Senior Risk Management Analyst

Description

Leads and partners with business units to evaluate and strengthen the control environment through control testing and risk assessment activities. Serves as a subject matter expert in control design and effectiveness, performing and overseeing testing to ensure controls are well designed and aligned to risk exposure. Leads RCSA execution by facilitating risk identification, assessment, and control alignment, ensuring risks are accurately captured and supported. Incorporates control testing results as one of multiple inputs into risk evaluations, applying effective challenge to ensure risk ratings are appropriately supported. Provides actionable insights to stakeholders and contributes to the enhancement of ERM frameworks, methodologies, and reporting, while addressing control gaps, emerging risks, and process improvements.

LOCATION

Mountain America Center - Hybrid:

9800 S Monroe St
Sandy, UT 84070

SCHEDULE

Full time

To be effective, an individual must be able to perform each job duty successfully.

Control Testing Leadership and SME

Leads the design, execution, and oversight of control testing across the enterprise
Acts as a subject matter expert on control design, effectiveness, and testing methodologies
Evaluates control design and operating effectiveness, identifying gaps and recommending improvements
Drives consistency in control testing standards, documentation, and quality expectations
Provides guidance and effective challenge to business units and analysts on control effectiveness and testing outcomes

Risk Assessment and ERM Integration

Partners with business units to support risk assessments, ensuring alignment between risks and key controls
Apply effective challenge to ensure risk ratings are supported by control performance, issues, and other relevant indicators
Contributes to ERM program enhancements, including methodology, taxonomy, and reporting
Analyzes risk and control data to identify trends, themes, and emerging risks

Stakeholder Influence and Governance

Engages and influences stakeholders to strengthen control environments and risk management practices
Applies independent judgment to assess control effectiveness and escalate issues where appropriate
Supports adherence to regulatory requirements and internal policies related to controls and risk management
Identifies gaps and drives continuous improvement in control testing practices and governance standards

KNOWLEDGE, SKILLS, and ABILITIES

The requirements listed are representative of the knowledge, skills, and/or abilities required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential job functions.

Education and Experience

4+ years related experience in risk, compliance, or internal audit, including RCSA and control testing
Bachelor’s degree in business administration, finance, risk management, information technology, or equivalent experience
Experience with GRC tools such as Archer preferred
Experience leading testing, reviewing, and challenging control environments and risk assessments

Licenses, Certifications, Registrations

Relevant professional certifications (e.g., CRCM, CIA) preferred but not required.

Knowledge & Skills

Advanced knowledge of control testing methodologies, control design, and effectiveness evaluation
Strong working knowledge of RCSA, ERM frameworks, and three lines of defense, with ability to connect control outcomes to risk exposure
Ability to apply risk management principles to complex and ambiguous scenarios
Proficiency with data analysis, reporting tools, and GRC platforms such as Archer
Strong skills in Excel, Word, PowerPoint, and AI tools such as Copilot to drive efficiency and insight generation
Strong analytical, problem solving, and critical thinking capabilities
Excellent written and verbal communication skills with the ability to translate complex risk concepts into clear business insights

Leadership and Organization Development

Serves as a control testing SME, providing guidance and mentorship to analysts and stakeholders
Leads onboarding and ongoing education related to control testing standards, practices, and tools
Builds strong partnerships across business units to strengthen control environments and risk awareness
Contributes to team effectiveness, knowledge sharing, and capability development
Promotes accountability, quality, and continuous improvement

Scope and Strategic Impact

Leads control testing activities and establishes consistency in execution, documentation, and quality standards
Influences how control effectiveness is evaluated and incorporated into risk assessments and reporting
Identifies control weaknesses, systemic issues, and thematic risks, driving actionable improvements
Contributes to the enhancement of ERM frameworks, including control standards, testing methodologies, and reporting practices
Serves as a key advisor to stakeholders on control related decisions and remediation strategies
Ensures strong data integrity and traceability across control testing and issue management processes