Address
Form of workThe Risk Management Analyst will work within the Operational Risk Management team with responsibilities to support the ongoing execution of Business Continuity Management (BCM) and Third-Party Risk Management (TPRM) program operations. The Risk Management Analyst will help to understand, formalize, and act upon Information Technology Risk Management strategies that adhere to the adopted corporate best practices and standards of SOC 2, PCI-DSS, NIST CSF, and similar frameworks. The Risk Management Analyst will work with stakeholders to gather, track, and assess risk information within Blackbaud's managed infrastructure including the third-party ecosystem. The Risk Management Analyst will help to develop and facilitate plans that strengthen Blackbaud's ability to respond, recover, and sustain operations from various potential threats.
The Risk Management Analyst will work to advance the effectiveness of operational risk programs and proactively identify new strategies that will contribute to the successes of these programs at Blackbaud. The Risk Management Analyst will produce recurring reports that serve to identify key success factors of operations and potential gaps where risks, threats, and/or vulnerabilities may further develop.
Responsibilities:
Lead, maintain, and support Operational Risk Management program activities.
Develop, maintain, and perform cross-functional business continuity scopes of work including an annual Business Impact Analysis (BIA) assessment.
Advance maturity of BCM program by maintaining existing operations, identifying opportunities for new value-added functions, and deploying strategies to improve capabilities.
Execute inherent and residual risk assessments of third-party service engagements and for changes in services from existing engagements at time of renewal or when added services are being procured.
Ensure proper due diligence for supply chain relationships which have been terminated or have expired.
Responsible for supporting TPRM program's adherence to regulatory standards including PCI DSS, GDPR, HIPAA, TX-RAMP, and the NIST 800-53 Cybersecurity Framework (CSF).
Partner and collaborate with internal teams to understand, evaluate, and contribute to the improvement of their managed risk controls, including participation in risk committees.
Support the reduction of Blackbaud's collective risk posture by advancing program operations while mitigating identified risks, threats, and vulnerabilities.
Assist enterprise risk governance operations to ensure regulatory, legal, and contractual obligations to stakeholders are in place and operating effectively.
Prepare and present reports and metrics that demonstrate operating effectiveness of program operations in line with desired levels of future risk tolerance.
Assist in customer and auditor requests for information regarding program operations.
Continually participate in learning opportunities to advance understanding and capabilities in the field.
Meet work standards by monitoring production, productivity, and identifying work process improvements.
Requirements:
2-3 years experience in Risk, Security, or Compliance position.
2-3 years leading project operations and managing collaboration efforts internally and externally.
2-3 years experience working for a company in a regulated technology, software, healthcare, or financial services sector.
Must have experience leading project activities independently, be solution-focused and results-oriented with excellent communication skills.
Familiarity with PCI DSS, SSAE 18, ISO 27001, and NIST frameworks will be key to the success of this role.
Must be proficient in use of SaaS applications and have expertise with Microsoft Excel and PowerPoint.
Advanced skills in SharePoint, OneTrust, Teams, and PowerBI will be strongly considered.
#LI-REMOTE
Stay up to date on everything Blackbaud, follow us on Linkedin, Twitter, Instagram, Facebook and YouTube
Blackbaud is a remote-first company which embraces a flexible remote work culture. Blackbaud supports hiring and career development for all roles from the location you are in today!
Blackbaud is proud to be an equal opportunity employer and is committed to maintaining a diverse and inclusive work environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law.
To all recruitment agencies: We do not accept unsolicited agency resumes and are not responsible for any fees related to unsolicited resumes.
A notice to candidates: Recruitment Fraudulent Alert:Your personal information and online safety as a candidate mean a lot to us! At Blackbaud and our portfolio of companies, recruiters only direct candidates to apply through our official careers page athttps://careers.blackbaud.com/us/enor our official LinkedIn page. Recruiters will never request payments, ask for financial account information or sensitive information like social security numbers, or conduct interviews via Skype. Anyone suggesting otherwise is not a representative of Blackbaud. If you are unsure if a message is from Blackbaud, please emailblackbaudrecruiting@blackbaud.com.
The starting base pay is $67,400.00 to $90,700.00. Blackbaud may pay more or less based on employee qualifications, market value, Company finances, and other operational considerations.Benefits Include:
Medical, dental, and vision insurance
Remote-first workforce
401(k) program with employer match
Flexible paid time off
Generous Parental Leave
Volunteer for vacation
Opportunities to connect to build community and belonging
Pet insurance, legal and identity protection
Tuition reimbursement program
