Risk Analyst at Pavago

About the Role:

• Our client is seeking a Risk Analyst / Risk Manager to identify, assess, and mitigate financial, operational, and compliance risks across the organization. This role is responsible for developing risk models, monitoring exposures, ensuring regulatory compliance, and presenting actionable insights to leadership. The Risk Analyst ensures that businesses can operate confidently while minimizing exposure to financial loss, regulatory penalties, and reputational damage.

Responsibilities:

Risk Identification & Assessment:

• Conduct enterprise-wide risk assessments covering credit, market, operational, and compliance categories.
• Document findings in risk registers and prioritize remediation.

Modeling & Quantitative Analysis:

• Build models in SAS, R, or Python to measure risk exposures.
• Perform stress testing and scenario modeling (e.g., interest rate shocks, market downturns).
• Use VaR, Monte Carlo, or regression methods to quantify potential losses.

Compliance & Regulatory Reporting:

• Monitor adherence to frameworks such as SOX, Basel III, Dodd-Frank, PCI-DSS, GDPR, or HIPAA (depending on industry).
• Prepare quarterly/annual risk and compliance reports for regulators or auditors.
• Support external audits and regulatory exams with required documentation.

Controls & Monitoring:

• Test and validate the effectiveness of internal controls.
• Track incidents in governance/risk platforms (Archer GRC, ServiceNow, LogicManager).
• Partner with IT/security on cyber risk reviews and vendor risk assessments.

Reporting & Communication:

• Prepare dashboards and reports in Tableau, Power BI, or Looker to summarize exposures.
• Present risk findings and recommendations to executives and boards.
• Maintain clear documentation for audit trails and governance committees.

Collaboration:

• Work cross-functionally with finance, operations, IT, legal, and compliance teams.
• Support business units in embedding risk awareness into daily decisions.

What Makes You a Perfect Fit:

• Analytical, detail-oriented, and comfortable with quantitative modeling.
• Excellent communicator who can distill complex risk concepts into plain language.
• Confident managing multiple risk categories under tight timelines.
• Proactive in identifying risks before they escalate into issues.

Required Experience & Skills (Minimum):

• 3+ years in risk analysis, risk management, compliance, or audit.
• Proficiency in SQL and Excel for data manipulation and reporting.
• Hands-on experience with at least one GRC or risk platform (Archer, ServiceNow, LogicManager).
• Knowledge of risk frameworks and regulatory requirements relevant to the client’s industry.

Ideal Experience & Skills:

• Professional certifications such as FRM (Financial Risk Manager), CFA, CPA, or CCEP.
• Familiarity with financial risk models (VaR, stress testing) and operational risk methodologies.
• Experience in financial services, SaaS, healthcare, or other regulated industries.
• Background supporting board-level risk reporting

What Does a Typical Day Look Like?

A Risk Analyst / Manager’s day revolves around measuring exposures, monitoring risks, and advising leadership.You will:

• Start by reviewing dashboards for anomalies in financial, operational, or compliance data.
• Run models and stress tests to quantify exposures and validate assumptions.
• Update the risk register with new findings, logging incidents or emerging risks.
• Collaborate with business units to implement or test controls.
• Prepare and deliver reports to executives or compliance committees.
• Document and track remediation actions, ensuring accountability across teams.
• In essence: you act as the early-warning system of the business, ensuring risks are identified, quantified, and mitigated before they can cause material harm.

Key Metrics for Success (KPIs):

• Timeliness and accuracy of risk reports.
• % of controls tested and validated on schedule.
• Number of incidents detected early vs. escalated late.
• Zero missed regulatory deadlines or penalties.
• Positive executive and auditor feedback on reporting quality.