Finance of America logo
Finance of America

Empowering 55+ customers with modern reverse mortgage options to fund the next chapter in life. NMLS #2285

Technology Governance Analyst – Lead

Location

United States

Posted

1 day ago

Salary

$130K - $150K / year

Seniority

Senior

Bachelor Degree7 yrs expEnglishCloudCyber Security

Job Description

Technology Governance Analyst – Lead

Finance of America

• Responsible for establishing repeatable processes for identifying technologies adopted across the organization. • Assessing associated risks and onboarding technologies into operational management. • Improving visibility into the organization's technology ecosystem. • Works collaboratively with Security, IT, Enterprise Architecture, Procurement, Privacy, Legal, and business stakeholders. • Develops and implements processes that improve visibility into SaaS applications, cloud services, AI platforms, browser extensions, and other business-adopted technologies. • Analyzes telemetry from enterprise identity, endpoint, cloud, network, browser, and security platforms. • Investigates technology usage to determine business purpose, ownership, data sensitivity, regulatory considerations, operational dependencies, and associated security risks. • Partners with business stakeholders to understand technology adoption and facilitate secure onboarding into established operational processes. • Coordinates with IT and technology teams to ensure technologies are appropriately reviewed, documented, inventoried, and transitioned into operational ownership. • Establishes and maintains inventories of business applications, technology owners, integrations, data classifications, and associated risk information. • Performs technical risk assessments and recommend practical security controls and mitigation strategies that support business objectives. • Implements and optimizes capabilities supporting technology governance, technology inventory, and security posture management. • Develops automation using scripting, APIs, and workflow technologies to improve discovery, inventory synchronization, reporting, and lifecycle management. • Produces operational and executive reporting that communicates technology adoption trends, governance maturity, operational metrics, and technology risks. • Builds trusted relationships across technical and business teams to encourage secure technology adoption and effective governance. • Documents all implemented processes, workflows, and operational procedures to support long-term sustainability. • Performs other duties as assigned.

Job Requirements

  • Minimum 7 years of experience in cybersecurity, security engineering, cloud security, technology governance, technology risk, or related disciplines.
  • Demonstrated experience designing and implementing enterprise security or technology governance capabilities.
  • Experience implementing technology discovery, SaaS governance, security posture management, or comparable operational capabilities.
  • Experience building operational processes from concept through implementation and transition to steady-state operations.
  • Experience integrating enterprise platforms using APIs, scripting, automation, and workflow technologies.
  • Strong understanding of SaaS applications, cloud services, enterprise identity, modern authentication, application integrations, and technology lifecycle management.
  • Experience analyzing enterprise telemetry to identify technology adoption patterns, operational gaps, and security risks.
  • Experience developing automation using scripting languages, APIs, or workflow orchestration platforms.
  • Strong analytical, investigative, organizational, and documentation skills.
  • Excellent written and verbal communication skills, with the ability to influence stakeholders across technical and business functions.
  • Experience delivering technical projects independently within defined timelines.
  • Bachelor's Degree or comparable qualifications.
  • Certified Information Systems Security Professional (CISSP).
  • Certified Cloud Security Professional (CCSP).
  • CompTIA Security+.
  • GIAC security certifications.
  • Cloud security certifications.
  • Identity and access management certifications.
  • Equivalent industry-recognized cybersecurity certifications.

Benefits

  • Competitive benefits package

Related Categories

Related Job Pages

More Risk Jobs

Full TimeRemoteTeam 10,001+Since 2018H1B Sponsor

• Manages loss control/loss prevention activities based on the Facility risk profile and at the direction of the Market Risk Director, System Directors • Reports Risk Management issues and Claim information to the Facility/Functional Area Administrative and/or Clinical Leadership on a regular basis. • Conducts annual proactive risk assessments as part of the annual risk strategic plan; addresses and reports results, issues and associated action plans to supervising Risk Director and/or Home Office. • Timely identifies, investigates and reports to claims any events that may result in financial loss to the organization; keeps supervising Risk Director and Facility leaders apprised of events and trends. • Conducts proactive risk management surveys and studies and responsible for developing and implementing effective action plans to address risk exposures as directed by supervising Risk Director. • Implements departmental and facility policies and procedures that affect liability exposures as directed by Risk Leadership and as needed by facility. • Provides direction and oversight of risk activities within the assigned facility, and provides expert consultative services to staff at all levels.

United States
Humana logo

Vice President – Enterprise Risk Management

Humana

About Humana: Humana Inc. (NYSE: HUM) is a leading U.S. healthcare company. Through our Humana insurance services and our CenterWell healthcare services, we make it easier for the millions of people we serve to achieve their best health – delivering the care and service they need, when they need it. Equal Opportunity Employer It is the policy of Humana not to discriminate against any employee or applicant for employment because of race, color, religion, sex, sexual orientation, gender identity, national origin, age, marital status, genetic information, disability or protected veteran status.

