Business Resilience Program Manager

About The Position

Requirements

• Bachelor’s degree in business, risk management, emergency management, IT, Cyber Security or related field.
• 7+ years of experience in business continuity, disaster recovery, operational resilience, or crisis management; 3–5 years in a program leadership role.
• Experience designing and managing enterprise BCDR programs (BIA, BCP, DR, exercises, compliance).
• Experience in financial services, insurance, or other regulated industries.
• Ability to lead cross‑functional initiatives and influence without formal authority.
• Experience partnering with IT, Cybersecurity, Facilities, ERM, and Vendor Management.
• Strong project management skills and ability to manage multiple priorities.
• Excellent communication skills, including presenting to senior leadership.
• Strong analytical and decision‑making skills under pressure.
• Comfort with both business and technical concepts; experience working with IT and Cybersecurity teams.
• Experience with BCDR or GRC platforms.
• Prior experience leading or managing a BCDR function.

Nice To Haves

• Professional certifications (CBCP, MBCI, ABCP, ISO 22301 Lead Implementer/Auditor).
• Graduate degree (MBA, MS in Risk Management, Emergency Management, etc.).
• Familiarity with insurance operations (claims, underwriting, policyholder services).
• Knowledge of NAIC model laws and insurance regulatory environments.
• Experience with project management methodologies (PMP or Agile).

Responsibilities

• Design, implement, and maintain a risk‑based BCDR program covering business continuity, IT disaster recovery, crisis management, and operational resilience.
• Establish governance, policies, standards, and metrics aligned with ISO 22301, NFPA 1600, ISO 27001, NIST CSF, NYDFS 500.11, and insurance regulatory requirements.
• Provide direction and support to Business Continuity Coordinators across business units.
• Lead a recurring Business Impact Analysis (BIA) process to identify critical operations, RTOs, RPOs, and maximum tolerable downtime that is aligned to the corporate ERM (Enterprise Risk Management) process.
• Develop, maintain, and test Business Continuity Plans (BCPs).
• Coordinate with IT/Information Security to ensure Disaster Recovery Plans (DRPs) align with business needs.
• Monitor internal and external threats to business operations (cyber, natural disasters, pandemics, supply chain, regulatory changes).
• Partner with ERM, Internal Audit, IT and Information Security to assess risks and develop mitigation strategies.
• Collaborate with IT and Cybersecurity to integrate DR and incident response into the enterprise resilience framework.
• Partner with Facilities to align site recovery and emergency response plans.
• Lead vendor resilience assessments in coordination with the Vendor Management Office.
• Plan and execute tabletop exercises, functional drills, simulations, and IT failover tests.
• Track findings, corrective actions, and remediation timelines to drive continuous improvement.
• Monitor compliance with BCDR policies, regulatory requirements, and industry frameworks.
• Support audits, regulatory exams, and third‑party assessments working closely with the GRC (Governance, Risk and Compliance) team.
• Maintain dashboards and executive reporting on program status, testing results, and maturity.
• Develop and deliver enterprise-wide BCDR training and awareness programs.
• Maintain role‑specific training for crisis response team members.
• Serve as primary incident commander during disruptions.
• Coordinate response activities, activate continuity plans, and communicate with leadership.
• Lead post‑incident reviews and ensure corrective actions are implemented.

Benefits

• Competitive Compensation & Benefits
• performance bonuses
• generous paid time off
• top-tier retirement program with 401(k) matching and additional company contributions
• 50% charitable gift matching
• paid volunteer time