Poslano u: Drugo u Charlotte | Posljednje obnovljeno: |
Job Description
Business Expertise Skills
Support practice, thought leadership, and people development activities firmwide
Cultivate knowledge related to a specific business challenge, issue, or deepen understanding within a sector and function domain
Share experiences related to business issues and demonstrate a capacity for knowledge transfer amongst peers and junior staff
Understanding of frameworks, including: NIST CSF v1.1 and v2.0, NIST 800-53, ISO 27001, etc.
Experience with regulatory frameworks including NYDFS 500 and FRB FFIEC
Understanding of IAM / PAM governance frameworks and policies and control frameworks
Experience with implementing Zero Trust, RBAC, authentication and authorization protocols including MFA and SSO, privileged accounts, recertification, etc.
Risk Control Framework Development: Design, implement, and continuously enhance comprehensive risk control frameworks tailored to the specific needs of the client organization(s).
Collaborate with key stakeholders to ensure alignment with business objectives and regulatory requirements.
Familiarity with RCSA (Risk and Control Self-Assessment) methodologies and execution
Risk Identification and Assessment:Conduct thorough assessments to identify operational risks across various business units and processes.
Control Implementation and Monitoring:Oversee the implementation of risk controls, including policies, procedures, and automated tools.
Establish key performance indicators (KPIs) and metrics to monitor control effectiveness and compliance with established standards.
Risk Mitigation Strategies:Develop and implement strategies to mitigate identified risks, including control enhancements, process improvements, and training initiatives.
Provide guidance and support to business units in implementing risk mitigation measures.
Regulatory Compliance: Stay abreast of regulatory requirements and industry best practices related to operational risk management and control frameworks.
Ensure that risk control practices align with relevant regulations and standards.
Regulatory familiarity with NYDFS 500 and FRB FFIEC
Risk Reporting and Communication:Prepare and disseminate regular reports on operational risk exposures, control effectiveness, and mitigation activities to senior management and relevant stakeholders.
Communicate complex risk concepts in a clear and concise manner.
Risk Culture Promotion:Foster a strong risk-aware culture within the organization by promoting the importance of risk management and control practices.
Provide training and awareness programs to employees on risk identification, assessment, and control techniques.
Nice to have: Strong understanding of NIST, ISO 27001
Consulting Skills
Client delivery as part of an on-site or remote project team
Demonstrate the capacity to plan assigned work and identify priorities/interested parties of the project/assignment, conducts regular points of progress
Present complex ideas, critical points and decisions required to team members and client contacts, including middle and top management
Manage, organize and prioritize work activities & assignments to achieve deadlines while communicating effectively with clients, internal stakeholders and leadership
Perform simple and complex research and business analysis to solve for customer business challenges/issues to present unique, tailored solutions utilizing both quantitative and qualitative data
Utilize higher-level methodological concepts to prepare client deliverables utilizing tools like PowerPoint, Excel, Access, MS Project and Visio, designing key deliverables for projects and supporting other consultants in the production of their deliverables
Collaborate with internal and client project team members, and contribute to internal communications and readiness activity within the program team and with client groups
Provide status reporting of progress, dependencies, issues, risks and overall program health
Responsible for the work streams of a complex project and takes the lead on simple projects
Maintain program sites as a repository for all project information
Business Development Skills
Write business proposals and presentations autonomously
Detect, trace, and qualify business opportunities
Relay information relevant to new business activities and prospects to manager, team, and business unit/line leaders