Risk and Compliance Advisor Lead – Protective Security

Why USAA?

At USAA, our mission is to empower our members to achieve financial security through highly competitive products, exceptional service and trusted advice. We seek to be the #1 choice for the military community and their families.

Embrace a fulfilling career at USAA, where our core values – honesty, integrity, loyalty and service – define how we treat each other and our members. Be part of what truly makes us special and impactful.

The Opportunity

USAA's Risk and Compliance team seeks a highly skilled Risk and Compliance Advisor Lead to play a significant role in safeguarding our organization. This exciting opportunity requires a meticulous professional with a strong background in one or more of the following areas: Physical Security, Corporate Investigations, or Identity and Access Management (IAM). The ideal candidate will possess in-depth understanding of authentication methods, user lifecycle management, access control policies, access compliance regulations, internal investigations, fraud detection and prevention, and physical security standard processes and methodologies. This role provides second-line independent oversight, effective challenge, and guidance regarding business products, services, and processes through a compliance/risk framework to ensure adherence to regulatory requirements. Responsibilities include providing compliance and risk management support, identifying, measuring, monitoring, and reporting key risks, and leading risk through appropriate practices and processes to maintain acceptable exposure levels. The successful candidate will lead cross-functional efforts, collaborate with control partners across multiple business divisions or Centers of Excellence, and participate in and support internal and external audits, regulatory reviews, and rating agency requests. This is a significant opportunity to give to USAA's security and compliance posture

We offer a flexible work environment that requires an individual to be in the office 4 days per week. This position can be based in one of the following locations: San Antonio, TX, Plano, TX, Phoenix, AZ, Colorado Springs, CO, Charlotte, NC, Chesapeake, VA or Tampa, FL.

Relocation assistance is not available for this position.

What you'll do:

• Routinely communicates results of risk assessments to governance committees, business process owners and various levels of leadership and influences decision making.
• Develops processes and procedures for successful implementation of new risk policies, practices, appetites, and solutions to ensure multidisciplinary understanding and management of risks according to industry standard process.
• Identifies and seeks key partners across the enterprise to support the identification, assessment, aggregation and the overall management of risks and controls.
• Crafts key communications related to risk and compliance insights to be delivered to executives and board members.
• Implements compliance risk management activities in accordance with enterprise compliance standards.
• Maintains and expands knowledge of the competitive/regulatory landscape and the company's key challenges. Stay on top of the competitive/regulatory landscape and shares knowledge w/team members.
• Coordinates and responds to regulatory requirements and requests and ensures the execution of examinations.
• Applies knowledge to use or produce analytical material for discussions with cross functional teams to understand business objectives and influence solution strategies.
• Leads, assembles, and facilitates cross-functional teams to identify, assess, aggregate, and mitigate current and emerging risk events.
• Serves as the point of contact for senior risk leadership on projects and special management requests that often impact the enterprise or core operating area.
• Formulates and reviews stress test plans for a line of business or the enterprise

What you have:

• Bachelor’s degree or 4 additional years of related experience beyond the minimum required may be substituted in lieu of a degree.
• 8 or more years experience in risk, compliance, legal or audit within the financial services or insurance industry or technical fields directly related to the role.
• Risk and compliance management experience in a complex institution and/or highly matrixed environment.
• Expert knowledge of compliance laws, regulations, and regulatory expectations.
• Ability to apply knowledge of regulatory risk and compliance to consult and provide insights and guidance.
• Experience in conflict resolution management and ability challenge at all levels of management and influence business outcomes.
• Experience leading and advising work with internal and external partners in a highly collaborative environment.
• Critical thinking and knowledge of data analysis tools and techniques and decision-making abilities, to include ability make data-driven decisions.
• Proactively identifies potential concerns and resolve issues.
• Proficiency with Microsoft Office products including Word, Excel, and PowerPoint.

What sets you apart:

• Six years of experience in identifying, assessing, and mitigating Physical Security and Corp. Investigations (CI) risk.
• Experience providing oversight and governance of risk management activities.
• Second line of defense testing or audit experience
• Knowledge of key risk indicators (KRIs), risk appetite statements, risk and control self-assessment (RCSAs), control testing and assessments
• Track record to assess and challenge process, risk and controls, identify emerging risks and issues, analyze large bodies of risk data, and communicate results in a concise and comprehensive manner to multiple partners across the organization
• Ability to communicate across the 1st and 2nd Lines of Defense and build collaborative relationships.
• Five or more years of detailed reporting and presenting to executive leadership
• Familiarity with key risks associated with Artificial Intelligence inclusive of GenAI and large language models (LLMs)
• Physical Security (e.g., CPP, PSP, PSC) and Corp. Investigations (e.g., PCI, CFE, CCI) and Risk Management (e.g., CRISC) certification.
• Understanding of NIST 800-53, NIST 800-63, SOC2, GDPR, etc.
• US military experience through military service or a military spouse/domestic partner

Compensation range: The salary range for this position is: $143,320 - $273,930.

USAA does not provide visa sponsorship for this role. Please do not apply for this role if at any time (now or in the future) you will need immigration support (i.e., H-1B, TN, STEM OPT Training Plans, etc.).

Compensation: USAA has an effective process for assessing market data and establishing ranges to ensure we remain competitive. You are paid within the salary range based on your experience and market data of the position. The actual salary for this role may vary by location.

Employees may be eligible for pay incentives based on overall corporate and individual performance and at the discretion of the USAA Board of Directors.

The above description reflects the details considered necessary to describe the principal functions of the job and should not be construed as a detailed description of all the work requirements that may be performed in the job.

Benefits: At USAA our employees enjoy best-in-class benefits to support their physical, financial, and emotional wellness. These benefits include comprehensive medical, dental and vision plans, 401(k), pension, life insurance, parental benefits, adoption assistance, paid time off program with paid holidays plus 16 paid volunteer hours, and various wellness programs. Additionally, our career path planning and continuing education assists employees with their professional goals.

For more details on our outstanding benefits, visit our benefits page on USAAjobs.com.

Applications for this position are accepted on an ongoing basis, this posting will remain open until the position is filled. Thus, interested candidates are encouraged to apply the same day they view this posting.

USAA is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.