Sr Compliance Analyst

This is a grade range posting 15/16. Your background and qualifications will be evaluated against the skills and experiences required for the position.

Risk is everywhere — and so is the opportunity to get ahead of it. As a Senior Risk & Control Self-Assessment (RCSA) Analyst on the Product Compliance & Quality team, you'll be at the center of how this organization identifies, manages, and reduces risk. Working across Global Retail Markets, you'll partner with business stakeholders to identify areas of risk through formal risk assessments, surface known issues through structured issue management, and address findings raised by internal audit and external regulators. At the heart of this role is control work — you'll evaluate existing controls for gaps and weaknesses, collaborate with business partners to design and implement stronger control solutions, and coordinate with the control testing function to ensure controls are operating effectively. This is not a behind-the-scenes role. You'll present findings and recommendations directly to senior leadership, drive meaningful remediation, and have a real, measurable impact on the organization's risk posture. If you are passionate about risk and controls, energized by solving problems at their root, and excited about using data analytics and AI to modernize how we work — this is the role for you.

Ideal Candidate:

The ideal candidate is an experienced risk and controls professional with a strong foundation in risk assessment, control design, and control implementation.

• Experience in the insurance industry is a strong plus, and familiarity with Committee of Sponsoring Organizations (COSO) frameworks, second line of defense functions, or internal audit collaboration will set you apart.
• You have hands-on experience evaluating risks, identifying control gaps, and working side-by-side with business stakeholders to build and strengthen controls that work.
• You are a natural project coordinator — able to manage multiple workstreams, keep stakeholders aligned, and drive initiatives through to completion without losing momentum.
• You are genuinely curious, asking the right questions to get to the root cause of an issue rather than accepting surface-level answers, and you are tenacious in your pursuit of solutions that mitigate risk to a tolerable level.
• You are equally comfortable engaging a front-line business partner as you are presenting a risk topic to senior leadership — and you communicate complex risk concepts with clarity and confidence in both settings.
• You provide regular, structured updates in one-on-ones and are prepared to present findings and recommendations in leadership meetings.
• A forward-thinking mindset — including an interest in how AI and data analytics can modernize risk management — rounds out the ideal profile.

Responsibilities

• Operate the organization's RCSA program, applying the COSO framework and established enterprise methodology across assigned business units and processes.
• Independently perform complex risk assessments, including risk and control inventories, process documentation, process flows, and risk scoring.
• Collaborate on control testing to evaluate the design adequacy and operating effectiveness of key controls, documenting results and findings in accordance with program standards.
• Facilitate risk and control workshops, projects and discussions with business owners to identify, assess, and document risks and associated controls in alignment with enterprise risk program requirements.
• Analyze the root cause of identified issues and partner with business stakeholders to design and implement control solutions that prevent recurrence.
• Drive Issue Management activities for identified control gaps and failures, including corrective action planning, remediation tracking, action plan management, and control implementation.
• Collaborate with Global Internal Audit (GIA) and action plan owners to remediate and close audit findings through targeted control work, ensuring timely and sustainable resolution.
• Lead control-related projects from initiation through completion, coordinating across business units and geographies to ensure timely and high-quality delivery.
• Present risk topics and control recommendations to senior leadership, clearly articulating risk gaps and providing actionable, business-aligned recommendations for closure.
• Develop and deliver reporting and Key Risk Indicators (KRIs) to monitor risk trends, track remediation progress, and inform governance committees and stakeholders.
• Identify and champion opportunities to leverage AI tools and automation to streamline RCSA processes, enhance control testing efficiency, and improve the quality and speed of risk reporting.
• Apply innovative thinking to continuously evaluate and modernize program methodologies, including the use of data analytics and AI-driven insights to identify emerging risks and control weaknesses.
• Consult with product management, underwriting, distribution, and claims management to keep stakeholders informed of emerging risks, control changes, and program developments.
• Respond to risk-related inquiries from across the organization, providing clear guidance and subject matter expertise on risk, controls, and regulatory requirements.