Navy Federal Credit Union
Job Location : Winchester,VA, USA
Posted on : 2024-12-26T07:26:13Z
Job Description :
OverviewResponsible for overseeing the identification, evaluation, and mitigation of technical risks across the organization's IT systems and infrastructure. Plays a critical part in ensuring that technology-related risks are adequately managed, compliant with regulatory requirements, and aligned with the organization's overall risk management strategy. Manages professionals and/or leaders and is accountable for the performance and results of a team. Decisions are guided by policies, resources and business plan. Develop, manage and guide execution of operational initiatives to achieve tactical objectives.ResponsibilitiesIdentify and assess technical risks associated with systems, applications, networks, and infrastructureConduct regular risk assessments, vulnerability assessments, and penetration testing to identify areas of risk exposureWork with IT teams to analyze emerging technologies and their associated risksDevelop and implement risk mitigation strategies to reduce the impact of technical risks on the organizationDesign and deploy controls, processes, and procedures to manage identified risksEnsure that technical systems adhere to industry best practices and regulatory standards (e.g., ISO, NIST, GDPR)Develop and maintain technical risk management policies, procedures, and frameworksEnsure compliance with internal policies and external regulations (e.g., data privacy, cybersecurity laws)Collaborate with legal, compliance, and internal audit teams to ensure alignment on technical risk issuesLead and coordinate the response to technical incidents and breaches, including root cause analysis and remediation effortsWork with cybersecurity teams to address vulnerabilities and improve overall security postureCollaborate with cross-functional teams including IT, operations, compliance, and business units to communicate risks and provide guidance on mitigation strategiesPresent technical risk reports to senior management and board members, highlighting key risk areas and proposed actionsEstablish processes for continuous monitoring of key technical risksProduce regular risk reports, dashboards, and metrics to provide visibility into the organization's technical risk landscapeStay up-to-date with the latest industry trends, regulations, and best practices to continuously improve the risk management functionEvaluate and manage risks associated with third-party vendors and service providersConduct risk assessments and reviews of external partners, ensuring compliance with contractual and regulatory requirementsLead and mentor a team of technical risk analysts or engineersProvide ongoing training and development opportunities to ensure the team is up-to-date on the latest risk management practices and technologiesQualificationsMinimum of 5+ years of experience in Risk Management, Information Security, Information Technology, or a related fieldMinimum of 3+ years in a leadership roleStrong knowledge of technology risk frameworks, cybersecurity practices, and regulatory requirements (e.g., ISO 27001, NIST, GDPR)Identify and assess technical risks associated with systems, applications, networks, and infrastructureConduct regular risk assessments, vulnerability assessments, and penetration testing to identify areas of risk exposureWork with IT teams to analyze emerging technologies and their associated risksDevelop and implement risk mitigation strategies to reduce the impact of technical risks on the organizationDesign and deploy controls, processes, and procedures to manage identified risksDevelop and maintain technical risk management policies, procedures, and frameworksEnsure compliance with internal policies and external regulations (e.g., data privacy, cybersecurity laws)Collaborate with legal, compliance, and internal audit teams to ensure alignment on technical risk issuesLead and coordinate the response to technical incidents and breaches, including root cause analysis and remediation effortsWork with cybersecurity teams to address vulnerabilities and improve overall security postureCollaborate with cross-functional teams including IT, operations, compliance, and business units to communicate risks and provide guidance on mitigation strategiesPresent technical risk reports to senior management and board members, highlighting key risk areas and proposed actionsEstablish processes for continuous monitoring of key technical risksProduce regular risk reports, dashboards, and metrics to provide visibility into the organization's technical risk landscapeStay up-to-date with the latest industry trends, regulations, and best practices to continuously improve the risk management functionEvaluate and manage risks associated with third-party vendors and service providersConduct risk assessments and reviews of external partners, ensuring compliance with contractual and regulatory requirementsLead and mentor a team of technical risk analysts or engineersProvide ongoing training and development opportunities to ensure the team is up-to-date on the latest risk management practices and technologiesDesired QualificationsExperience in the financial sector and interacting with financial regulatorsProfessional certifications such as Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Auditor (CISA), or equivalent certificationsExperience working in an IT environment and with tools such as ServiceNowHours: Monday - Friday, 8:00AM - 4:30PMLocation: 820 Follin Lane, Vienna, VA 22180 | 5510 Heritage Oaks Drive Pensacola, FL 32526 | 141 Security Drive Winchester, VA 22602About UsNavy Federal provides much more than a job. We provide a meaningful career experience, including a culture that is energized, engaged and committed; and fierce appreciation for our teams, who are rewarded with highly competitive pay and generous benefits and perks.Our approach to careers is simple yet powerful: Make our mission your passion.- Best Companies for Latinos to Work for 2024- Computerworld® Best Places to Work in IT- Forbes® 2024 America's Best Large Employers- Forbes® 2023 The Best Employers for New Grads- Fortune Best Workplaces for Millennials™ 2023- Fortune Best Workplaces for Women ™ 2023- Fortune 100 Best Companies to Work For® 2024- Military Times 2023 Best for Vets Employers- Newsweek Most Loved Workplaces- Ripplematch Campus Forward Award - Excellence in Early Career Hiring- Yello and WayUp Top 100 Internship ProgramsFrom Fortune. ©2024 Fortune Media IP Limited. All rights reserved. Used under license. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of, Navy Federal Credit Union.Equal Employment Opportunity: Navy Federal values, celebrates, and enacts diversity in the workplace. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected Veteran.Hybrid Workplace: Navy Federal Credit Union is a hybrid workplace, and details will be discussed during your interview process.Disclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team's discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market positionBank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.
Apply Now!