Previous Job
Risk Analyst
Ref No.: 17-00140
Location: New York City, New York
Position Type:Right to Hire
Start Date: 07/28/2017
Job Description:
This position is primarily responsible for acting as a risk manager, manager and leader to expand operational risk management methodologies and reporting processes and capabilities for the organization. This role performs operational and third party risk assessments in support of business operations (to include workflow, vendor application, and associated dependencies and controls). Promotes oversight and governance in the Risk Office across business operational areas throughout the organization.  This position plays a vital role in partnering with the business to assist them in effectively managing their operational risks and assessing risks associated with third party relationships. This position will contribute to the enhancement in tools and methodologies used to assess risk, establish guidelines and tools to facilitate continuous improvement in the related initiatives, by performing business risk analysis and leadership to internal business partners.  Additionally, this position may be actively engaged to review key operational risk and participate in security implementation projects, engaging with project teams to strengthen the operational risk posture of organization and establish appropriate corporate operational risk and security standards.
  • Program Development:  Define and implement enhancements to risk management tools, metrics and dashboard reporting in coordination across the corporation for Operational risk assessment and reporting.
  • Business Analysis:  Provide consultation on current business processes to redesign for risk reduction, best practice compliance with regulatory requirements, efficiency and effectiveness.
  • Standards Development:  Develop, document and maintain enterprise-wide policies, standards and guidelines for risk management across the organization.
  • Risk Analysis:  Performs risk analysis on key business processes and related dependencies (vendors, applications, vulnerability data) and provides independent oversight of security risk posture with ability to quantify identified risk areas.
  • Risk Oversight:  Defines metrics, monitors and oversees sustainability of operational risk management and reporting processes.
  • Risk Prioritization:  Works closely with Corporate Security Office team and business to prioritize new phases of process improvement in a strategic fashion.
Competencies / Skills:
  • Strong relationship building skills; adept at working collectively to develop and execute coordination plans with a variety of input areas and target audiences.
  • Highly developed, effective oral and written communication skills that are utilized to inform, inspire and influence others in a clear and concise manner.
  • Ability to work independently and set strategic direction for area of responsibility with limited direct supervision.
  • Strong quantitative skills are a must with an ability to develop effective predictive modeling of risk metrics and dashboard reporting.
  • Ability to identify and measure the risks faced with a business area, process or workflow.
  • Proven skills in managing multiple concurrent activities with shifting priorities and at times tight deadlines
  • Strong understanding of the principles of risk management, information security and their relationship to corporate governance activities such as operational risk assessment and organizational impact.
  • In-depth knowledge of industry standards risk analysis approaches: ORSA, ISO, COBIT, COSO, as well as regional standards and regulations; Sarbanes Oxley, Basel II, GLBA, HIPAA and crisis management / business resiliency practices.
  • Possesses and builds on knowledge of operational risks and trends relevant to financial services and insurance staying abreast of current and pending regulatory compliance requirements.
Education & Experience:
Strong understanding of compliance, fraud, risk mitigation, methodologies to enhance business operational efficiencies
  • Bachelor's degree or equivalent experience required
  • Certification in risk management preferred
3-5 years of experience specialized in operational risk management, information security, crisis management, security standards / assessments, risk management, primarily in financial services
Other Requirements:
  • Occasional Travel