Head of Enterprise Risk Management - Mobility

About The Position

Requirements

• 10+ years of progressive enterprise risk leadership experience in complex, regulated, or technology-enabled organizations.
• Bachelor’s degree in Risk Management, Business, Finance, Engineering, Information Systems or related field.
• Demonstrated experience with operational and technology risk, third-party risk and enterprise resilience planning.
• Experience advising leadership and cross-functional stakeholders.
• Prior experience with risk tools, data analytics for risk monitoring or modern risk platforms.
• Proven capability to manage high-volume, complex environments with sound judgment and adaptability.
• Fosters inclusivity and manages emotions to achieve optimal business outcomes.
• Able to effectively pivot direction and collaborate across teams to meet strategic initiatives.
• Exceptional business judgment and strong problem-solving abilities.
• Adept at articulating business needs and defining actionable strategies.
• Actively seeks input from diverse sources to ensure engagement and influence stakeholder buy-in at all levels.
• Excellent communication and interpersonal skills, with a demonstrated passion for the business.
• Operates autonomously while also being a collaborative team player who brings a positive, “can do” attitude to the workplace.
• Works effectively with other members of the Compliance, Risk and Privacy team, internal clients, and cross-functional organizations to influence and develop strategic initiatives.

Nice To Haves

• Professional certifications, such as Certified Risk Manager (CRM), Certified in Risk and Information Systems Control (CRISC), Project Management Professional (PMP), FRM, PRM, ISO 31000 training.
• Experience building or maturing an Enterprise Risk Management framework.

Responsibilities

• Lead development and deployment of the enterprise risk strategy, ensuring alignment with the company’s strategic objectives and risk appetite.
• Establish and maintain risk governance structures, frameworks, policies and standards.
• Support risk committees, coordinate agendas and track action items.
• Advise on risk priorities, trends and emerging threats.
• Drive risk identification and assessment processes across all functions and business units.
• Maintain enterprise risk registers, risk heat maps and risk taxonomy.
• Facilitate risk workshops and scenario analysis to capture evolving risk exposures.
• Lead the design and implementation of risk mitigation strategies and controls.
• Work with business and control owners to strengthen control environments and close gaps.
• Ensure risks are appropriately escalated and managed within risk appetite thresholds.
• Provide oversight of operational risk within business processes and critical initiatives.
• Partner with business leaders to embed risk controls into operational workflows.
• Conduct low event investigations and root cause analysis.
• Support change-risk assessments for strategic and transformational activities.
• Oversee risk identification and assessment for technology and cybersecurity exposures.
• Collaborate with InfoSec, IT and other stakeholders on risk mitigation actions, testing and monitoring.
• Align risk practices with technology roadmaps, DevOps processes and digital transformation initiatives.
• Lead enterprise operational resilience strategy and framework.
• Ensure business continuity planning, crisis management playbooks, and disaster recovery plans are effective and regularly tested.
• Incorporate resilience considerations into risk assessments and business planning.
• Establish and maintain risk dashboards, key risk indicators (KRIs), and risk reporting protocols.
• Provide timely risk insight to senior leadership and risk governance bodies.
• Monitor trends and make actionable recommendations to mitigate exposures.
• Assess the effectiveness and timeliness of risk responses and control actions.
• Recommend corrective actions and track implementation to closure.
• Ensure continuous improvement of risk processes and tools.
• Champion a strong risk culture across the enterprise.
• Promote risk ownership at all levels and enhance risk literacy throughout the organization.
• Lead the Third-Party Risk Management (TPRM) program, establishing a risk-based framework for onboarding, due diligence, monitoring and offboarding of vendors, suppliers and partners.
• Oversee identification, assessment and prioritization of third-party risks – including operational, financial, technology, regulatory and reputational exposures – and ensure timely escalation to leadership.
• Partner with procurement, legal, compliance and business owners to integrate risk mitigation, contractual controls, business continuity and compliance obligations into third-party relationships.
• Drive continuous improvement, reporting and analytics to enhance visibility, monitoring and resilience of critical third-party dependencies.

Benefits

• Work in a dynamic, fast-paced environment
• Partner closely with colleagues across the enterprise, to integrate risk into business strategy
• Design and translate risk frameworks into scalable, practical solutions that support innovation while effectively managing risk
• Lead a team of risk professionals
• Serve as a business-oriented, senior leader and core member of the team, providing strategic direction and oversight on issues of significant importance to the company
• Health care coverage designed for the mind and body.
• Generous time off helps keep you energized for your time on.
• Access a wealth of resources to grow your career and learn valuable new skills.
• Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs.
• Perks for your partners and little ones, too, with some best-in class benefits for families.
• From retail discounts to referral incentive awards—small perks can make a big difference.