Risk1 day ago
Full TimeRemoteTeam 10,001+Since 1961H1B Sponsor

• Lead the transformation and modernization of the ERM function, building new processes, structures, and tools aligned with enterprise objectives. • Reassess existing risk management frameworks, policies and tools to enhance visibility, agility and accountability across the organization. • Drives a strategic program that is proactive in monitoring and analyzing trends, identifying risks (threats and opportunities) and developing actionable insights or impacts to Humana’s objectives, growth and reputation. • Builds and establishes a proactive risk and resilience program that is adopted across Humana and drives value. • Champions and promotes a risk-aware culture throughout Humana, aligning Humana’s strategy with ERM’s objectives and risk appetite. • Establish an ERM roadmap, including program milestones, technology implementation, and staffing strategy. • Monitor changes in the regulatory environment and ensure the organization’s risk management practices are compliant with federal, state, industry and COSO requirements. • Enhance integrated risk reporting for executive leadership, the board and key governance committees, using dashboards, key risk indicators, and risk heat maps. • Partner closely with internal audit, compliance, legal, operational risk, IT and business partners to ensure a coordinated and risk-aware culture. • Build and manage a high-performing ERM team using a hybrid model of internal staff and the selected outsourced provider. • Collaborate closely with outsourced provider to ensure adherence to service-level agreements and performance standards. • Foster a collaborative, high-accountability environment where both internal and external staff contribute to program maturity. • Establish and lead effective enterprise risk management committee governance and reporting, providing valuable reporting and insights to the leadership team and Audit Committee. • Ensures process and tools are established to identify risk themes and effectively communicate and escalate those to leadership as applicable. • Present risk findings and recommendations to executive leadership and the Audit Committee. • Lead risk assessment activities, including risk identification, prioritization, and the establishment of risk appetite and tolerance levels. • Facilitate scenario planning sessions with key stakeholders. • Champion the development and execution of risk education and awareness programs across the enterprise to embed risk awareness into daily operations. • Develop a governance structure for approvals and oversight of new projects (transformation, systems, processes, etc.). • Lead execution of the developed governance structure to provide appropriate oversight for alignment with organizational risk tolerance and strategy.

United States
Risk1 day ago
Full TimeRemoteTeam 501-1,000H1B No Sponsor

• Conducts insurance risk management surveys on a range of moderate to complex risks • Execute risk management consultations at policyholders’ premises • Develop risk management programs recommendations based on observations • Provide quantitative/qualitative analysis with conclusions • Manage workload assignments to attain agency customer engagement activities

North Carolina
Risk1 day ago
Full TimeRemoteTeam 10,001+Since 1956H1B Sponsor

• Lead the development, facilitation, and maintenance of study risk assessments, ensuring alignment with ICH E6(R3), RBQM principles, and Thermo Fisher quality standards. • Facilitate cross-functional risk assessment workshops to identify Critical-to-Quality (CtQ) factors, study risks, controls, and mitigation strategies throughout the clinical trial lifecycle. • Review study protocols, monitoring plans, Central Monitoring Plans (CMPs), and other key study documents to ensure risks are appropriately identified, assessed, and mitigated. • Continuously evaluate the effectiveness of risk controls and mitigation strategies through ongoing risk reviews, data analysis, and centralized monitoring outputs. • Lead periodic risk review meetings with study teams, documenting outcomes, action plans, and escalating significant risks when appropriate. • Partner with Clinical Operations, Data Management, Biostatistics, Medical Monitoring, Pharmacovigilance, and other functional areas to integrate risk management into study execution. • Represent the Risk Management function during study startup activities, including project launch meetings, Kick-Off Meetings (KOMs). • Collaborate with project leadership to develop study-specific RBQM strategies that align with protocol requirements and client expectations. • Coordinate risk management deliverables and timelines to support successful study startup and execution. • Monitor the execution of risk management activities to ensure delivery within quality, timeline, and budget expectations. • Escalate emerging risks, quality concerns, and operational issues to project leadership as appropriate. • Serve as the primary RBQM subject matter expert for assigned studies and provide consultation to study teams on risk management best practices. • Develop strong partnerships with internal functional teams and clients to promote proactive risk management and quality-focused decision making. • Represent the Risk Management function during client meetings, governance meetings, audits, inspections, and business development activities as needed. • Utilize centralized monitoring outputs, Key Risk Indicators (KRIs), Quality Tolerance Limits (QTLs), and data analytics to identify emerging risks and support risk-based decision making. • Interpret data trends and quality signals to evaluate study performance and recommend appropriate actions. • Contribute to departmental initiatives related to process improvement, quality enhancement, RBQM methodology, analytics, and technology development. • Support the development, implementation, and maintenance of RBQM standards, procedures, guidance documents, and training materials. • Provide guidance and expertise to study teams on RBQM processes, risk assessment methodology, and the application of risk management tools to support consistent execution across studies.

United Kingdom