Jobs//Hybrid//Chicago, IL//Data + Analytics//

Sr. IT Risk Management Analyst

CNA
| Chicago, IL, USA | Hybrid
Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

You have a clear vision of where your career can go. And we have the leadership to help you get there. At CNA, we strive to create a culture in which people know they matter and are part of something important, ensuring the abilities of all employees are used to their fullest potential.
CNA seeks to offer a comprehensive and competitive benefits package to our employees that helps them - and their family members - achieve their physical, financial, emotional and social wellbeing goals.
For a detailed look at CNA's benefits, check out our Candidate Guide .
The Analyst will support the Risk and Controls Governance (RCG) leadership team and business partners execute risk management activities in alignment with Risk and Controls Governance framework and IT process, risk and control (PRC) framework. The Analyst will be accountable to spearhead initiatives that enable the broader RCG strategy including technology capabilities and modernizations, methodology execution, and adoption activities. Given appropriate oversight and guidance, the Analyst will be accountable to perform first line activities such as RCG risk assessments and other risk management activities including risk identification, profiling, assessment, response, evaluation and advising the business on issues remediation.
This position requires that the applicant have a foundational or intermediate understanding of IT risks and the execution of first line IT risk management processes and governance within a large institution. The applicant must also have good communication and management skills, and strong knowledge of industry best practices.
JOB DESCRIPTION:
Essential Duties & Responsibilities
RCG Strategy and Transformation:

  • Support the implementation of the target state program based on the planned roadmap for RCG focus areas including governance, risk management methodologies, technology enablement and automation, metrics, and reporting.
  • Collaborate with the three lines of defense and other risk functions on behalf of RCG to support, enable and align the Risk and Controls Governance strategy within the broader CNA risk functions.
  • Engage stakeholders at all levels across businesses and divisions to ensure effective communication and sufficient stakeholder input and buy-in.
  • Help develop education, training, and awareness campaign materials regarding IT risks as well as critical communications to help provide clarity and adoption in support of the RCG program transformation.


RCG Operational Activities:

  • Execute Risk and Controls Governance operational activities including:
    • Risk profiling (inherent risk assessment);
    • Risk assessments for processes, applications and infrastructure;
    • Risk and scenario analysis for IT risks; and
    • Risk metrics and reporting .
  • Document and develop materials for leadership to review issues identified through RCG activities.
  • Help the business create, shepherd governance channels and monitor execution of the risk response plans in alignment with RCG methodology.
  • Act as the point of contact to assist and respond to questions from key stakeholders and the business; manage required escalations and communication.
  • Provide IT guidance and risk advisory support to key initiatives.
  • Develop materials to provide regular updates to CNA Executives on the overall health of the program including preparing necessary information to facilitate management discussion and decision making.


Qualifications

  • 3+ years of experience with IT Governance and risk functions
  • Demonstrates a willingness to learn, self-starter and strong teaming capabilities
  • Understanding of IT governance and technology risk management principles and best practices
  • Strong interpersonal skills to support stakeholder communication and engagement across businesses
  • Experience with technology process, risk and control framework
  • Required: Bachelor's degree
  • Preferred: Knowledge and skills across
    • COSO
    • ISACA Risk IT framework
    • ISACA COBIT 5.0 or 2019
    • ISO 31000-series and 27000-series, 13335
    • NIST Cybersecurity framework


#Remote
#LI-JB1
CNA is committed to providing reasonable accommodations to qualified individuals with disabilities in the recruitment process. To request an accommodation, please contact [email protected] .

Read Full Job Description
Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
By clicking Apply Now you agree to share your profile information with the hiring company.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • JavaLanguages
    • JavascriptLanguages
    • KotlinLanguages
    • PerlLanguages
    • PythonLanguages
    • RLanguages
    • SqlLanguages
    • jQueryLibraries
    • jQuery UILibraries
    • ReactLibraries
    • Node.jsFrameworks
    • SpringFrameworks
    • AccessDatabases
    • DB2Databases
    • Microsoft SQL ServerDatabases
    • MySQLDatabases
    • OracleDatabases
    • PostgreSQLDatabases
    • Google AnalyticsAnalytics
    • ConfluenceManagement
    • JIRAManagement
    • Microsoft ProjectManagement
    • SalesforceCRM
    • SendGridEmail
    • MarketoLead Gen

An Insider's view of CNA

How would you describe the company’s work-life balance?

Work-life balance has always been a priority for me. It always will be. CNA’s hybrid working model allows me to not only maximize collaboration with my peers but also take advantage of increased flexibility by combining remote and in-office work. I’m empowered to take control of my schedule based on what works best for me and my team.

Alison Massey

Agile Scrum Master Consultant

How do you collaborate with other teams in the company?

On the Security Advisory team, collaboration is key to what we do. We sit at a unique intersection of security goals and business objectives. By working across nearly every IT team at CNA, we balance the need for maintaining secure initiatives and keeping projects on track. It’s our job to find the best, secure path to ‘Yes’ for business requests.

Zach Jones

Director, Security Advisory

How has your career grown since starting at the company?

I joined CNA as a contractor and became a full-time employee after an eight-year contractor journey. I’m passionate about solving technical challenges and CNA allows me to foster that passion. Every day, I learn about emerging technologies. I’m empowered to develop, grow, and create a career that works for me and my lifestyle.

SenthilKumar Asokan

Applications Engineer Senior Specialist

How do your team's ideas influence the company's direction?

Enterprise Architecture creates foundations for IT expectations across CNA. I’m on a team that builds reusable IT assets, communicates best practices, and decides standards for tooling, and more. I influence CNA outside of my role, too, specifically through CNA’s Employee Resource Groups. I’m empowered to influence both IT and our culture of inclus

Lisa Smith

Architecture Senior Specialist

What does career growth look like on your team?

Career growth can take on many different forms at CNA, and that’s because there are always opportunities to acquire transferrable skills. On my team specifically, we’re encouraged to identify and work toward development opportunities that matter to us. We’re empowered to make a difference while advancing our careers.

Josie Lee

Director, HR Business Partner

What are CNA Perks + Benefits

CNA Benefits Overview

One of the many advantages of working at CNA is the benefits program we offer you and your eligible dependents,
beginning on the first day of your employment. The program features a variety of plans that provide health care
benefits, well-being, disability and survivor protection, and 401(k) savings, among others. Below are highlights
of the offerings.

Culture
Volunteer in local community
Partners with nonprofits
Open door policy
OKR operational model
Open office floor plan
Flexible work schedule
Remote work program
Diversity
Dedicated diversity and inclusion staff
Diversity employee resource groups
Health Insurance + Wellness
Flexible Spending Account (FSA)
Disability insurance
Dental insurance
Vision insurance
Health insurance
Life insurance
Pet insurance
Wellness programs
Mental health benefits
Financial & Retirement
401(K)
401(K) matching
Company equity
Employee stock purchase plan
Performance bonus
Charitable contribution matching
Child Care & Parental Leave
Generous parental leave
Family medical leave
Adoption Assistance
Vacation + Time Off
Generous PTO
Paid holidays
Paid sick days
Office Perks
Commuter benefits
Some meals provided
Relocation assistance
Onsite gym
Professional Development
Job training & conferences
Tuition reimbursement
Lunch and learns
Online course subscriptions available
Paid industry certifications
View full list of perks + benefits

More Jobs at CNA

Apply Now
By clicking Apply Now you agree to share your profile information with the hiring company.
By clicking Apply Now you agree to share your profile information with the hiring company.
Learn more about CNAFind similar jobs like this