Identify, assess, and monitor operational, financial, reputational, and strategic risks across the organization.
Develop, implement, and update risk management policies, procedures, and mitigation plans to ensure risks are managed within the organization’s risk appetite.
Collaborate with all departments to understand and address their specific risks, and provide guidance on mitigation measures.
Maintain and support the Risk and Resiliency (R&R) tool, including integration with ancillary systems.
Lead training, communication, and awareness initiatives to build risk management capability across the firm.
Create, update, and maintain risk documentation, including policies, standards, guidelines, process flows, the PRC library, and Risk Register.
Ensure accurate Risk and Control Self-Assessments (RCSA), conduct control reviews for projects, business changes, third parties, and health checks, and evaluate the effectiveness of control programs.
Conduct internal governance reviews, support audits, and partner with business managers to document and remediate risks.
Identify and implement process improvements to strengthen controls, improve efficiency, and drive cost savings.
Stay informed of industry trends and regulatory changes in risk management.
Develop and present risk reports, KPIs, and KRIs for management and board review; engage management on recommended actions.
Support Incident Response & Management efforts by identifying risks, providing metrics, and assisting as needed.

Requirements

Completed Bachelor’s Degree in Computer Science or a related field, or relevant work experience required
5+ years of Risk Management experience with a strong understanding of operational risk and business process improvement methods
5+ years of Project Management experience
2+ years of experience in Business Continuity and Incident Management experience
Knowledge and experience with Risk Management, Business Continuity Management and Information Technology standards and best practices, including governance frameworks (ISO 31000, 27001, 22301, NIST, ITIL, etc.)
Experienced with GRC Risk Management tools, and related interfaces (ServiceNow is a Plus)
Proficient computer skills required, experience using Microsoft applications (Word, Excel, PowerPoint, Project, Visio, and Outlook)
Willingness to travel up to 25% of the time to engage with internal business units and conduct vendor assessments
Certification: CRM/PRM

Benefits

Health, wellness, and financial benefits to offer peace of mind to you and your family.
Continuous professional growth and leadership opportunities.
World-class facilities and the technology you need to thrive – in our offices or yours.

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

Risk ManagementOperational RiskBusiness Process ImprovementProject ManagementBusiness Continuity ManagementIncident ManagementRisk Control Self-AssessmentsProcess ImprovementGovernance FrameworksRisk Documentation

Soft Skills

CollaborationCommunicationTrainingLeadershipAnalytical ThinkingProblem SolvingOrganizational SkillsAttention to DetailAdaptabilityStakeholder Engagement

Certifications

CRMPRM