Purpose of Job
This role will also support the Retail Bank's information security and information governance programs, including analysis and reporting on application health, issue and vulnerability management, cyber risk, as well as oversight of application controls, third party risk management, disaster recovery and business continuity. In addition, assist with information governance (records management) programs for Retail Bank, coordinating on structured and unstructured records management.
Positioned in the first line of defense to ensure the overall effectiveness of Risk and compliance management programs, Risk analytics and operations in the business. This role will partner and collaborate with Compliance and Risk Management, as well as Business Operations, IT, Audit Services, and Regulators to support Risk and compliance-based initiatives. Responsible for supporting business leader adherence to the established Risk framework and ongoing supervision of business controls including Risk and control self-assessments, identification and evaluation of control effectiveness, identifying control failures, facilitating Risk and compliance remediation, internal and external audits and regulatory exams, and monitoring of the first line of defense to minimize Risk exposures and strengthen the overall control environment. Leverages Risk assessment data and identifies key data-driven insights tied to first line of defense.
Job Requirements
About USAA
USAA knows what it means to serve. We facilitate the financial security of millions of U.S. military members and their families. This singular mission requires a dedication to innovative thinking at every level.
We embrace a robust veteran workforce and encourage veterans and veteran spouses to apply.
Tasks:
Identifies and manages existing and emerging Risks that stem from business activities and the job role.
Ensures Risks associated with business activities are effectively identified, measured, monitored, and controlled.
Follows written Risk and compliance policies and procedures for business activities.
Manages and drives solutions for stronger controls, and in support of Risk and/or regulatory compliance related initiatives which may include: oversight of procedures/process, accurate regulatory reporting and filing, document governance, Risk control self-assessments, procedure governance, control design, new product controls, CoSA Third Party Governance, or quality governance.
Performs ongoing supervision and oversight of business controls and shares knowledge with team members to evaluate the effectiveness of established business controls.
Responsible for Risk data analysis, report preparation and trend analysis, utilizing business intelligence tools.
Anticipates business needs and proactively identifies opportunities to improve and strengthen the control environment through actionable insights.
Assists with translating control deficiencies into action plans and provides recommendations to enhance governance practices in alignment with Risk and compliance frameworks.
Partners with stakeholders to drive improvement efforts to correct or prevent unfavorable trends and assess the impacts.
Leads project team through concept, planning, execution, and implementation phases for effective and timely Risk remediation.
Advises senior management on the status of their control environment related to Risk identification and control weaknesses. Identifies critical areas to monitor and escalates issues and findings to appropriate stakeholders.
Develops and maintains processes, procedures and tools for managing exception alerts as they occur, including monitoring of resulting exception cases.
Provides control oversight to ensure compliance with laws and regulations.
Serves as a primary resource to team members.
Minimum Education:
Minimum Work Experience:
6 years of experience supporting Risk and/or compliance related activities in a financial services operating environment or other relevant industry OR 6 years of experience in a relevant quantitative discipline OR Or advanced degree or designation in a Risk management or quantitative discipline, and 4 years of experience supporting Risk and/or compliance related activities OR PhD in a Risk management or quantitative discipline, and 2 years of experience supporting Risk and/or compliance related activities.
Knowledge of federal laws, rules, regulations, and applicable guidance to include: OCC Heightened Standards, BSA/AML, REG E, UDAAP/UDAP, TILA/REG Z, SCRA, FCRA, MLA
Preferred:
Experience with establishment and maturation of information security monitoring and oversight programs
Knowledge and experience with Information Security frameworks, deeper knowledge of NIST framework a plus
Familiarity with reviewing and identifying gaps in Business Application Controls and Information Technology General Controls (ITGC)
Experience and familiarity with Information Security monitoring processes specific but not limited to:
Cybersecurity
Third Party Vendor Management
Business Continuity
Vulnerability and Penetration Testing
Security Risk Assessments (Process / Application)
Access Management
Experience in developing comprehensive IS reporting, consolidating data into an executive level view of Information Security health / scorecards
Knowledge / understanding of both Waterfall and Agile methodologies
Understanding of key aspects of Information Security Architectural considerations (i.e. Cloud computing)
Skilled at collaborating with various information technology resources and leadership
Experience with coordinating data governance programs / ability to effectively work with governance principles for structured and unstructured records
Compensation:
USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market position. The salary range for this position is: $80,200 - $144,500 *(this does not include geographical differential, it may be applied based on your work location)
Employees may be eligible for pay incentives based on overall corporate and individual performance or at the discretion of the USAA Board of Directors.
*Geographical Differential : Geographic pay differential is additional pay provided to eligible employees working in locations where market pay levels are above the national average.
Shift premium will be addressed on an individual-basis for applicable roles that are consistently scheduled for non-core hours.
Benefits:
At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals.
Relocation assistance is not available for this position.
#fsb
USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
USAA is an EEO/AA Employer - applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, disability, genetic information, sexual orientation, gender identity or expression, pregnancy, protected veteran status or other status protected by law.
