Embedded Risk Associate Director

About The Position

Requirements

• Minimum of 8 years of related experience
• Bachelor's degree preferred and/or equivalent experience

Nice To Haves

• Risk Management and Audit experience preferred
• Demonstrated experience leading and executing Risk and Control Self-Assessments (RCSAs), including risk identification, inherent and residual risk assessment, control design evaluation, and challenge of risk ratings.
• Strong experience producing quarterly risk reporting for senior management, including aggregation of risk themes, trend analysis, key risk indicators (KRIs), and concise executive-level commentary.
• Proven ability to define, analyze, and interpret risk metrics, with solid quantitative and analytical skills to assess control effectiveness, risk trends, and out-of-tolerance conditions.
• Deep understanding of core processes and how process failures translate into operational and regulatory risk.
• Experience designing and executing risk assessments across complex environments, including scoping, evidence evaluation, stakeholder interviews, and synthesis of findings into actionable risk insights.
• Strong business acumen, with the ability to understand supported business areas, critical services, and client impacts, and to align risk assessments to business priorities and outcomes.
• Demonstrated expertise in incident analysis and root cause analysis, including evaluation of technology incidents, control failures, and near-misses to inform risk assessments, corrective actions, and risk reporting.
• Ability to challenge effectively and independently, partnering with risk, and business stakeholders while maintaining strong governance, documentation standards, and audit readiness.

Responsibilities

• Technology-aware and AI focused, design and prototype AI agents, enabling effective challenge of AI-driven business processes, model governance, data controls and emerging technology risks while supporting innovation and regulatory compliance.
• Issue and Action Plan life cycle management (i.e. Engagement on the creation of MSIs, ensure actions plans effectively remediate issue, monitor timely remediation progress, and review of issue and action remediation before Metricstream submission, and oversight of the closure process for sustainability.
• Monitor the monthly Solutions Issues and Action Report (i.e. MSI Metric requirement) and assess issues resulting from Audits to determine if they should have been self-identified.
• Execute the Annual Sustainability reviews for both internal (direct/indirect) and external sourced action plans
• Supervise the timeliness of all Solutions Business Management Issues and Actions and establish escalation protocol for items at risk for being past due
• Perform review, challenge, and ensure consistent workflow quality control of issues both self-identified, as well as those resulting from risk assessments (include lessons learned and scenario analysis), and risk incidents.
• Perform quality review of Process, Risk, and Control data to ensure GRC foundational elements are periodically refreshed to reflect current procedures for oversight and consistency.
• Oversee the execution of Business Management and service providers testing of internal controls, provide review and challenge of test scope, test methods, test procedures, and evaluation of results.
• Deliver periodic risk management and control training to Business Management and support teams, as necessary.
• Liaise with Governance, Risk, and Compliance Program to adopt key risk management objectives as they are pursued and enacted.
• Manage the Regulatory Reporting process and requirements with key stakeholders for timely and accurate submissions.
• Conduct Control Assessments inclusive of trend analysis to drive consistent risk management practices across Solutions Businesses
• Mitigates risk by following established procedures and monitoring controls, spotting key errors and demonstrating strong ethical behavior.

Benefits

• Competitive compensation, including base pay and annual incentive
• Comprehensive health and life insurance and well-being benefits, based on location
• Pension / Retirement benefits
• Paid Time Off and Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being.