Director of Risk Management

About The Position

Requirements

• 5-10 years in risk management, compliance, internal audit, or fraud prevention, preferably in financial services or credit unions.
• Strong understanding of credit union laws, regulatory frameworks, fraud prevention, and risk controls.
• Proven ability to develop risk policies, oversee internal audits, and manage loss prevention programs.
• Bachelor's degree in Finance, Business Administration, Risk Management, or a related field.
• Exhibit outstanding member services skills by applying Granite Credit Union Service Standards and Core Values.

Nice To Haves

• Certified Risk Management (CRM), Certified Regulatory Compliance Manager (CRCM), Certified Fraud Examiner (CFE) or CIA (Certified Internal Auditor) preferred.

Responsibilities

• Develops and oversees the enterprise risk management (ERM) framework, ensuring alignment with credit union regulatory requirements.
• Ensures compliance with federal and state regulations, including NCUA, BSA, AML, OFAC, Reg Z, Reg E, and other applicable laws.
• Collaborates with senior leadership to create and implement risk policies and procedures that align with industry best practices.
• Oversees the internal audit program identifying risks recommending corrective measures.
• Develops risk mitigation programs that address operational, financial, reputational, and cybersecurity risks.
• Leads efforts to detect, investigate, and prevent fraudulent activities within the organization.
• Creates and manages loss prevention programs to minimize financial, operational, and reputational risks including fraud prevention programs for loans and deposits.
• Identifies potential threats and vulnerabilities affecting the organization and establishes action plans to address them.
• Oversees quality control measures for lending, deposits, and operational functions to reduce errors and ensure regulatory compliance.
• Develops and maintains the business continuity and disaster recovery plans, ensuring operational resilience during disruptions.
• Conducts risk assessments and stress testing to evaluate the organization's preparedness for financial and operational risks.
• Monitors third-party vendor risk management programs to ensure compliance with service agreements and regulatory expectations.
• Reports on risk assessments, internal audits, and fraud investigations to executive leadership, the Board of Directors, and the Supervisory Committee.
• Professionally communicate through written and oral presentations.
• Promote a professional appearance and attitude.
• Basic computer operating skills such as email, Microsoft Office, etc.
• Attend meetings as required.
• Other duties as assigned.
• Must comply with all company policies and procedures, applicable laws and regulations, including but not limited to, the Bank Secrecy Act, the Patriot Act, and the Office of Foreign Assets Control.