2025-06-24
United Bank
Other
/yr
employee
contract
Chantilly
Virginia
20151
United States
United Bank
United Bank is an Equal Opportunity employer. Applicants and employees are considered for positions and are evaluated without regard to mental or physical disability, race, color, religion, gender, national origin, age, genetic information, military or veteran status, sexual orientation, marital status, gender identity, or any other protected Federal, State/Province or Local status unrelated to the performance of the work involved.
Governance/Risk Compliance Analyst
Date: Jun 23, 2025
Location: Chantilly, VA, US, 20151
Company: United Bank
JOB SUMMARY:
The GRC (Governance/Risk/Compliance) Analyst is responsible for leveraging expert level knowledge of the business, complex processes, and regulations in support of the effective implementation of Information Security’s Governance, Risk, Compliance (GRC) program. The Analyst will primarily serve as the liaison between the IT organization (Information Security, Technical Services and Project Management) and internal/external auditors and examiners and will be responsible for coordination of all audit/exam activities including remediation activities.
RESPONSIBILITIES:
• Utilize broad expertise and knowledge in Information Security or Information Technology to lead and execute project assignments related to policy and procedure development, compliance testing, process analyses, gap identification, and remediation of deficiencies.
• Act as the central point of contact for all Internal and External Audits or Examinations pertaining to Information Security, Technical Services and Project Management; coordinating efforts to ensure the necessary documentation is provided in a timely manner, completing responses to findings/exceptions, and developing action plans to correct findings/exceptions.
• Interface with IT teams, Internal audit, External auditors, Bank Examiners to communicate, remediate, or mitigate areas of risk, as needed.
• Monitor and report on open audit/exam items remedial activities defined in the agreed action plans and risk treatment plans.
• Contribute to the development of procedures and business processes that meet corporate standards and instruct business personnel in their use. Track compliance, evaluate results, and present best practice solutions to any issues that are identified.
• Evaluate new policies and procedures for operational and control impacts and governance, risk and compliance standards. May develop risk and operational reporting.
SKILLS/QUALIFICATIONS:
• High School diploma or equivalent required.
• Minimum of three (3) years equivalent work experience in Financial Services (Operational, IT, Security and/or Audit areas) required.
• Bachelor’s degree highly desired.
• Experience within Audit or Risk Management areas highly desired.
• Knowledge of laws and regulations related to Information Security required.
• Excellent interpersonal skills and the ability to relate to internal and external contacts required.
• Knowledge of various technologies, applications, databases, operating systems, Firewalls, Networks, and others relevant to cybersecurity, as well as cybersecurity principles and practices is required.
• Familiarity with general IT processes and common frameworks including NIST Cybersecurity Framework, SOX, CIS and data privacy related requirements is required.
KEY COMPETENCIES:
• Accountability
• Quality focused
• Communication Proficiency
• Working Collaboratively
Essential Functions:
• Sitting for extended periods of time.
• Ability to efficiently operate a computer keyboard, mouse and other computer components.
• Ability to converse and exchange information with all levels of staff within organization.
• Ability to observe, perceive, identify, and translate data
PI274179379
