ISD Analyst IV (Risk Management)

Location: FL Pensacola - Operations Full/Part Time: Full-Time Regular/Temporary: Regular

Job Description


You have goals, dreams, hobbies and things you’re passionate about.

What’s Important to You Is Important to Us
We’re looking for people who not only want to do meaningful, challenging work, keep their skills sharp and move ahead, but who also take time for the things that matter to them—friends, family and passions. And we're looking for team members who are passionate about our mission—making a difference in military members' and their families' lives. Together, we can make it happen.

Don’t take our word for it.

  • FORTUNE 100 Best Companies to Work For®
  • Computerworld® Best Places to Work in IT
  • FORTUNE® Best Workplaces for Millennials
  • Forbes® America’s Best Employers


Basic Purpose

To compile, research, analyze and document data, requirements, workflow/ processes, functionality and or controls for respective ISD group. To develop and evaluate information, and prepare recommendations based on analysis for use in decision making. Serve as liaison and / or subject matter expert in respective business area. Provide leadership for strategic and compliance projects or programs.

Lead efforts to evaluate and assess risks surrounding the IT environment; information governance; information security; and technology and process improvements. Responsibilities include planning, executing, and reporting on IT risk and controls that develop, assess, and/or help improve the design and operating effectiveness of IT risk management and IT control activities.


• Lead program-level efforts to assess risk in the IT environment; coordinate and oversee the Operational Risk Program and/or the IT Risk Register
• Perform detailed risk assessments of various IT implementations including technology, adherence and control process; assess, document, and present identified risk, potential and/or actual impact, possible remediation, track remediation
• Coordinate or perform risk and control self-assessments (RCSA)
• Assess regulatory language, requirements, and standards for application or measurement of impact to the IT environments
• Identify, implement, or manage process improvements to IT Governance, Risk, and Controls
• Manage projects identifying and tracking process and technology improvements to the availability and security of IT
• Participate in the formulation of detailed IT audit responses including assessment of the request, identification of impacted parties, collection and assessment of evidence and responses, formulation of formal response to the auditor/examiner
• Analyze information, requirements, data, work quality, work methods, processes, service specific practices, standards and metrics/statistics
• Interpret results of analysis; present recommendations, including alternatives and implications
• Collaborate with other business units to analyze and improve processing procedures and resolve problems
• Analyze changes in policies, procedures and products; determine the impact on the group functions
• Identify and analyze opportunities for new and/or improved processes, data, or technology; provide clear picture of possible outcomes
• Ensure clear, concise and effective communication of material
• Work with peers, business units and/or project teams, and vendors to ensure business needs are fully communicated, documented and satisfied
• Monitor and analyze key performance indicators, and establish processes and methodologies for preventative
• Compile, review and prepare data to be used by analysts and management in the analysis of operations, services and products
• Conduct benchmarking, trend analysis and other input to drive continuous improvement and elevate service performance
• Analyze information to produce analytically-driven inferences and hypotheses to generate actionable recommendations
• Solve business problems by defining the problem, interviewing stakeholders, identifying and evaluating alternatives, and presenting findings
• Provide input into best practices for the respective area
• Ensure compliance with Navy Federal Credit Union ISD standards and best practices
• Performs other related duties as assigned


• Experience in Information Security, Information Technology, Technology Risk and/or IT Audit
• Experience with security, technology, and compliance risk assessments and remediation planning
• Experience in the development, and/or implementation, assessment or testing of IT controls
• Project/program management experience with large/complex projects
• Broad knowledge of IT concepts, implementations, challenges in large organizations, preferably credit union or banking/finance
• Bachelor’s Degree in Business, Computer Science or other related field, or the equivalent combination of education, training or experience
• Advanced skill maintaining accuracy with attention to detail and meeting deadlines
• Extensive experience in IT solution creation and delivery with increased business intelligence
• Expert research, analytical, and problem solving skills
• Advanced organizational, planning and time management skills
• Advanced skill communicating with all levels within an organization
• Experience working and participating in cross-functional, multi-dimensional teams and projects
• Advanced skill presenting findings, conclusions, alternatives and information clearly and concisely
• Effective relationship building, negotiation and facilitation skills
• Experience in leading, guiding & mentoring others
• Advanced skill exercising initiative and using good judgment to make sound decisions
• Expert verbal and written communication skills
• Advanced skill analyzing and organizing problems or work processes for technical solutions
• Ability to work independently and in a team environment
• Significant experience in translating business requirements into technical solutions
• Desired - Knowledge of Navy Federal’s services, products and functions
• Desired - Experience working in an IT environment
• Desired - Knowledge of Navy Federal business processes and applications
• Desired – Master’s Degree in a related field
• Desired - Industry/professional certifications such as CISA, CRISC, CISSP, Risk Manager, PMP, ITIL
• Desired - Knowledge of industry regulators, regulation including NCUA, CFPB, PCI DSS, etc.
• Desired - Experience of knowledge of IT governance
• Desired - Experience with one or more ServiceNow modules: Service Management, Operations Management, Security Operations, or Governance, Risk and Compliance
• Desired - Leadership, mentorship skills
• Desired - Demonstrated critical thinking/problem solving
• Desired – Demonstrated experience in operational risk assessments or IT risk assessments

Hours: Monday - Friday, 8:00am - 4:30pm

Location: 5550 Heritage Oaks Drive, Pensacola, FL 32526

Equal Employment Opportunity

Navy Federal values, celebrates, and enacts diversity in the workplace.  Navy Federal takes affirmative action to employ and advance in employment qualified individuals with disabilities, disabled veterans, Armed Forces service medal veterans, recently separated veterans, and other protected veterans.  EOE/AA/M/F/Veteran/Disability


Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need.
An assessment may be required to compete for this position.

Bank Secrecy Act

Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.