Lead Risk Management Analyst (Hybrid)

Resp & QualificationsPURPOSE:The Lead Risk Management Analyst provides leadership and subject matter expertise for risk mitigation and controls critical to the success of the overall organization. Specifically, the Lead Risk Management Analyst is responsible for planning and supporting the oversight of operational risk programs designed to ensure the identification and mitigation of risks; management of controls and safeguards to minimize the impact of potential and existing risks affecting the organization; compliance with laws, regulations, standards, policies/procedures, and organization frameworks; and monitoring and effectuation of remediation of issues identified.ESSENTIAL FUNCTIONS:

Partner with business owners across the enterprise to serve as the subject matter expert in the identification of issues and concerns, provide the appropriate level of support, and proactively identify risk management, control efficiency and effectiveness, and process improvement opportunities to improve the enterprise risk culture. Utilize expertise to identify and document, in a centralized risk register, evolving risks and threats pertaining to operational risks, including third party risks, and provide in-depth understanding of if, how, and when the risks/threats should be addressed. Collaborate with business owners to establish and maintain an inventory of processes, controls, process-level risks, and areas for improvement to ensure efficiency in the control and process environment across the enterprise.

Provide advisory support in the completion of divisional risk assessments, as well as govern, support, and mentor associates in the completion of third party risk assessments and control self-assessments to ensure the adequacy of controls in place to safeguard the organization, including tracking, monitoring, and managing issues identified. This will include maintaining documentation for re-performance ability, including leveraging the Governance Risk and Compliance (GRC) tool and repository (e.g., Compliance 360).

Support maintenance of the centralized repository for third party relationships including accountable business owners, inherent risk, and tier/operational criticality for each respective third party relationship. Provide support, oversight, and governance to Integrated Compliance teams to ensure compliance with the Third Party Risk Management (TPRM) framework and standards to ensure that controls in place surrounding data protection, privacy, and access (among other areas) are compliant with corporate standards and risk appetite. Facilitate due diligence on third party controls in place both corporately and with the third party, in collaboration with subject matter resources across all relevant risk domains to determine residual risk of third party relationships.

Forge relationships with business owners across the enterprise to understand issues and concerns, provide the correct level of support, and proactively identify risk management, control efficiency and effectiveness, and process improvement opportunities. Set high expectations for interacting with and providing significant influence of others, within the IRM team, as well as business owners and stakeholders across the enterprise for all audit activities, risk assessments and process improvements to support control objectives with cross-functional impacts. Support, guide, and mentor IRM staff in the completion of activities and goals for the IRM department.

Provide support, oversight, and governance to Integrated Compliance teams to ensure compliance with the established Common Compliance Framework (CCF). Support the development of enterprise reporting and dashboards for monitoring and analysis of process-level risks, controls, issues, risk management, and compliance activities.

SUPERVISORY RESPONSIBILITY:Position does not have direct reports but is expected to assist in guiding and mentoring less experienced staff. May lead a team of matrixed resources.QUALIFICATIONS:Education Level: Bachelor's Degree OR in lieu of a Bachelor's degree, an additional 4 years of relevant work experience is required in addition to the required work experience.Experience : 8 years of work experience in a risk management, third party risk management, audit, compliance, security governance or legal services role.Preferred Qualifications : Understanding of legal requirements and health insurance operations; knowledge of organization of business areas being supported; relevant risk or business certification.Knowledge, Skills and Abilities (KSAs)

Capabilities and experience in performing independent assessments, including compliance & legal reviews, contract reviews, testing controls, and developing & reviewing assessment reports.

Problem solver who works independently and within a team using interpersonal skills, including excellent oral and written communication skills.

Understands and possesses general project management skills relevant to performing assessment functions and responsibilities.

Considerable judgement, tact, initiative, accuracy, trustworthiness and integrity.

Salary Range: $88,128 - $175,032Salary Range DisclaimerThe disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the work is being performed. This compensation range is specific and considers factors such as (but not limited to) the scope and responsibilites of the position, the candidate's work experience, education/training, internal peer equity, and market and business consideration. It is not typical for an individual to be hired at the top of the range, as compensation decisions depend on each case's facts and circumstances, including but not limited to experience, internal equity, and location. In addition to your compensation, CareFirst offers a comprehensive benefits package, various incentive programs/plans, and 401k contribution programs/plans (all benefits/incentives are subject to eligibility requirements).DepartmentEnterprise Risk ManagementEqual Employment OpportunityCareFirst BlueCross BlueShield is an Equal Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veteran or disabled status, or genetic information.Where To ApplyPlease visit our website to apply: www.carefirst.com/careersFederal Disc/Physical DemandNote: The incumbent is required to immediately disclose any debarment, exclusion, or other event that makes him/her ineligible to perform work directly or indirectly on Federal health care programs.PHYSICAL DEMANDS:The associate is primarily seated while performing the duties of the position. Occasional walking or standing is required. The hands are regularly used to write, type, key and handle or feel small controls and objects. The associate must frequently talk and hear. Weights up to 25 pounds are occasionally lifted.Sponsorship in USMust be eligible to work in the U.S. without Sponsorship.#LI-LJ1REQNUMBER: 19319