Ensure the day-to-day implementation, oversight, continuous monitoring, and maintenance of the security configuration, practices, and procedures for each ISProvide liaison support between the system owner and other IS security personnelEnsure that selected security controls are implemented and operating as intended during all phases of the IS lifecycleEnsure that system security documentation is developed, maintained, reviewed, and updated on a continuous basis

Coordinated with TPIS line of business stakeholders to initiate, scope and plan controls assessments of new and existing suppliers.Performed assessments via conference calls, online assessments, reviewing independent audit service reports.Obtained and reviewed supplier responses and supporting documentation to validate supplier appropriate implementation of information security controls. Analyzed the information to identify information security weaknesses or non-compliance with Kemper’s policies and standards.Produce detailed documentation of assessments and perform threat analyses of gaps identified.Communicated supplier information security issues to line of business stakeholders, ensuring their understanding of associated risks and actions needed to remediate those risks.Worked to ensure that security controls are managed and maintained by line of business and IT partners in line with company policies, standards, and federal and state security and data privacy laws.Track control gaps and risks through remediation and or risk acceptance by the line of business relationship owner, recommending mitigating/compensating controls to line of business stakeholders and the supplier.Continuously monitored supplier’s security posture and information security risk through the supplier’s lifecycle with Kemper.Prepared and reviewed third party due diligence reports for management.Produced KPI and KRI metrics for management for the monthly IT operations reporting and monthly technology risk committee reporting.

• Performed sophisticated ad-hoc or ongoing custom analyses against claims to support business stakeholders• Interpret data, analyze results using statistical techniques and provide ongoing reports• Work closely with management to prioritize business and information needs• Analyze QA/ QC results, identify trends in issues, personnel, etc., and prepare monthly reports.• Make recommendations regarding remedial actions and work within the department to drive change. • Complete Quality Assurance / Quality Control testing for CORE and Default Servicing functional areas and processes. • Conduct oversight reviews of the line of business’s internal controls to ensure compliance with Regulatory, Investor and Internal requirements. • Evaluate the strengths and weaknesses of oversight controls and provide direction on opportunities for improvement. • Analyze exceptions to identify root causes, systemic errors and make recommendations to mitigate issues, where appropriate. • Keep current on all policies and processes to effectively test. • Update the policies and procedures manual to ensure compliance with company procedures and external regulators. • Demonstrate proficiency in accessing multiple systems, platforms, applications, and data repositories in various data environments. • Complete targeted reviews to ensure compliance with all applicable requirements, including but not limited to CFPB, Attorney General, and State laws and Federal regulations.

• Responsible for identifying opportunities to improve risk and compliance processes by designing and implementing a new method or tool. Initiates and plans business reviews involving definition and selection of new concepts and development of new or improved processes for areas identified as a risk, governance or operational risk issue. Addressed clients to ensure new products, services and technological developments are compatible with current processes and designs. Subject matter expert for the oversight and monitoring of our third party clients, contract management and IT risk management.• Develop and implement new assessments to allow for continuous risk, compliance and governance program monitoring• Design process that require introducing new technology, staff and substantial change to current structure• Manages project teams for various assignments as well as provides training to less experienced analyst in the department and neighboring departments • Review and test new Systems/Processes, identified gaps and training opportunities, designed and coordinated the training material for new initiatives as well as conducted the training • Evaluates the adequacy and effectiveness of department policies, procedures and processes; identified any possible compliance issues; developed a solution• Establish and maintain partnership with Information Security and Supply Chain Management to develop, execute, and/or terminate client contracts • Manage and coordinate monthly compliance reviews for the team as well as report findings and trends to senior management• Continuously develop and maintain client relationships and network internally and externally• Identify and manage Diverse Suppliers to satisfy corporate goals• Generate, maintain, and distribute periodic and ad hoc reports to upper management

• Responsible for examining and analyzing programs, processes, claims, documentation and/or files of unusual, complex and/or higher risk transactions to ensure compliance with internal company requirements and/or agency or government regulations. • Clearly communicated overall process or transaction quality and provides feedback to appropriate contacts regarding identified material deficiencies or issues including identification of inconsistencies.• Analyzed risks and offsets and develops solutions for problems identified. Provided support for exam management activities and any other initiatives as needed.• Served as Subject Matter Expert and successful in examining requirements and implementation of Wells Fargo system of audit, Decision Ready.• Successfully worked with management to identify and clear 200+ issues regarding system defects, attorney errors, etc.

• Led special projects and provided subject matter expertise. Facilitated User Acceptance Testing of related information outputs to identify and mitigate regulatory risk in business activities.• Conducted in depth analysis of HUD programs and money movement to adhere to compliance regulations.• Analyzed business and investor requirements, identified performance gaps, and developed customized solutions.• Managed and set expectations with business partners regarding project goals, scope, and resources.• Ensured that internal teams work in a timely manner, identified curtailments and reduced risk that could result in a greater loss.• Partnered with internal associates and external investors to improve effectiveness of policies, strategies, and operations.