Principal Risk Analyst (Technology Risk)

Responsible for identifying, assessing, and mitigating technology-related risks within the company. The ideal candidate will analyze systems and processes to ensure compliance with internal policies, industry regulations, and best practices in cybersecurity and data protection. Work independently to interpret and develop solutions to complex business challenges that have a significant impact on the function or branch. Specialized skill set in collaborating with various teams to implement risk management strategies and improve the overall security posture of the company. Recognized as an expert in own area within the company.

• Plan the research for and development of specialized risk assessment scopes
• Conduct regular risk assessments and vulnerability analysis of IT systems, software applications and networks to address threats and weaknesses
• Identify potential business risks, operational, technology and regulatory process deficiencies and improvement opportunities 
• Gather and synthesize data; present conclusions and offer risk mitigation, remediation and process improvement solutions to management
• Participate in the development of remediation plans, including documenting, managing, and reporting on risk response measures
• Work closely with IT, security, and compliance teams to communicate and mitigate risks, as well as to promote a culture of risk awareness across the organization – Considerable impact
• Prepare risk management reports and dashboards for senior management, highlighting risks, issues, and recommendations for improvement
• Assist with the development and enhancement of practices, procedures, and instructions
• Develop and maintain strong working  relationships with team members, subject matter experts, and leaders; work with senior management on complex issues
• Lead moderate to large projects and initiatives
• Mentor lower level staff

• 7-10 years of experience in risk management 
• Subject matter expert within business area/specialization with understanding of interrelationships of different disciplines
• Relevant certifications (e.g., CISSP, CISA, CRISC, or similar)
• Strong knowledge of cybersecurity principles, risk assessment methodologies, and IT governance frameworks
• Significant experience managing multi-faceted projects simultaneously that have cross-departmental impact
• Proven ability to plan, organize and effectively execute risk mitigation and process improvement initiatives
• Advanced organizational, planning and time management skills
• Advanced research and analytical skills
• Bachelor’s Degree in Business Administration, Auditing, or related field or equivalent combination of training, education and experience

Desired Qualifications

• Master’s Degree in related field or equivalent combination of training, education and experience

Hours: Monday - Friday, 8:00AM - 4:30PM
Location: 820 Follin Lane Vienna, Virginia 22180

Navy Federal provides much more than a job. We provide a meaningful career experience, including a culture that is energized, engaged and committed; and fierce appreciation for our teams, who are rewarded with highly competitive pay and generous benefits and perks.

Our approach to careers is simple yet powerful: Make our mission your passion.

• Best Companies for Latinos to Work for 2024
• Computerworld® Best Places to Work in IT
• Forbes® 2025 America’s Best Large Employers
• Forbes® 2024 America's Best Employers for New Grads
• Forbes® 2024 America's Best Employers for Tech Workers
• Fortune Best Workplaces for Millennials™ 2024   
• Fortune Best Workplaces for Women ™ 2024
• Fortune 100 Best Companies to Work For® 2024
• Military Times 2024 Best for Vets Employers
• Newsweek Most Loved Workplaces
• 2024 PEOPLE® Companies That Care
• RippleMatch Recruiting Choice Award
• Yello and WayUp Top 100 Internship Programs

From Fortune. ©2024 Fortune Media IP Limited. All rights reserved. Used under license. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of, Navy Federal Credit Union.

Equal Employment Opportunity: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected Veteran.

Hybrid Workplace: Navy Federal Credit Union is a hybrid workplace, and details will be discussed during your interview process.

Disclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team’s discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position.

Bank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.