Risk Management, Program Administrator

About The Position

Requirements

• Bachelors’ degree in business, risk management, or related field or equivalent work experience
• Ability to exercise independent judgment.
• Exceptional analytical and problem-solving abilities.
• Ability to utilize working knowledge of risk management best practices such as COSO Risk Management Framework
• Ability to represent the credit union in a positive, professional manner in person, on the telephone and in written correspondence.
• Ability to maintain strict level of confidentiality and security in sensitive areas.
• Ability to organize projects, prioritize workflow and complete multiple tasks simultaneously and accurately.
• Ability to read and interpret complex documents and summarize findings.
• Proficient in Microsoft Office programs
• Flexibility and capacity to manage many responsibilities simultaneously.
• Ability to communicate well, both verbally and in writing, and work well with others in a variety of capacities.

Nice To Haves

• Professional certifications such as CBCP, CUERME, CERP, CRVPM, or other risk management, business continuity, or governance-related certifications are preferred.
• Knowledge of credit union history and philosophy preferred.
• Project Management knowledge and experience is a strong plus.

Responsibilities

• Ensures that WECU maintains appropriate and well-managed third-party vendor relationships across the organization.
• Ensures that appropriate due diligence is exercised in all phases of third-party relationships.
• Works with vendor relationship managers on a routine basis for continual compliance and assurance that they are holding vendors accountable for their actions in relation to our contract and service agreements.
• Ensures through documentation that all vendor contracts are in line with our vendor management policy and are reviewed by the vendor relationship manager on a routine basis for continual compliance.
• Develops and performs risk assessments on all current and future relationships and contracts with third party service providers to ensure that WECU maintains strong working relationships that serve to benefit the organization, and its employees and members.
• Administers WECU’s vendor management program (VMP), including all supporting contract information, by utilizing technology to its fullest within legal guidelines.
• Working in conjunction with the Training & Development to coordinate and facilitate appropriate vendor management training to all vendor relationship managers across the organization and ensure that expectations are clear.
• Proposes updates to management regarding vendor management policies and procedures as necessary to ensure compliance and best practices, disseminating information to management as necessary.
• Establishes a time frame for ongoing vendor due diligence reviews of our existing vendors, following up with managers to ensure that appropriate due diligence reviews are conducted as required.
• Works with managers to ensure that they are holding vendors accountable for their actions in relation to our contract and service agreements.
• Prepares and analyzes reports for management on the Vendor Management Program.
• Provides subject matter expertise in the creation, implementation, and maintenance of appropriate enterprise risk management tools, policies, and procedures to be compliant with applicable rules and regulations and industry best practices.
• Identifies and recommends risk management measures to SVP, Risk Management to detect potential risk exposures and to defend against external and internal risk threats.
• Works with the Project Management team to conduct comprehensive risk assessments for all new projects that may pose strategic, reputational, financial, member, employee, and compliance impacts.
• Works with applicable business units to ensure required risk assessments are conducted and updated and incorporated into WECU’s enterprise risk assessment as appropriate.
• Coordinates and facilitates periodic Business Impact Analyses (BIAs) with business units to identify critical functions, recovery objectives, dependencies, and operational resiliency requirements.
• Works closely with business units to develop, maintain, and periodically review Business Continuity Plans (BCPs), ensuring plans remain current, accurate, and aligned with organizational needs.
• Coordinates testing and exercising of Business Continuity and Disaster Recovery plans, including tabletop exercises, simulations, and recovery testing activities, documenting results and tracking corrective actions to completion.
• Collaborates with Information Technology, Information Security, Facilities, Human Resources, and other business units to ensure recovery strategies and continuity plans address operational, technology, personnel, vendor, and facility disruptions.
• Maintains the organization's Business Continuity governance framework, including policies, procedures, standards, and supporting documentation.
• Tracks, monitors, and reports on Business Continuity Program metrics, testing results, corrective action plans, and overall program effectiveness to management and applicable committees.
• Prepares periodic and regular updates and reports to WECU’s Enterprise Risk Management Committee (RMCO).
• Follows policy and procedures related to Bank Secrecy Act (BSA), Anti-Money Laundering (AML), Customer Identification Program (CIP) and Customer Due Diligence (CDD) daily to ensure compliance with current regulations. Follows policy and procedures related to SARs by reporting suspicious activity to the Compliance department. Completes mandatory BSA/AML annual training via online web course.
• Performs other duties as assigned by management.
• Follows WECU’s policies and all applicable laws and regulations.
• Performs other duties as assigned and may also assist others to complete tasks and work assignments.

Benefits

• Equal Opportunity Employer that is committed to diversity and inclusion in the workplace.