Senior Information Security & Privacy Advisor- Risk & Controls

About The Position

Requirements

• Bachelor’s degree; OR 4 years of related experience (in addition to the minimum years of experience required) may be substituted in lieu of degree.
• 6 years of experience supporting risk-related, compliance related, or business control design activities; OR 6 years of experience in a relevant quantitative discipline; OR Advanced degree or designation in a risk management or quantitative discipline, and 4 years of experience supporting risk-related, and/or compliance-related, or business control design activities; OR PhD in a risk management or quantitative discipline, and 2 years of experience supporting risk-related, and/or compliance-related, or business control design activities.

Nice To Haves

• Deep technical understanding of Cybersecurity principles, common vulnerabilities, and security control mechanisms across various domains (e.g., network security, endpoint security, cloud security, application security).
• Certifications such as CISSP, CISM, CRISC, CIPP, or GIAC certifications are highly desirable.
• Familiarity with security frameworks (e.g., NIST Cybersecurity Framework, ISO 27001) and their application in control design and assessment.
• Demonstrated ability to manage complex issues and drive them to resolution in dynamic and uncertain environments.
• Excellent communication and interpersonal skills, with the ability to influence and collaborate effectively with technical and non-technical stakeholders

Responsibilities

• Manages and drives solutions for stronger controls, and in support of risk and/or regulatory compliance related initiatives which may include: oversight of procedures/process, accurate regulatory reporting and filing, document governance, risk control self-assessments, procedure governance, control design, new product controls, CoSA Third Party Governance, or quality governance.
• Performs ongoing supervision and oversight of business controls and shares knowledge with team members to evaluate the effectiveness of established business controls.
• Responsible for risk data analysis, report preparation and trend analysis, utilizing business intelligence tools.
• Anticipates business needs and proactively identifies opportunities to improve and strengthen the control environment through actionable insights.
• Assists with translating control deficiencies into action plans and provides recommendations to enhance governance practices in alignment with risk and compliance frameworks.
• Partners with stakeholders to drive improvement efforts to correct or prevent unfavorable trends and assess the impacts.
• Leads project team through concept, planning, execution, and implementation phases for effective and timely risk remediation.
• Advises senior management on the status of their control environment related to risk identification and control weaknesses.
• Identifies critical areas to monitor and escalates issues and findings to appropriate stakeholders.
• Develops and maintains processes, procedures and tools for managing exception alerts as they occur, including monitoring of resulting exception cases.
• Provides control oversight to ensure compliance with laws and regulations.
• Serves as a primary resource to team members.
• Ensures risks associated with business activities are effectively identified, measured, monitored, and controlled in accordance with risk and compliance policies and procedures.

Benefits

• At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness.
• These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs.
• Additionally, our career path planning and continuing education assists employees with their professional goals.
• For more details on our outstanding benefits, visit our benefits page on USAAjobs.com.