Enterprise Risk Governance Analyst II

About The Position

Requirements

• Bachelor’s degree in Accounting, Finance, Risk Management, Business, or related field.
• 5+ years of experience in operational risk, enterprise risk management, audit, or compliance within financial services.
• Strong understanding of 2LOD risk oversight principles and governance frameworks.
• Direct experience with RCSA, KRI, issue management, and EUC oversight.
• Strong analytical, problem-solving and risk assessment skills.
• Advanced MS Excel (Pivot tables, experience with large data sets, macros, SQL queries, proficient in data manipulation, and presentation).
• Proficient knowledge and experience working with and developing in Excel, VBA, SQL or other development languages.
• Demonstrated ability to plan, organize, analyze, and draw logical conclusions.
• Good sound judgement.
• Effective communication skills, both verbal and written.
• Ability to interact with all levels of an organization.
• Self-starter, organized, versatile, and capable of performing work with minimal supervision / management oversight.
• Attention to detail and strong sense of ownership and accountability.
• Experience in designing and evaluating process controls (e.g., trading, finance/accounting, risk management, etc.) for financial institutions, finance, accounting, and areas.
• Excellent time management skills and ability to handle multiple, competing priorities.

Responsibilities

• Independent Operational Risk Governance and Oversight: Ensure 1st Line adherence to operational risk policies and deliver credible challenge on risk assessments, methodologies, and conclusions. Support design and continuous improvement of the operational risk framework, ensuring alignment with regulatory expectations, internal policies, and best practices.
• EUC Program Management: Manage the enterprise EUC inventory and governance framework, including identification, classification, certifications, validations, and lifecycle management, while ensuring adherence with policies, standards, and controls. Partner with technology, internal audit, and business stakeholders to reduce EUC risks, review remediation actions for deficiencies, and monitor/escalate emerging or systemic risk issues. Independently validate EUCs, challenge inventory completeness and risk classifications, and evaluate adequacy of controls, documentation, and validation processes.
• KRI Governance and Oversight: Review and challenge KRI relevance, thresholds, and alignment to risk appetite; ensure accuracy, completeness, consistency, and timeliness of reporting data. Analyze trends and aggregate KRI insights to identify enterprise risks, while partnering with business units to define KRIs and deliver actionable reporting for senior management and governance.
• RCSA Governance and Oversight: Provide expertise on risk taxonomy, control design, and scoring methodologies, ensuring alignment with enterprise standards. Assess risk identification, control effectiveness, and residual risk ratings, challenging inconsistencies or weaknesses. Highlight under-assessed risks, thematic concerns, and opportunities to strengthen the overall control environment.
• Issue Management and Remediation Oversight: Govern issues from identification through closure, challenging root causes and remediation plans to ensure sustainable resolution and policy compliance, while monitoring progress and escalating delays or ineffective actions.
• Risk Reporting and Analytics: Support creation of independent reports by aggregating EUC, KRI, RCSA, and issue insights to deliver a holistic enterprise risk view and highlight systemic and emerging risks for senior leadership attention.

Benefits

• flexible, highly competitive benefits package