ERM Manager

About The Position

Requirements

• Bachelor’s degree in Finance, Business Administration, Accounting, Risk Management, or a related field required; an equivalent combination of education and experience may be considered.
• Three (3) to five (5) years’ experience in risk management, operational risk, audit, management consulting or a related discipline within or for a financial institution.
• Knowledge of and practical experience with financial institution operating areas, functions, products and services and applicable laws and regulations.
• Demonstrated experience leading and facilitating a formal RCSA program or similar risk / control assessment process.
• Critical thinker with strong execution discipline and the ability to translate risk concepts into practical, actionable steps for business units.
• Exceptional relationship‑building and stakeholder‑management skills
• Ability to establish credibility and trust with leaders across Operations, Lending, Finance, IT, Compliance/BSA‑AML, and Fraud.
• Strong facilitation skills with the ability to lead RCSA workshops, guide discussions, and build alignment on risk and control evaluation.
• Excellent written, verbal, and presentation communication skills, capable of delivering clear and concise risk insights to technical and non‑technical audiences.
• Strong analytical skills with the ability to synthesize complex data, identify trends, evaluate controls, and support risk‑informed decision‑making.
• Ability to manage multiple initiatives, documentation cycles, follow‑up items, and reporting deadlines simultaneously.
• Demonstrates emotional intelligence, sound judgment, humility, and the ability to navigate complex organizational dynamics while maintaining objectivity.
• Ability to operate effectively in a fast‑paced, mission‑driven, member‑focused environment.
• Strong proficiency in Microsoft Office Suite (Excel, PowerPoint, Word) and experience with risk tools, dashboards, or process‑mapping software.
• Excellent organizational and time‑management skills, with a high level of accuracy and attention to detail.

Responsibilities

• Administers the enterprise-wide Risk and Control Self-Assessment (RCSA) program, including planning, scheduling, facilitation, documentation, and refresh cycles.
• Maintains RCSA methodologies, taxonomies, scoring criteria, and evaluation templates to ensure consistency across business units.
• Facilitates RCSA workshops with business unit leaders to identify processes, risks, controls, control gaps, and action plans.
• Ensures RCSA documentation is complete, accurate, organized, and audit-ready.
• Provides summarized RCSA results for management reporting and supports integration of RCSA outcomes into enterprise risk profiles.
• Coordinates with Compliance/BSA-AML, Fraud, Information Security, Operations, Finance, and other business units to obtain information needed for ERM activities.
• Supports risk assessments related to new products, processes, or system changes by gathering risk information and documenting relevant impacts.
• Maintains the enterprise risk register, ensuring timely updates from business units.
• Tracks and analyzes key risk indicators (KRIs) and prepares recurring and ad-hoc risk monitoring reports.
• Compiles, analyzes, and aggregates risk data for presentation to management and applicable committees
• Produces clear, concise dashboards and risk summaries to support strategic and operational decision-making.
• Collects emerging‑risk information from business units as part of RCSA and KRI routines and integrates these observations into risk reporting.
• Tracks and updates risk issues, control gaps, and remediation actions to ensure accurate and timely follow-up by business units.
• Assists in developing or reviewing control testing procedures and integrates results into RCSA updates.
• Identifies trends in control deficiencies and collaborates with business units on opportunities for enhancement.
• Collaborates with business units on the design and enhancement of controls identified through RCSAs.
• Assists in maintaining ERM-related policies, procedures, and standards by updating templates, incorporating feedback, and managing version control.
• Coordinates risk committee logistics, including gathering materials, preparing packets, tracking action items, and maintaining meeting records.
• Maintains organized, accurate, and auditable ERM documentation, including RCSA workpapers, KRIs, and reporting outputs.
• Provides training and awareness to staff on ERM processes, RCSA expectations, and risk documentation standards.
• Coordinates ERM policy, charter, and framework review cycles
• Assists with preparing documentation packages, data summaries, and evidence folders for audits and regulatory requests and examinations.
• Promotes consistent application of the ERM framework across business units.
• Identifies opportunities to improve ERM processes through automation, workflow enhancements, and better use of data.
• Assumes responsibilities for related duties as required or assigned.