Manager I, Technical Risk (ETS Risk)

Overview

Responsible for overseeing governance and intelligence functions for the IT Risk division. Plays a critical part in ensuring that IT risk processes are adequately managed, reported, compliant with regulatory requirements, and aligned with the organization's overall risk management strategy. Manages professionals and/or leaders and is accountable for the performance and results of a team. Decisions are guided by policies, resources and business plan. Develop, manage and guide execution of operational initiatives to achieve tactical objectives.

Responsibilities

• Oversee governance and intelligence functions across the ETS Risk division
• Conduct regular process assessments and documentation reviews
• Work with ETS Risk Teams and executive leadership to define and develop effective risk reporting
• Ensure that ETS Risk management processes adhere to industry best practices and regulatory standards (e.g., ISO, NIST, GDPR)
• Develop and maintain technical risk management policies, procedures, and frameworks
• Ensure compliance with internal policies and external regulations (e.g., data privacy, cybersecurity laws)
• Collaborate with legal, compliance, and internal audit teams to ensure alignment on technical risk issues and reporting
• Collaborate with cross-functional teams including IT, Enterprise Risk, and Communications to champion risk culture throughout ETS and the enterprise
• Present technical risk reports to senior management and board members, highlighting key risk areas and proposed actions
• Establish processes for continuous monitoring of ETS Risk KRIs and SLAs
• Produce regular risk reports, dashboards, and metrics to provide visibility into the organization's technical risk landscape
• Stay up-to-date with the latest industry trends, regulations, and best practices to continuously improve the risk management function
• Lead and mentor a team of technical risk analysts or engineers
• Provide ongoing training and development opportunities to ensure the team is up-to-date on the latest risk management practices and technologies

Qualifications

• Minimum of 5+ years of experience in Risk Management, Information Security, Information Technology, Internal Audit, Program Management or a related field
• Minimum of 3+ years in a leadership role
• Strong knowledge of technology risk frameworks, cybersecurity practices, and regulatory requirements (e.g., ISO 27001, NIST, GDPR)
• Significant experience establishing and tracking Key Risk Indicators and Key Performance Indicators
• Strong knowledge of process documentation (BPM 2) and establishing standard operating procedures
• Strong writing and communication skills, with experience presenting to senior management and for large groups
• Experience writing and maintaining professional training programs and career ladders
• Experience developing and maintaining technical risk management policies, procedures, and frameworks
• Experience producing regular reports, dashboards, and metrics to identify program performance insights and intelligence
• Interest in staying up-to-date with the latest industry trends, regulations, and best practices to continuously improve
• Experience leading and mentoring a team of technical analysts, auditors or engineers

Desired Qualifications

• Experience in the financial sector and interacting with financial regulators
• Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Auditor (CISA), or equivalent certifications
• Experience working in an IT environment and with tools such as ServiceNow
• Familiarity with Capability Maturity Model Integration assessments

Hours: Monday - Friday, 8:00AM - 4:30PM

Locations: 820 Follin Lane, Vienna, VA 22180 | 5510 Heritage Oaks Drive Pensacola, FL 32526 | 141 Security Drive Winchester, VA 22602

About Us
Navy Federal provides much more than a job. We provide a meaningful career experience, including a culture that is energized, engaged and committed; and fierce appreciation for our teams, who are rewarded with highly competitive pay and generous benefits and perks.

Our approach to careers is simple yet powerful: Make our mission your passion.

Best Companies for Latinos to Work for 2024

Computerworld Best Places to Work in IT

Forbes 2024 America's Best Large Employers

Forbes 2024 America's Best Employers for New Grads

Forbes 2024 America's Best Employers for Tech Workers

Fortune Best Workplaces for Millennials 2024

Fortune Best Workplaces for Women 2024

Fortune 100 Best Companies to Work For 2024

Military Times 2024 Best for Vets Employers

Newsweek Most Loved Workplaces

2024 PEOPLE Companies That Care

Ripplematch Recruiting Choice Award

Yello and WayUp Top 100 Internship Programs

From Fortune . 2024 Fortune Media IP Limited. All rights reserved. Used under license. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of, Navy Federal Credit Union.

Equal Employment Opportunity: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected Veteran.

Hybrid Workplace: Navy Federal Credit Union is a hybrid workplace, and details will be discussed during your interview process.

Disclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team's discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position

Bank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.