Sr. Risk Analyst

Position Details:

Job Title: Sr. Risk Analyst Contractor

Location: Richmond, VA

Duration: 12+ months (Possibility of extension)

Pay Rate: Based on exp.

This role will allow a hybrid work schedule. 3 days in office and 2 days remote work.

Project Duration: 2 Years

Location:

Location - 601 S. Belvidere St. Richmond, VA 23220

Sr. Risk Analyst Contractor

This important role will support Enterprise Risk Management across all Virginia Housing programs and projects and is assigned to initiatives with risk components. The Risk Analyst will assist in conducting risk assessments for departments, processes, and systems. The Risk Analyst is also responsible for assisting with creating and maintaining all of Virginia Housing's Enterprise Risk policies and procedures.

Responsibilities will include:

• Participates in Enterprise Risk efforts across all business areas and vendor engagements.
• Work within the GRC system to add and update risk information, records, and documentation.
• Represent Risk in PMO projects, where assigned, to ensure significant projects have appropriate representation.
• Responsible for partnering across teams, collaborating with users to understand business challenges, developing options tailored to providing value, facilitating compliance, and providing timely and clear communications.
• Will be responsible for interviews with business areas to understand their processes, risks, and controls.
• Assists with development and maintenance of Enterprise Risk policies and procedures.
• Assists with internal controls documentation, including populating risk assessment templates and drafting control narrative documentation for business approval.
• Partner with business units to facilitate completion of risk management lifecycle to include risk identification, risk analysis, risk response, risk reporting, risk monitoring, and risk certification.
• Assist the third-party risk management processes at Virginia Housing. Collaborate with the Business, Procurement, ISO, & Legal to implement best practices to include performance standards, communication channel standards, risk profile development, monitoring, and regulatory change management.
• Collaborate with Information Security Office to support the Information Security Program
• Assist the Business Continuity Officer with business continuity and disaster recovery planning and updating the Business Impact Analysis

Qualified candidates must possess:

• At least (3) years of demonstrated experience in Enterprise Risk Management concepts related to governance, risk and compliance.
• Extensive knowledge of the principles and practices of Enterprise Risk Management.
• Extensive knowledge of the principles and methods applied to identifying and assessing risks.
• Knowledge of the principles of business continuity & disaster recovery planning as well as performing a business impact analysis.
• Ability to organize work, set priorities, meet established deadlines, and follow up on assignments with a minimum of direction.
• Experience working with risk and security frameworks (NIST 800-53, ISO 27001, COBIT, COSO ERM, etc.).
• Superior organizational skills and attention to detail.
• Ability to continually prioritize and change or adapt to ambiguous situations.
• Experience drafting policies and procedures.
• Ability to interpret and understand risk/process documentation including flow diagrams and process maps

Preferred experience includes:

• Bachelor's degree in finance, Accounting, Information Systems or equivalent. Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), Certified Risk Management Assurance (CRMA)
• Previous experience working in the financial services industry is preferred.
• Knowledge of internal controls and how they are applied in finance and cloud/application security.