Risk Management Director

About The Position

Requirements

• A Bachelor’s degree in business, finance, risk management, accounting, or related field or equivalent combination of education and experience.
• 10+ years of progressive experience in bank risk management, audit, compliance, or related disciplines.
• 7+ years of people leadership experience.
• Is accountable for demonstrating compliance with the Bank Secrecy Act, Privacy of Consumer Financial Information and all other federal and state rules and regulations as it pertains to their position at the bank.

Nice To Haves

• Demonstrated expertise in vendor risk management, business continuity management, and records management.
• Strong communication skills and experience presenting to senior leadership and Boards.
• A role model for our core values: Do the Right Thing, Get Stuff Done (G.S.D.), One Team and Give Generously.
• Demonstrated commitment to defect free, timely and caring client service.
• Able to perform at a high level in a fast-paced environment.
• Flexible to change in a growing organization.
• Excellent verbal and written communication skills.
• Demonstrated collaborative work style and respect for others.
• Demonstrated self-motivation and resourceful work ethic.
• Aptitude for creative problem-solving.

Responsibilities

• Enterprise Risk Management (ERM) Leadership: Partner with the CRO to manage and mature the Bank’s ERM framework, including risk identification, assessment, measurement, monitoring, reporting, and escalation. Provide credible challenge to business units while collaborating on risk-informed solutions that support strategic goals. Act as CRO delegate on assigned committees and initiatives and provide continuity of leadership in the CRO’s absence.
• People Leadership & Program Execution: Directly manage and develop Risk Management staff, including goal setting, performance management, and professional development. Build scalable processes, workflows, and documentation to ensure consistent execution of the risk management programs.
• Vendor Management / Third-Party Risk Management: Own the Bank’s Third-Party Risk Management (TPRM) program, including policies, standards, and procedures. Ensure risk-based due diligence and ongoing monitoring, including financial condition, information security, business resiliency, contract review, and concentration risk. Maintain the vendor inventory and critical vendor list; oversee issue tracking and remediation. Develop dashboards and reporting for vendor risk, performance, and exceptions. Partner with legal counsel, IT, and business owners to strengthen contract controls and vendor oversight.
• Records Management (Direct Accountability): Lead the Bank’s Records Management program, including governance, retention schedules, and training. Ensure alignment with legal and regulatory requirements, audit needs, litigation holds, and eDiscovery. Oversee records lifecycle management for physical and electronic records, including secure destruction practices. Coordinate with Information Security and IT on data classification and retention automation.
• Business Continuity Planning & Disaster Recovery (Direct Accountability): Own and maintain the Bank’s Business Continuity Management (BCM) / Disaster Recovery (DR) program and related policies. Ensure continuity planning for critical operations, technology recovery, workforce, facilities, and third-party dependencies. Plan and facilitate tabletop exercises and simulations; track and remediate identified gaps. Incorporate lessons learned from incidents and tests into ongoing plan improvements.
• Governance, Reporting, and Continuous Improvement: Support audits, regulatory examinations, and management responses. Identify opportunities for automation and enhancement of risk tools and platforms.

Benefits

• Healthcare (medical with HSA, dental, and voluntary vision)
• Short-term and long-term disability
• Basic and voluntary life & AD&D insurance
• EAP – Employee Assistance Program
• Flexible spending accounts
• 401(k) with employer match; ability to purchase Bank stock through 401k
• Paid time off & paid holidays
• Family Care Reimbursement (up to $500 annually for 2025)
• Wellness Time (up to 2 hours/week)
• Keystone employee directed giving opportunities (annual Insight Trip opportunities, up to $500 for grants and double match dollars)