Operations Risk Analyst IV - Cyber Risk

  • Company: Fannie Mae
  • Location: Washington, District of Columbia
  • Posted: December 13, 2017
  • Reference ID: 52263
THE COMPANY

Are you interested in helping solve today's most critical housing challenges? In simplest terms, Fannie Mae serves the people who house America. We work at the heart of housing by providing reliable, affordable mortgage financing in all markets at all times, buying loans that banks and other lenders originate, so they can fund new loans. This gives more people the opportunity to buy, refinance, or rent homes and apartments. Creating these opportunities is what drives the people who work at Fannie Mae.

For more information about Fannie Mae, visit http://www.fanniemae.com/progress

JOB INFORMATION

Identify, measure, and monitor the company's operational risk in how its transactions and infrastructure function. Assess risks from unauthorized trading, software or hardware failures, lack of oversight of operations, or contingencies that would prompt disaster recovery programs. Assess threats to data integrity and security of networks and the consequences of failures or breaches. Recommend or implement risk mitigation strategies or practices.

KEY JOB FUNCTIONS

  • Study and review business processes in assigned business unit; examine documentation and flow of work through systems.
  • Confer with business unit staff on business problems or the execution of unusual transactions. Coordinate across business and corporate units, and with customers in ensuring that these less common transactions or exchanges are executed appropriately.
  • Where required by internal policies or external agencies, develop documentation of business processes and safeguards. May prepare reports for inclusion in larger mandated report(s).
  • Plan and facilitate presentations and workshop sessions on process analysis, risk identification, assessment, control and mitigation. May use formal process improvement methodologies to assess and improve operating procedures in work unit(s).
  • Confer with business unit management and staff by scoping business problems, analyzing processes, losses and risk exposure and sharing lessons learned. Identify key problem drivers, and reinforce operational procedures with appropriate internal controls.
  • As needed, participate in or play technical lead in disaster recovery effort.
  • Measure and analyze performance improvement results in a business or corporate unit. Support overall IT control practices, and remediation action plan execution, and integration and systems development life cycle testing and systems certification.

Qualifications:
EDUCATION
  • Bachelor's Degree or equivalent required

MINIMUM EXPERIENCE
  • 6 years of related experience

SPECIALIZED KNOWLEDGE & SKILLS
  • Must have experience in oversight, compliance or assessment of information security and cyber risk
  • IT Operational risk experience in the second line of defence role or risk and control experience within the IT department
  • Working knowledge of IT risk management frameworks (e.g. CobIT, NIST)
  • CISA or CISM certification
  • CISSP certification a plus


EMPLOYMENT

As a condition of employment with Fannie Mae, any successful job applicant will be required to pass a pre-employment drug screen and to successfully complete a background investigation.

Fannie Mae is an Equal Opportunity Employer.

Share this Job