Enterprise Risk Management, Manager

About The Position

Requirements

• 7+ years of experience in risk management, internal audit, compliance, or related function—preferably in financial services.
• Strong understanding of enterprise risk frameworks (e.g., COSO ERM, ISO 31000).
• Experience conducting risk assessments and developing risk mitigation plans.
• Experience managing issue lifecycle, control testing, and dashboards.
• Experience governing vendor due diligence, risk ratings, remediation, concentration risk monitoring, and SLA performance.
• Bachelor’s Degree in Management Business Management, Finance, Banking or related field.
• Strong communication skills to develop good working relationships and to promote cooperation and compromise among various departments.
• Display the ability to research and comprehend a high level of knowledge in current and developing regulations.
• Ability to develop and maintain effective working relationship at all levels by proactively participating and contributing to a positive work environment, controlling emotions and temperament, and exhibiting courteous, respectful, and professional behavior.
• Ability to quickly adapt to changing environments, processes, and technologies. Technological ability and willingness to work remotely from home as required.
• Strong organizational skills.
• Ability to maintain composure under pressure or adverse circumstances, using effective strategies for managing personal stress.
• Ability to maintain personal and work direction when faced with ambiguity

Responsibilities

• Lead the ongoing enhancement and execution of the Enterprise Risk Management Framework, policies, and methodologies.
• Coordinate enterprise risk assessments, including annual risk identification, scoring, and prioritization activities.
• Support the development of the organization’s risk appetite statement and ensure alignment between risk-taking and strategic objectives.
• Prepare and deliver risk reporting for executive leadership, Board committees, regulators, and auditors.
• Facilitate business unit risk assessments, control testing, and issue management.
• Maintain the enterprise risk register and ensure risks are accurately documented, measured, and refreshed regularly.
• Analyze emerging risks, market trends, regulatory updates, and industry developments to advise senior leadership.
• Monitor key risk indicators (KRIs) and implement early-warning mechanisms.
• Partner with stakeholders to design and implement effective control enhancements and risk mitigation strategies.
• Manage remediation plans for identified gaps, including tracking progress and validating completion.
• Support scenario analysis, stress testing, and business continuity/resiliency planning initiatives.
• Serve as a subject-matter expert on risk to with the community bank on any new / modified / expanded products and services.
• Work closely with Compliance, BSA/AML, Fraud, Information Security, Internal Audit, and Operations to ensure a consistent risk approach.
• Provide training and education across the organization to reinforce risk awareness and accountability.
• Develop high-quality dashboards and reports that communicate risks, trends, and mitigation effectiveness.
• Ensure ERM documentation meets regulatory, audit, and internal standards.
• Maintain and enforce the enterprise TPRM framework, policies, and procedures.
• Monitor adherence to TPRM standards across all business units.
• Provide independent challenge and oversight of third-party risk assessments and due diligence processes.
• Ensure TPRM compliance with regulatory requirements (e.g., OCC, FFIEC, GDPR, etc.) and internal risk appetite.
• Track and report on third-party risk metrics, including concentration risk, SLA performance, and issue remediation.
• Prepare executive dashboards and regulatory reporting on TPRM program.
• Administer and maintain the organization’s issue management framework.
• Track, monitor, and report on open issues, remediation plans, and deadlines.
• Partner with business units to ensure timely resolution and proper documentation of issues.
• Conduct root cause analysis and recommend corrective actions.
• Prepare dashboards and reports for senior management and regulatory reviews.
• Must comply with applicable laws and regulations, including but not limited to, the Bank Secrecy Act, the Patriot Act, and the Office of Foreign Assets Control

Benefits

• Comprehensive benefits package & 401(k) match
• Professional development- opportunities for advancement!
• Tuition assistance
• Transit reimbursement
• Paid time off
• & more!