personnel within the Division and/or across divisional lines • Monitor and oversee the progress of risk assessments; address and resolve complex issues • Assist with Operational Risk event remediation efforts when needed• Serve as a subject matter expert with internal and external auditors (e.g., NCUA, CFPB, and contracted third parties) to address and resolve audit questions and findings relative to core process risk management • Support the testing of control design and the testing of control effectiveness for assigned areas as needed• Identify areas of improvement in existing process, methodology, and policies. Identify gaps and recommend enhancements. Drive, adopt and enforce best practices in report templates and tools• Coordinate required meetings, reviews and scheduling needs• Perform other duties as assigned Qualifications and Education Requirements:Required:• Degree in Business Administration, Economics, Mathematics, Computer Science, Engineering, Auditing, Law or related field or equivalent combination of training, education and experience• Advanced knowledge and understanding of risk-based auditing techniques and methodologies• Advanced knowledge of operational risk controls, concepts and practices and/or InfoSec specific frameworks• Proven experience working within cross-functional, multi-dimensional teams and projects of complexity which have business risk and impact • Proven ability to plan, organize and effectively execute risk mitigation and process improvement initiatives• Advanced organizational, planning and time management skills in order to multi task competing priorities in a fast paced and dynamic environment • Ability to comprehend, analyze, interpret, communicate and apply government and financial industry regulations related principles and practices, and company instructions, procedures and policies• Ability to work independently and in a team environment• Effective analytical and complex thinking skills to include summarizing information and clearly identifying key elements, patterns results or relationships• Significant experience in collaborating across organizational boundaries and building partnerships across various functionsDesired Qualifications and Education Requirements:• Working knowledge of Navy Federal’s products, services, programs policies and procedures• ORM, CISA, CISSM, CSPO, CDSPE certifications• Lean Six Sigma Black Belt or equivalent process mapping experience• Advanced knowledge of state and Federal laws; industry regulations, principles, and practices; and company policies that govern the business unit’s products/servicesHours: Monday – Friday, 8:00am – 4:30pmLocations: 820 Follin Lane, Vienna, VA 221805550 Heritage Oaks Drive, Pensacola, FL 32526141 Security Drive, Winchester, VA 22602RemoteExternal salary range: $92,900 – $160,400Due to COVID-19 and social distancing, this position will be temporarily working from home with plans to return to campus at the desired location listed once Navy Federal is back to normal operations. The specific logistics for returning to campus will be determined at a future date by individual leadership
Equal Employment Opportunity
Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/DisabilityDisclaimerNavy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Bank Secrecy ActRemains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.
Employee ReferralsThis position is eligible for the TalentQuest employee referral program. Please indicate the employee who referred you when applying.
REQNUMBER: 46947-1C
Join our award-winning campus at The Pines as a Full-Time RN! This rare opening is Monday through Thursday and every...
Apply For This Jobbr{display:none;}.css-58vpdc ul > li{margin-left:0;}.css-58vpdc li{padding:0;}]]> Benefits Eligibility: Full Time Benefits: At Sodexo, we believe every employee should have the resources...
Apply For This JobICON Government and Public Health Solutions (IGP) is seeking a Peer Review Specialist to join our team to support the...
Apply For This Jobbr{display:none;}.css-58vpdc ul > li{margin-left:0;}.css-58vpdc li{padding:0;}]]> LOCATION 1400 Broadway Street New York NY US 10018 Overview If you want an exciting...
Apply For This JobInvitae (NYSE: NVTA) is a leading medical genetics company trusted by millions of patients and their providers to deliver timely...
Apply For This JobWarehouse Manager Wanted We are seeking a highly organized and experienced Warehouse Manager to oversee our 127,000 sqft facility. The...
Apply For This Job