System Level Risk Assessment (SLRA) Analyst

U.S. Bank•Minneapolis, MN

4d•Onsite

About The Position

At U.S. Bank, we’re on a journey to do our best. Helping the customers and businesses we serve to make better and smarter financial decisions and enabling the communities we support to grow and succeed. We believe it takes all of us to bring our shared ambition to life, and each person is unique in their potential. A career with U.S. Bank gives you a wide, ever-growing range of opportunities to discover what makes you thrive at every stage of your career. Try new things, learn new skills and discover what you excel at—all from Day One. Job Description This role requires working from a U.S. Bank location three (3) or more days per week. The SLRA Associate Analyst plays a critical role in executing and supporting the System Level Risk Assessment (SLRA) program. This is an experienced role, responsible for conducting risk assessments on enterprise systems, ensuring accurate evaluation of inherent risk, control coverage, leading risk indicators, and residual risk. The Associate Analyst works closely with system owners, information security professionals, and second line of defense (SLOD) partners to ensure assessments are completed accurately, on time, and in alignment with enterprise risk standards. In addition to executing assessments, the SLRA Associate Analyst supports the integrity of the SLRA platform, identifies and resolves data anomalies, and contributes to the continuous improvement of SLRA methodology, workflows, and reporting. The SLRA Associate Analyst also maintains team process and platform documentation and associated workflows.

Requirements

Bachelor’s degree, or equivalent work experience
Four or more years of experience in information security risk management
Working technical subject matter expert knowledge across security domain areas
Experience managing content and features within GRC systems.

Nice To Haves

At least one relevant certification, such as CISSP, CISA, CRISC, CISM, etc.
Excellent written and verbal communication skills
Working knowledge of risk management and control design concepts.
Strong understanding of policy management.
Desire to self-improve and continuously learn.
Understanding of basic concepts of business management, including cost benefit analysis and other forms of business sense.
High level of discipline and organization.
Strong decision-making and problem-solving skills

Responsibilities

Execute SLRA assessments and ensure the inherent risk ratings of systems reflect their true risk profile.
Review control coverage gaps and other risk indicators to determine residual risk of systems within their area of oversight.
Initiate Findings upon discovery of system-level control gaps.
Contribute to the refinement of SLRA methodology and risk scoring logic.
Identify SLRA system bugs or flaws timely and partner with technology development teams to resolve timely.
Monitor SLRA data quality and initiate corrective actions for anomalies or inconsistencies.
Escalate overdue assessments and support follow-up actions to drive completion.
Strive for operational excellence for the SLRA team.
Coach junior team members on analysis techniques and SLRA best practices.

Benefits

Healthcare (medical, dental, vision)
Basic term and optional term life insurance
Short-term and long-term disability
Pregnancy disability and parental leave
401(k) and employer-funded retirement plan
Paid vacation (from two to five weeks depending on salary grade and tenure)
Up to 11 paid holiday opportunities
Adoption assistance
Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume