Greetings!

Our client is the world's largest credit union with over 10 million members, over $149 billion in assets, and over 23,000 employees.

Our client Navy Federal Credit Union is seeking a Business Analyst- Security-15269-Hybrid in Vienna, VA. You seem to have a rock-solid profile and your overall background seems to be a great match for the position.

Please review the below information for clarity on the position description.

Description:

Basic Purpose:

To support Security Governance & Risk (SG&R) in a lead role with high multi-facet Business and IT insight to ensure Navy Federal Credit Union’s (NFCU) Security Division in effectively managing the enterprise’s Security risks and overall program through technical implementation.

To support Security Governance & Risk (SG&R) by being multi-faceted responsible for supporting implementation of a focused risk management strategy and methodology within NFCU enterprise anchor platform as well as procedural documents (e.g., procedures, job aids, etc.) are thoroughly documented. Partner with various business units on iterative annual enhancements and modernizations to the programs as well as overall maintenance and ad hoc adjustments corresponding to the IT technical needs as well as the drafting of initial procedural documents to support the execution of scalable and repeatable associated processes and activities. Collaborate heavily with Enterprise Risk Management (ERM) and Enterprise Technology Services (ETS) partners, NFCU asset Business and IT owners, and Business Unit risk management delegates across the enterprise to identify and assess Inherent Risk, Control Effectiveness, and Residual Risk compiling the generation of not only risk prioritization, reporting and dashboards and also high value attribute data population serving to facilitate data integrity and credibility to the enterprise asset inventory/repository. Work closely with various levels of technical staff to ensure overall organizational effectiveness and efficiency. Work under minimal supervision with expected deliverables met on a weekly and monthly cadence.

Responsibilities:

Scale vertically and horizontally across the enterprise driving asset Inherent and Residual Risk for Security within an enterprise gateway assessment.Request existing documentation such a Standard Operating Procedure (SOP) from Business Unit, Asset Owner, 1st Line of Defense Risk Delegate, BISO, etc.As applicable, articulate data context definitions of Inherent, Control Effectiveness and Residual Risk attributes related to reporting and dashboard metrics.Compile additional information requirements, objectives, functions and features.Draft technical documents, primarily procedures and job aids.Review drafts with stakeholders for completeness and clarification.Team player with participation in Security-related special projects, councils, committees, working groups, etc. as a Risk SMEUpload documentation into eGRC tool of choiceWhen applicable, map the Control Procedure to the corresponding Control Standard.Execute daily ad-hoc tasks or lead small projects as needed.

Qualifications and Education Requirements:

Risk Management experienceConsulting skills to extract key business and IT procedures including the ability to work with multiple stakeholders in a federated approach to a unified meansSignificant experience researching, compiling, and documenting data and procedures associated with business processesExtensive experience with content managementSignificant experience in developing technical documentationExtensive experience managing multiple priorities independently and/or in a team environment to achieve goalsExpert skill capturing and translating technical processes and requirements into easily understood termsAdvanced skill communicating complex technical concepts to non-technical audiencesAdvanced skill identifying and analyzing technical requirements and recommending solutionsAdvanced research, analytical, and problem solving skillsExpert verbal and written communication skillsAdvanced skill presenting findings, conclusions, alternatives, and information clearly and conciselyAdvanced skill working with all levels of management, supervisors, stakeholders and vendorsExperience creating/editing presentations using software or other types of material/mediaAdvanced organizational, planning and time management skills Advanced skill to influence, negotiate and persuade to reach agreeable exchange and positive outcomes

Bank Secrecy Section (BSA):

Remains cognizant of and adheres to Navy Federal policies and procedures, regulations pertaining to the Bank Secrecy Act and confidentiality best practices.

I would appreciate the opportunity to connect and discuss this further. Please feel free to call or email me at your convenience, or let me know a suitable time for us to connect.