Job description
Overview:
**Must have extensive experience in RCSA (Risk Control Self Assessment and process mapping to identify and document business controls. **
**Can be 100% remote in TX, NJ, NC, WV, AL, VA, MD, MO, DC, GA, or FL**
Click here to learn about BRMi's culture.
Click here to see BRMi’s Glassdoor reviews Responsibilities:
EOE/Minorities/Females/Vet/Disabled
BRMi is seeking a Lead Risk and Control Analyst to support the Security department in effectively managing the 1st Line of Defense internal control environment through the execution of the
Risk Control Self-Assessment (“RCSA”) program. In collaboration with business process owners the lead role proactively builds and maintains process maps and risk and control matrices to identify, assess, monitor, update and report out operational risks. This role includes effective partnership with risk partners and process owners within Information Security, Security Governance and Risk, BSA/AML and OFAC Compliance, Fraud, and Physical Security and throughout the enterprise as RCSAs are coordinated, facilitated, completed and reviewed. The Lead will also partner with Control Testing and Issue and Event Management functions within the 1st Line Security Risk Management department.
**Must have extensive experience in RCSA (Risk Control Self Assessment and process mapping to identify and document business controls. **
**Can be 100% remote in TX, NJ, NC, WV, AL, VA, MD, MO, DC, GA, or FL**
Click here to learn about BRMi's culture.
Click here to see BRMi’s Glassdoor reviews
- Partner with stakeholders, including process owners and control officers, to document processes (via process flows), risks and controls, enhance control language, and assist to develop/maintain test scripts that validate controls are being performed in compliance with policies, standards, procedures, and other requirements to mitigate information security risk
- Proactively support the identification of account/payment fraud (i.e., debit/credit, ACH, check, account takeover, etc.) related risks and perform comprehensive risk assessments of the overall control environment
- Support the execution of front line controls, self-assurance, and risk assessment activities (ad-hoc controls review, business process management (BPM), risk control self-assessment (RCSA), and independent risk and audit activities as directed
- Provide ongoing assessment of Security’s risk profile through regular monitoring and status reporting of risks, issues, events and initiatives within core processes
- Support iterative review and challenge of assessment results, working with appropriate stakeholders across the lines of defense
- Perform and facilitate the collection, review and assimilation of RCSA assessment data and reporting into concise and meaningful reports
- Assess exposure to risk, measure operational risk against ERM frameworks, assist establishing policies and procedures to minimize risk, identify ways to protect the organization from data loss and reputational damage
- Coordinate efforts with Security’s Issues and Events Management and Control Testing functions, to continually update control effectiveness and residual risk rating of Security’s business processes as needed
- Support implementation for change management needs with appropriate personnel within the Division and/or across divisional lines
- Monitor and oversee the progress of risk assessments; address and resolve complex issues
- Assist with Operational Risk event remediation efforts when needed
- Serve as a subject matter expert with internal and external auditors (e.g., NCUA, CFPB, and contracted third parties) to address and resolve audit questions and findings relative to core process risk management
- Support the testing of control design and the testing of control effectiveness for assigned areas as needed
- Identify areas of improvement in existing process, methodology, and policies. Identify gaps and recommend enhancements. Drive, adopt and enforce best practices in report templates and tools
- Coordinate required meetings, reviews and scheduling needs
- Perform other duties as assigned
- Degree in Business Administration, Economics, Mathematics, Computer Science, Engineering, Auditing, Law or related field or equivalent combination of training, education and experience
- Advanced knowledge and understanding of risk-based auditing techniques and methodologies
- Advanced knowledge of operational risk controls, concepts and practices and/or InfoSec specific frameworks
- Proven experience working within cross-functional, multi-dimensional teams and projects of complexity which have business risk and impact
- Proven ability to plan, organize and effectively execute risk mitigation and process improvement initiatives
- Advanced organizational, planning and time management skills in order to multi task competing priorities in a fast paced and dynamic environment
- Ability to comprehend, analyze, interpret, communicate and apply government and financial industry regulations related principles and practices, and company instructions, procedures and policies
- Ability to work independently and in a team environment
- Effective analytical and complex thinking skills to include summarizing information and clearly identifying key elements, patterns results or relationships
- Significant experience in collaborating across organizational boundaries and building partnerships across various functions
Desired:
- Operational Risk Management (ORM) or Fraud-related (i.e., Certified Fraud Examiner/CFE) certifications
- Lean Six Sigma Black Belt or equivalent process mapping experience
- Advanced knowledge of state and Federal laws; industry regulations, principles, and practices; and company policies that govern the business unit’s products/services
** BRMi will not sponsor applicants for work visas for this position.**
**This is a W2 opportunity only**
EOE/Minorities/Females/Vet/Disabled
We are an equal opportunity employer that values diversity and commitment at all levels. All individuals, regardless of personal characteristics, are encouraged to apply. Employment policies and decisions on employment and promotion are based on merit, qualifications, performance, and business needs. The decisions and criteria governing the employment relationship with all employees are made in a nondiscriminatory manner, without regard to race, religion, color, national origin, sex, age, marital status, physical or mental disability, medical condition, veteran status, or any other factor determined to be unlawful by federal, state, or local statutes.
caravetterealestate.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, caravetterealestate.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, caravetterealestate.com is the ideal place to find your next job.