Risk Management Analyst (Hybrid)

$58,752 - $116,688/Yr

CareFirst of Maryland - Reston, VA

posted 5 days ago

Full-time - Mid Level
Reston, VA
Ambulatory Health Care Services

About the position

The Risk Management Analyst is responsible for supporting and facilitating operational risk programs aimed at identifying and mitigating risks within the organization. This role involves managing controls and safeguards to minimize the impact of potential and existing risks, ensuring compliance with relevant laws and standards, and monitoring remediation of identified issues. The analyst will collaborate with various business units to enhance the enterprise risk culture and maintain a centralized risk register.

Responsibilities

  • Identify issues and concerns, providing appropriate support to manage risk and improve control efficiency.
  • Track and monitor evolving risks and threats within the centralized risk register, including third-party risks.
  • Collaborate with business owners to maintain an inventory of processes, controls, and process-level risks.
  • Provide advisory support in completing divisional risk assessments.
  • Govern and support associates in third-party risk assessments and control self-assessments.
  • Maintain documentation for re-performance ability using Governance Risk and Compliance (GRC) tools.
  • Contribute to the repository of best practices related to risk assessments and control self-assessments.
  • Support maintenance of the centralized repository for third-party relationships and their associated risks.
  • Ensure compliance with the Third Party Risk Management (TPRM) framework and standards.
  • Support due diligence on third-party controls in collaboration with subject matter experts.
  • Define and establish frameworks for key data elements in collaboration with Integrated Compliance teams.
  • Contribute to the development of training materials on operational risk management best practices.

Requirements

  • Bachelor's Degree or 4 years of relevant work experience in lieu of a degree.
  • 3 years of experience in risk management, third-party risk management, audit, compliance, security governance, or legal services.
  • Certified Information Systems Auditor (CISA), Certified Internal Auditor (CIA), or similar certification preferred.
  • Knowledge of NIST and HITRUST standards.

Nice-to-haves

  • Possess or in the process of obtaining a relevant risk or business certification (e.g., CPA, CISM).
  • Experience in performing independent assessments, compliance reviews, and contract reviews.

Benefits

  • 401(k)
  • 401(k) matching

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service