Senior Technical Risk Analyst (Controls Testing)

Navy Federal•Pensacola, FL

19h

About The Position

Navy Federal Credit Union currently does not provide sponsorship for this role. Applicants must be authorized to work in the United States without the need for current or future sponsorship. To assess the design and operating effectiveness of internal controls for Enterprise Technology Service (ETS) groups and collaborate with first, second, and third-line teams to evaluate compliance with organizational and regulatory requirements. To plan, execute, and document control walkthroughs and testing activities, including evidence evaluation, population and sample selection, and results analysis. To compile, research, analyze, and document data, requirements, workflows/processes, functionality, and controls for respective ETS groups. To develop and evaluate information and prepare audit-ready documentation and recommendations based on analysis for use in decision making. To support the respective ETS group’s control testing, risk management, and auxiliary project activities.

Requirements

Bachelor’s degree in business, Computer Science, Information Systems, or other related field, or the equivalent combination of education, training, or experience.
Hands-on experience performing IT control testing or audit activities, including walkthroughs, evidence collection, population identification, and sample testing.
Experience testing control design and operating effectiveness, including evaluation of completeness and accuracy.
Hands-on experience with evidence and documentation gathering, population and sample management, CDA/CPA concepts, and results and observations sharing.
Knowledge of IT regulatory guidelines and control frameworks relevant to financial institutions (e.g., ITGCs, access management, change management, operations).
Strong understanding of internal and external audit processes, including interaction with second- and third-line teams.
Hands-on experience documenting and testing controls in accordance with established audit and control testing methodologies.
Effective skill presenting testing results, findings, and recommendations clearly and concisely.
Effective skill maintaining accuracy, attention to detail, and meeting testing and audit deadlines.
Effective organizational, planning, and time management skills.
Effective skill communicating with all levels within an organization, including technical and non-technical stakeholders.
Experience working on cross-functional, multi-dimensional teams and projects.
Effective skill exercising initiative and using sound judgment in a risk and audit context.
Effective verbal and written communication skills.
Ability to work independently and in a team-based audit environment.
Exposure to translating business and control requirements into testable control activities.

Nice To Haves

Knowledge of Navy Federal’s services, products, systems, and functions.
Experience working in an IT, audit, risk, or compliance environment.
Knowledge of Navy Federal business processes, applications, and control standards.
Prior experience supporting IT audits, regulatory exams, or issues management activities.

Responsibilities

Execute end-to-end IT control testing, including walkthroughs, testing of control design and operating effectiveness, and evaluation of results.
Conduct control and process walkthroughs with control owners and stakeholders to understand control objectives, execution, and risk coverage.
Identify and validate control populations, perform sample selection, and assess evidence for completeness and accuracy.
Gather, review, and evaluate audit evidence to determine whether controls are operating as intended and in accordance with documented procedures.
Document testing procedures, results, and conclusions in accordance with established audit and control testing methodologies.
Analyze information, requirements, data, work quality, work methods, processes, service-specific practices, standards, and metrics/statistics.
Interpret results of analysis and identify control gaps, deficiencies, and improvement opportunities; present recommendations, including alternatives and implications.
Collaborate with other business units, second-line risk partners, and internal audit
Analyze changes in policies, procedures, systems, and products; determine the impact on control design and effectiveness.
Identify and analyze opportunities for new and/or improved controls, processes, data, or technology; provide a clear picture of possible outcomes.
Work with peers, business units, project teams, and vendors to ensure control requirements and testing expectations are fully communicated, documented, and satisfied.
Monitor and analyze key risk and performance indicators and support preventative and detective control strategies.
Compile, review, and prepare data to be used by analysts and management in the analysis of operations, services, and products.
Conduct benchmarking, trend analysis, and other inputs to drive continuous improvement and elevate control maturity.
Solve business and control-related problems by defining issues, interviewing stakeholders, evaluating alternatives, and presenting findings.
Provide input into control testing standards, methodologies, and best practices for the respective area.
Ensure compliance with Navy Federal Credit Union ETS standards, audit requirements, and best practices.
Perform other related duties as assigned, including auxiliary projects that support ETS risk, compliance, or audit initiatives.