Enterprise Risk Analyst

Position Title
Enterprise Risk Analyst

Location
Nationwide, MI 48098

Job Summary
This position is responsible for creating, maintaining, assessing and reporting on the status of the information technology and information security threats, risks, and controls. This position will be responsible for identifying and documenting potential gaps, testing and validating control adherence, and recommending and validating risk mitigation.

Pay Range: $64,022 - $93,473 - $122,923Pay Range: Local Minimum Wage - $0.00 - $0.00

Job Responsibilities:

• Create and maintain governance documentation, including policies, standards, controls, procedures, and testing requirements for technology and security organization in line with NIST 800-53, Secure Controls Framework, and Industry Best Practices.
• Work with technology team stakeholders to design, validate, track, and report risk mitigation.
• Perform risk assessments including mapping out threats and controls, identifying gaps, determining inherent and residual risk ratings in adherence with the enterprise Risk Governance Framework. Create formal risk assessment reports and present to stakeholders.
• Assist stakeholders in the business lines and technology in understanding risk and control requirements to ensure that risk responsibilities are understood and followed throughout the enterprise.

ADDITIONAL ACCOUNTABILITIES

• Perform special projects, and additional duties and responsibilities as required.
• Consistently adhere to regulatory and compliance policies and standards linked to the job.
• Complete required compliance trainings.
• Accountable to maintain compliance with applicable federal, state and local laws and regulations.

JOB REQUIREMENTS

Required Qualifications:

The minimum education and experience required complete each bullet point below. Items in this section must be objective, relevant, and clearly identifiable. Applicants who do not meet these criteria will not be considered.

• Education level required: Undergraduate Degree (4 years or equivalent) Computer Science or Cyber Security preferred
• Minimum experience required: 2+ Years in Technology Audit, Information Technology, or Information Security.
• Security +, CISA, CRISC, CISSP or equivalent preferred

Preferred Qualifications:

Additional qualifications the hiring team would prefer an applicant to have.

Job Competencies:

List the knowledge, skills and abilities required to perform the essential functions of the job. These should be related to the requirements above, but may not be easily determined from a resume review (i.e. intermediate excel proficiency, strong financial acumen, detail oriented, etc.)

• Strong understanding of internal/external processes and deadlines
• Able to work independently to ensure stakeholders fulfill audit and/or risk commitments
• Knowledge of Technology organization business processes and systems
• Knowledge of banking business processes
• Knowledge of risk assessment and analysis techniques and industry risk models
• Strong knowledge of IT security disciplines such as authentication and authorization models, data protection methods, networking, firewall models, threat and vulnerability management processes
• Comfortable interfacing with other internal or external organizations regarding risk and compliance findings
• Prior experience working with cross functional, cross departmental projects and technologies
• Well-rounded understanding of technology, operations, and key business processes
• Demonstrates a strong ability to build and maintain effective relationships with stakeholders by communicating clearly, engaging in proactive collaboration, and leveraging cross functional insights. Aligns relationship building efforts with enterprise goals to accelerate performance and drive strategic results.
• Builds trusted client relationships, whether internal or external, by identifying needs and delivering tailored solutions to enhance the overall client experience.
• Travel: Less than 10%
• Physical demands (ADA): No unusual physical exertion is involved.

Flagstar is an Equal Opportunity Employer

Flagstar provides teammates access to a variety of benefits including medical, dental, vision, life, and disability insurance, as well as a comprehensive leave program. Please click the following link for detailed information: Benefits | Flagstar Bank

Qualified applicants with arrest or conviction records will be considered for employment in accordance with the California Fair Chance Act, the Los Angeles County Fair Chance Ordinance, the City of Los Angeles Fair Chance Initiative for Hiring Ordinance, and the San Francisco Fair Chance Ordinance, as appliable.