DescriptionSalary Range: $110,000.00 - $120,000.00Exact compensation may vary based on skill and experience.
POSITION PURPOSEThis position is responsible for supporting SAFE's Enterprise Risk Office. This position will be responsible for supporting the development, implementation, execution, and management of key programs the Enterprise Risk Management program, Business Continuity Management, Information Assurance, and Vendor Risk Management.
ESSENTIAL FUNCTIONS AND BASIC DUTIESEnterprise Risk Management- Support the development and execution of a comprehensive Enterprise Risk Management (ERM) program aligned with SAFE's goals and risk appetite.
- Assist in developing and refining ERM frameworks, methodologies, and tools to identify, assess, and mitigate risks across the enterprise.
- Provide support in establishing and monitoring the risk appetite framework, ensuring its integration into strategic planning and decision-making processes. Execute activities related to the risk appetite framework, including tracking risk levels, assessing exposures, and implementing risk mitigation strategies.
- Collaborate with line-of-business teams and support functions to integrate the ERM operating framework throughout the organization.
- Help develop ERM education materials to promote a risk-aware culture, educating SAFE employees about the importance of risk management and their roles in the process.
- Assist in developing standardized metrics and reporting systems to enable continuous monitoring of program goals.
- Support the implementation of a comprehensive Key Risk Indicator (KRI) framework, including identifying and defining critical indicators to monitor and assess organizational risks.
Business Continuity Management - Assist in the coordination of annual vendor management review process.
- Complete other duties and special projects, assigned.
- Assist in maintaining an effective business continuity program and assess the maturity levels of the program against goals.
- Facilitate and coordinate the completion of the Business Impact Analysis review process.
- Participate in developing and providing business continuity management awareness education to business partners.
- Participate in the creation, coordination, facilitation, and communication of business continuity exercises, including but not limited to table-top exercises, simulation testing, and full-scale exercises.
- Assist in evaluating the effectiveness of the disaster recovery planning and testing.
- Manage and Control SAFE's business continuity software.
Vendor Risk Management- Assist with third-party risk assessments and due diligence reviews for new and existing vendors, including evaluation of financial, operational, cybersecurity, compliance, and reputational risks
- Monitor vendor risk profiles and coordinate periodic reviews to ensure ongoing compliance with organizational policies, regulatory requirements, and risk appetite
- Analyze vendor documentation, including SOC reports, financial statements, business continuity plans, information security questionnaires, and insurance coverage
- Track and report third-party risk metrics, KRIs, assessment results, and remediation activities to management and risk committees
- Partner with business units, and Contract Administrator, Info Sec, Compliance, and other teams to identify, assess, mitigate and monitor third-party risks throughout the vendor lifecycle
- Support compliance with applicable regulatory guidance related to vendor management and third-party oversight, including NCUA requirements, by facilitating risk assessments, contract reviews, and documentation retention.
QUALIFICATIONSExperience Required:Candidates should possess 3-5 years of relevant experience, or alternatively, equivalent education or risk management certification may be considered in lieu of experience.
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodation may be made to enable individuals with disabilities to perform the essential functions.
Required Knowledge:At least two years in a financial institution environment preferred.
Skills/Abilities:- Excellent verbal and written communication skills.
- Excellent interpersonal, communication, and leadership skills, as success in this position depends on building rapport and credibility with multiple stakeholders across the organization.
- Superior critical thinking and analytical skills.
- Ability to research and interpret a variety of professional standards and regulatory guidelines for enterprise risk management areas.
- Knowledgeable in major areas of credit union operations, and of the three lines of defense model, risk management principles, and Enterprise Risk Management (ERM) frameworks.
- Ability to work independently, as well as part of department and project teams.
- Must have strong prioritization skills and be able to multitask.
- Proficient Excel skills.
WORK ENVIRONMENT/PHYSICAL DEMANDS SUMMARYLANGUAGE SKILLS- Excellent communication skills (verbal, written, listening skills, and empathy).
- Expert ability to build relationships with other leaders, business partners, and stakeholders.
- Ability to write reports, business correspondence, and procedure manuals.
- Ability to effectively present information and respond to questions from groups of managers.
MATHEMATICAL SKILLS AND REASONING ABILITY - Ability to interpret a variety of instructions furnished in written, oral, or schedule form.
- Ability to solve practical problems and deal with a variety of concrete variables in situations where only limited standardization exists.
PHYSICAL DEMANDS AND WORK ENVIRONMENTThe physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job.
- While performing the duties of this job, the employee is regularly required to sit and talk or hear, and use hands to finger, handle, or feel objects, tools, or controls.
- The employee is occasionally required to stand; walk; reach with hands and arms; and stoop, kneel, crouch, or crawl.
- The employee must occasionally lift and/or move up to 10 pounds.
- Specific vision abilities required by this job include close vision.
- The noise level in the work environment is usually moderate.
INTENT AND FUNCTION OF JOB DESCRIPTIONSThis is not necessarily an all-inclusive list of job-related responsibilities, duties, skills, efforts, requirements or working conditions. All descriptions have been reviewed to ensure that only essential functions and basic duties have been included. Peripheral tasks, only incidentally related to each position, have been excluded. Requirements, skills, and abilities included have been determined to be the minimal standards required to successfully perform the positions. While this is intended to be an accurate reflection of the current job, management reserves the right to revise the job or to require that other or different tasks be performed as assigned.