IT Risk and Controls Analyst IV

Overview The Enterprise Technology Services (ETS) Risk and Controls Analyst (ETS Analyst IV) will support the ETS department in conducting risk and control self-assessments (RCSAs) and other risk related initiatives. In collaboration with business process owners, the Analyst role will proactively build and maintain risk and control matrices to identify, assess, monitor, update, and report on the ETS risk and control environment. Assessment scopes will cover key ETS processes (e.g., Access Management, Change Management, Disaster Recovery) and may include a variety of tasks including facilitating discussions, identifying and documenting key process risks, documenting and testing controls, and collaborating with other first/second/third line groups to identify ownership of key processes and risks. The role includes effective partnerships with risk partners and process owners within ETS and through the enterprise’s three lines of defense.The analyst will be expected to research, compile, analyze and document data, requirements, workflow/processes, functionality, and/or controls for assessments and other initiatives. The analyst should also have strong experience in evaluating risk and control information and preparing recommendations based on analysis for use in decision making. The role will serve as a liaison / subject matter expert in the respective business area and provide leadership for strategic and compliance projects or programs. The ability to work independently but collaborate well with a team is a key skill required. This position is eligible for the TalentQuest employee referral program. If an employee referred you for this job, please apply using the system-generated link that was sent to you.Responsibilities Lead risk assessment initiatives in alignment with enterprise goals and regulatory expectations Collaborate with process owners and other business units to facilitate risk conversations, identify potential business risks, operational and regulatory process deficiencies, and improvement opportunities Ensure the effective identification, mitigation and management of risks arising from business activities Assist with the identification and documentation of control deficiencies, and conduct quality control reviews Identify critical risk and/or control areas to monitor and escalate findings to appropriate stakeholders Prepare and present recommendations to management and process owners assessment summaries, reports, trends, or other outcomes Identify and analyze opportunities for new and/or improved processes, best practices, data, or technology; provide clear picture of possible outcomes Identify training opportunities and mentor lower level staff Assess exposure to risk, develop ways to measure risk, and review related policies and procedures to minimize risk Provide guidance to teams and leadership on the status of standards compliance, risk identification and control issues Analyze changes in policies, procedures and products; determine the impact on the group functions Ensure clear, concise and effective communication of material Work with peers, business units and/or project teams, and vendors to ensure business needs are fully communicated, documented, executed, and satisfied Gather and synthesize data, present conclusions and offer risk mitigation, remediation, and process improvement solutions to management Conduct benchmarking, trend analysis, and other input to drive continuous improvement and elevate service performance Solve business problems by defining the problem, interviewing stakeholders, identifying and evaluating alternatives, and presenting findings Ensure compliance with Navy Federal Credit Union ETS standards and best practices Performs other related duties as assignedQualifications Bachelor’s Degree in Business, Information Systems, Computer Science, or other related field, or the equivalent combination of education, training or experience Extensive experience executing Risk and Control Self-Assessments Advanced knowledge and understanding of risk based methodologies and frameworks Proven ability to plan, organize, and effectively execute risk mitigation and process improvement initiatives Ability to work independently and collaborate well in a team environment Advanced knowledge of Information Technology core processes such as incident management, asset management, and disaster recovery Extensive experience driving conversations, synthesizing information, and probing for additional information when needed Advanced skill presenting findings, conclusions, alternatives, and information clearly and concisely to all levels of management Proven experience working within cross-functional, multi-dimensional teams and projects of complexity which have significant business risk and impact Expert skill maintaining accuracy with attention to detail and meeting deadlines Experience documenting and testing controls in accordance to established requirements and methodologies Working knowledge of IT regulatory guidelines and security/control frameworks for financial institutions Significant experience in collaborating across organizational boundaries and building partnerships across various functions Advanced skill building effective relationships through trust and diplomacy, with the ability to influence, negotiate, and build consensus to reach agreeable and positive outcomes with business partners Significant experience in managing multiple priorities independently and/or in a team environment to achieve goals Expert demonstrating thought-leadership, initiative-taking, decision-making and creativity solving business problemsDesired Education and Qualifications: Professional certifications including, but not limited to any of the following: CRISC, CISA, CIA, CPA, CISM, CISSP Advanced knowledge of Navy Federal business processes, applications, services, products, standards, and procedures Experience working in an IT environment and with tools such as ServiceNow Advanced knowledge of state and Federal laws, industry regulations, principle, and practices, and company policies that govern the product and servicesHours: Monday - Friday, 8:00AM - 4:30PMLocation: 820 Follin Lane, Vienna, VA 22180 | 5550 Heritage Oaks Dr. Pensacola, FL 32526 | 141 Security Dr. Winchester, VA 22602 Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team’s discretion based on qualified applicant volume.About Us You have goals, dreams, hobbies, and things you're passionate about—what's important to you is important to us. We're looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them—friends, family, and passions. And we're looking for team members who are passionate about our mission—making a difference in military members' and their families' lives. Together, we can make it happen. Don't take our word for it: Military Times 2022 Best for Vets Employers WayUp Top 100 Internship Programs Forbes® 2022 The Best Employers for New Grads Fortune Best Workplaces for Women Fortune 100 Best Companies to Work For® Computerworld® Best Places to Work in IT Ripplematch Campus Forward Award - Excellence in Early Career Hiring Fortune Best Place to Work for Financial and Insurance ServicesEqual Employment Opportunity: Navy Federal values, celebrates, and enacts diversity in the workplace. Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans. EOE/AA/M/F/Veteran/Disability EOE/AA/M/F/Veteran/DisabilityDisclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team’s discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market positionBank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.REQNUMBER: 16986-OTHLOC-300000025800044