Job Description

As the Support Lead for Desktop Risk Mitigation, the expectation is to provide day-to-day support related to desktop risk mitigation activities and operational and technical guidance for the team. You will promote leadership efforts, act as the intermediary for the team, and serve as a subject matter expert for critical issues. In addition, you will assist in ensuring objectives are met promptly, maintaining operational stability, tracking performance & development metrics, and focusing on risk and vulnerability management.

Navy Federal provides much more than a job. We provide a meaningful career experience, including a culture that is energized, engaged and committed; and fierce appreciation for our teams, who are rewarded with highly competitive pay and generous benefits and perks.

Our approach to careers is simple yet powerful: Make our mission your passion.

• Best Companies for Latinos to Work for 2024
• Computerworld® Best Places to Work in IT
• Forbes® 2025 America’s Best Large Employers
• Forbes® 2024 America's Best Employers for New Grads
• Forbes® 2024 America's Best Employers for Tech Workers
• Fortune Best Workplaces for Millennials™ 2024   
• Fortune Best Workplaces for Women ™ 2024
• Fortune 100 Best Companies to Work For® 2024
• Military Times 2024 Best for Vets Employers
• Newsweek Most Loved Workplaces
• 2024 PEOPLE® Companies That Care
• RippleMatch Recruiting Choice Award
• Yello and WayUp Top 100 Internship Programs

From Fortune. ©2024 Fortune Media IP Limited. All rights reserved. Used under license. Fortune and Fortune Media IP Limited are not affiliated with, and do not endorse products or services of, Navy Federal Credit Union.

Equal Employment Opportunity: All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected Veteran.

Hybrid Workplace: Navy Federal Credit Union is a hybrid workplace, and details will be discussed during your interview process.

Disclaimers: Navy Federal reserves the right to fill this role at a higher/lower grade level based on business need. An assessment may be required to compete for this position. Job postings are subject to close early or extend out longer than the anticipated closing date at the hiring team’s discretion based on qualified applicant volume. Navy Federal Credit Union assesses market data to establish salary ranges that enable us to remain competitive. You are paid within the salary range, based on your experience, location and market position.

Bank Secrecy Act: Remains cognizant of and adheres to Navy Federal policies and procedures, and regulations pertaining to the Bank Secrecy Act.

• Bachelor’s degree in Cyber Security Engineering, Risk Management, Information Technology or related field, or the equivalent combination of education, training, and experience
• Two years experience with ServiceNow Vulnerability Response, ServiceNow Issue Management, and Tenable Nessus
• Five years experience with SharePoint, Microsoft Word, Microsoft Excel, Power BI, MECM (Microsoft Endpoint Configuration Manager), Defender for Endpoint, and other Microsoft-owned applications
• Three years experience in leading and guiding professional staff, with the ability to coordinate and set team priorities for multiple efforts to achieve goals and objectives
• Three years experience in project coordination, user testing, & meeting facilitation, overseeing process execution
• Strong experience in MS Excel pivot tables, data analytics, evaluating team productivity and performance metrics, ServiceNow dashboards, and other related tools and reporting
• Familiarity with development and operations framework methodologies, including Information Technology Infrastructure Library (ITIL), Systems Development Life Cycle (SDLC), etc
• Excellent written and verbal communication skills, especially experience with executive-level communications
• Advanced experience working with all levels of staff, management, stakeholders, and vendors
• Advanced exposure and experience in developing action plans and presenting recommendations to management for security posture and risk and compliance strategies
• Advanced experience with audit and risk management; ability to review assessments and establish mitigations

Desired Qualifications 

• Familiarity with Jamf and MacOS systems
• Demonstrated experience in vulnerability management and patch management methodologies and tools
• Experience leading security teams
• Master’s degree in Cyber Security Engineering, Risk Management, Information Technology, or a related field
• CISSP or GIAC certification(s)

Hours: Monday - Friday, 8:00AM - 4:30PM

Location: 820 Follin Lane, Vienna, VA 22180

• Delegate tasks/ prioritize assignments for team members
• Provide technical guidance to team members on vulnerability and non-vulnerability related issues
• Oversee daily operations, vulnerability remediation efforts, and DRM project timelines
• Deliver regular updates for priority items to leadership; develop executive-level reporting
• Collaborate between departments, stakeholders, and management in benefit of DRM remediation efforts
• Provide support to address concerns and escalations related to Desktop Risk Mitigation
• Recommend, develop, and maintain accurate documentation for supported environments, technology, and strategy
• Assist in developing key performance indicators; track data and write reports on team objectives
• Develop metrics and reporting; perform data analytics and trend analysis to measure performance and identify improvement opportunities
• Identify and drive service improvement opportunities
• Oversee technical adherence to organizational directives, standards, and instructions relating to systems under management
• Provide effective and efficient feedback for allocating staff resources to service projects and daily work efforts by scoping out the level of effort, length, and duration
• Ensure compliance with Navy Federal Credit Union Information Security and ETS standards and best practices
• Perform root cause analysis to identify and resolve recurring technical problems
• Lead, guide, and mentor less experienced staff
• Assist with life–cycle development
  • Establish and oversee project teams 
  • Develop a project plan (including scope, scheduling, costs, and communications) 
  • Manage resources, timelines, deadlines 
  • Assist with Vulnerability (Risk), Issue, and Change management 
  • Ensure successful project implementation
• Assist management staff in executing strategic goals, projects, and programs
• Perform other duties as assigned