AVP, Risk Management

About The Position

Requirements

• Minimum 7 years' experience in risk management functions (such as audit, compliance, enterprise risk management, etc.) in a financial institution.
• Knowledge of regulations and laws, the regulatory environment, and current regulatory advocacy issues.
• Minimum 3 years’ experience working in Information Security.
• Must have familiarity with risk technology tools (e.g. GRC platforms, data visualization tools, workflow systems).
• High degree of business acumen and experience in the financial services with focus on consumer banking is required.
• Bachelor's degree in Business Administration, finance, accounting, or related field, or related field, or equivalent experience.

Nice To Haves

• Professional risk management certification strongly preferred.
• Must have experience supporting risk reviews or projects of emerging technologies, delivery channels, and third-party partnerships.
• Ability to effectively communicate technical concepts and strategies to staff, top management, business stakeholders, and external partners.
• Driven by purpose, with a genuine commitment to the Credit Union philosophy of “people helping people.”

Responsibilities

• Partner with the CAO to advance the maturity of the Enterprise Risk Management (ERM) program, including Board reporting, Risk Management Committee support, and maintenance of ERM frameworks, policies, and disclosures.
• Lead enterprise risk identification, assessment, monitoring, and reporting activities, including the development of risk controls, key risk indicators, tolerance limits, and escalation thresholds.
• Implement and optimize GRC systems and analytics to support proactive risk management, decision-making, and continuous improvement.
• Support periodic reviews of the enterprise risk appetite and align risk governance frameworks with strategic and operational objectives.
• Develop and deliver ERM training and communication to promote shared ownership of risk across the organization.
• Provide risk oversight for organizational initiatives and projects, sponsoring or leading cross-functional efforts as needed.
• Lead business continuity and resilience programs, including disaster recovery planning, crisis simulations, and enterprise preparedness.
• Oversee third-party vendor and insurance programs, including contract management, due diligence, SOC reviews, ongoing monitoring, and vendor risk governance.
• Direct vendor contract and insurance negotiations, including broker and carrier recommendations.
• Partner with the CIO and CAO to oversee the governance and maturity of the Information Security Program, ensuring alignment with business objectives and regulatory expectations.
• Oversee information security risk assessments, policy compliance, awareness training, and third-party security relationships.
• Monitor cyber threats, regulatory developments, and industry trends, advising leadership on risk implications and recommended responses.
• May serve as the Information Security Officer (ISO).
• Support the liaison process with external auditors as necessary to address audit and regulatory findings and ensure resolution with applicable stakeholders.
• Oversee BSA/AML and vendor programs to ensure that regulations are understood, and operational processes are in place to ensure compliance.
• Ensure that adequate processes for preventing, monitoring, and reporting fraudulent activity are active and functional within risk tolerances.
• Maintain awareness and inform Credit Union management of changes in federal/state legal requirements and NCUA regulations.
• Propose policy or procedure recommendations in response to changes.

Benefits

• Paid Volunteer Time
• Paid Time Off, including Sick/Vacation/Holidays
• Medical/Dental/Vision/Supplemental Benefits
• 401k Employer Match & Safe Harbor Contribution
• 457b Retirement Plan
• Company Sponsored Life & LTD Insurance
• Cell Phone Reimbursement
• Education Reimbursement
• VCCU Membership and Rate Discounts