Enterprise Risk Analyst II or III

Job Description:

Join our Team as an Enterprise Risk Analyst II or III!

As a member-focused credit union, we’re looking for new team members who have a desire to help others. Whether empowering people to reach their goals in person or behind the scenes, our employees share a commitment to creating meaningful relationships with our members and community. We’re also a fun place to work, and we offer competitive pay, professional development, and great benefits! To learn more about SELCO, view the full position description, and apply, please visit https://www.selco.org/join/careers!

We are currently looking for a either a full-time non-exempt Enterprise Risk Analyst II or a full-time exempt Enterprise Risk Analyst III to join our team!

In the Enterprise Risk Analyst II role, you will be responsible for conducting comprehensive risk and control assessments, facilitating business continuity planning (BCP) and business impact analyses (BIA), and supporting incident management processes. The Analyst works collaboratively across departments to identify vulnerabilities, evaluate mitigation strategies, and ensure preparedness for disruptive events. By leveraging data-driven insights and industry best practices, the Enterprise Risk Analyst II serves as a key contributor to SELCO’s risk management and resilience efforts, helping to safeguard operations, assets, and reputation. This role helps build a proactive risk culture and supports the continuous improvement of SELCO’s enterprise risk management framework.

In the Enterprise Risk Analyst III role, you will be a senior-level contributor within the Enterprise Risk Management (ERM) department, responsible for leading and enhancing SELCO’s risk and resilience capabilities. This role plays a strategic part in identifying, assessing, and mitigating risks across the enterprise, with a focus on strengthening internal controls, ensuring business continuity, and managing incident response processes. The Analyst III serves as a subject matter expert and trusted advisor to business units, helping to embed risk-aware thinking into operational and strategic decision-making. This role leads complex risk and control assessments, oversees business impact analyses, and coordinates enterprise-wide incident management efforts for the department.

This position will report onsite to the Corporate Headquarters location in Springfield, Oregon and is possibly eligible for a hybrid onsite and remote work arrangement for those who meet the program requirements. The successful candidate will need to be available to work Monday through Friday from 8:30am to 5:30pm.

COMPENSATION

Base Salary:

• The full salary range for the Enterprise Risk Analyst II position is $34.30 to $50.05 per hour.
• The full salary range for the Enterprise Risk Analyst III position is $6,914 to $10,096 per month. This range will be converted to semi-monthly ranges for exempt employees.

Annual Incentive: In addition, all SELCO team members receive an annual incentive based on how well SELCO meets the prior year’s strategic business goals. This incentive is calculated using the team member’s prior year eligible earnings and ranges from 0%-12% (with the average payout over the last five years being 11.07%).

BENEFITS

Our team’s well-being is a priority, and we’re proud to offer a comprehensive and holistic benefits package for team members and their families.

• Medical, dental, vision, long-term disability, and life insurance
• 401(k) retirement plan (with guaranteed employer contributions)
• Paid time off for personal and volunteer hours, as well as 10 paid holidays per year
• Additional programs and benefits include wellness and educational reimbursements, an employee assistance program, discounted rates on select SELCO services, and more.

Check out our complete benefits list here!

POSITION DETAILS

Essential Functions include (please see the position description for a comprehensive list):

Enterprise Risk Analyst II:

• Implement and refine SELCO’s risk mitigation control strategies.
• Maintain and update risk registers, risk categorization, and ensure alignment with enterprise risk tolerances.
• Maintain incident tracking systems and information and trend analysis.

Enterprise Risk Analyst III:

• Lead the development of risk appetite framework with supporting metrics and dashboard reporting capabilities.
• Oversee the execution of the Business Continuity Management (BCM) program ensuring alignment with organizational and departmental goals.
• Oversee SELCO’s business impact analysis (BIA) methodology and ensure consistency across the organization.
• Lead and facilitate department BIA meetings, continuity planning creation and updates, and tabletop exercises.

Required Skills and Abilities include (please see the position description for a comprehensive list):

• Exceptional customer service skills by using the GVAL-HI approach to providing service. Greet people. Value them. Ask how you can help. Listen. Help them. Invite them back.
• Ability to discover member needs to effectively cross-sell SELCO’s products and services.
• Effective communication and active listening skills through all methods of interaction (e.g., in person, via phone, and in writing).
• Strong computer and software skills, including Microsoft Office 365 applications.

Required Education and Experience

Enterprise Risk Analyst II

• High school diploma or equivalent; and
• Bachelor’s degree, preferably in Risk Management, Business Administration, Finance, Information Systems, or related field; and
• At least two (2) years of experience in enterprise risk management, business continuity, or incident management; and
• Certifications obtained within 12 months of hire (e.g. DRI, FEMA, ISC², ISACA, PMI, CompTIA, or similar); and
• Must be bondable.

Enterprise Risk Analyst III

• High school diploma or equivalent; and
• Bachelor’s degree in Risk Management, Business Administration, Finance, Information Systems, or related field, or equivalent experience; and
• At least three (3) years of experience in enterprise risk management, business continuity, or incident management; and
• Advanced certifications (e.g. DRI, FEMA, ISC², ISACA, PMI, CompTIA, or similar) obtained or in progress to be completed within one (1) year from hire date; and
• Must be bondable.