FVP Enterprise Risk Lead

About The Position

Requirements

• Maintain the highest standards of confidentiality, integrity, and information security across all risk domains.
• Strong analytical and critical‑thinking skills, ability to assess complex risk issues and develop actionable solutions.
• Excellent written and verbal communication skills, with the ability to prepare executive‑level reports and present to senior management and regulatory bodies.
• Demonstrated ability to manage multiple concurrent initiatives and operate effectively in a fast‑paced, evolving regulatory environment.
• Strong organizational skills with the ability to prioritize tasks, exercise sound judgment, and make risk‑based decisions.
• Advanced proficiency in risk management systems, data analysis tools, and Microsoft Office applications (Excel, PowerPoint, Word).
• Ability to collaborate and influence across departments, including IT, Compliance, Audit, and business lines.
• Strong leadership capabilities with the ability to guide cross‑functional teams and promote a culture of risk awareness and accountability.
• Bachelor’s degree from accredited 4-year University desired or
• Minimum of 10 years’ progressive experience in Enterprise Risk Management, Operational Risk, Compliance, Audit, or related risk disciplines within a financial institution.

Nice To Haves

• Preferred certifications (not required but highly beneficial): CRCM, CAMS, CRMA, CISA, CIA, CISM, CISSP, FRM, or similar risk/compliance/security designation.

Responsibilities

• Assist the CRO with the development, implementation, and continuous improvement of the ERM framework.
• Coordinate enterprise-wide risk assessments and maintain risk appetite statements.
• Prepare risk dashboards, heat maps, and reports to senior management and the Board.
• Assist the CRO with the risk governance processes, including policy development and compliance monitoring.
• Ensure timely remediation of findings and maintain strong relationships with regulators.
• Promote a strong risk and compliance culture across the organization.
• Direct QA reviews for BSA/AML compliance programs to ensure adherence to regulatory standards.
• Identify systemic issues and recommend corrective actions.
• Collaborate with Audit teams on remediation efforts.
• Own the Bank’s BCP program, including policy updates, scenario planning, and resilience strategies.
• Coordinate annual testing exercises and ensure readiness for operational disruptions.
• Provide guidance to business units on continuity planning and disaster recovery.
• Support the CRO in monitoring compliance with applicable laws, regulations, and internal policies.
• Review and update compliance-related policies and procedures to ensure alignment with regulatory changes.
• Partner with Compliance and Internal Audit teams to address findings and implement corrective actions.
• Provide guidance on regulatory requirements during product development and operational changes.
• Support the CRO in monitoring the Bank’s Information Security Risk Management program in coordination with IT Security.
• Ensure compliance with FFIEC cybersecurity guidelines and other regulatory requirements.
• Review and report on cyber risk metrics, vulnerability assessments, and incident response readiness.
• Participate in cybersecurity risk assessments and ensure remediation of identified risks.
• Support development of security awareness training for employees.
• Maintain the Bank’s Model Risk Management framework in compliance with regulatory guidance (e.g., SR 11-7).
• Review model inventory, validation, and performance monitoring processes.
• Coordinate independent model validations and ensure timely remediation of findings.
• Prepare model risk reports for senior management and regulators.
• Work with business units to ensure proper documentation, governance, and approval of models.
• Prepare comprehensive risk and compliance reports for executive leadership, committees, and regulators.
• Drive continuous improvement in risk processes, controls, and reporting.
• Chair or actively participate in risk-related committees (e.g., Enterprise Risk Committee, Vendor Risk Committee).
• Oversee vendor risk assessments, onboarding, and ongoing monitoring.
• Ensure compliance with internal policies and regulatory requirements for outsourcing.
• Partner with Procurement and Legal to mitigate third-party risks.
• Develop and deliver risk and compliance training programs for staff and management.
• Comply fully with all Bank policies and procedures.