IT Risk Manager
About the role
The Manager, Risk Management is responsible for the building and coordination of a centralized first-line of defense (LOD1) risk and internal control program efforts for Early Warning's [specified department or function]. The role will align with the company's Enterprise Risk Management Leadership around the structure of the 3LOD (three lines of defense) Program to ensure consistency in implementation and operationalization across the enterprise.
Responsibilities
- Aid Senior Risk Managers and LOD1 Director in meeting departmental goals and objectives.
- Build and manage the business line's centralized LOD1 function; act as a liaison to Enterprise Risk Management, Operational Risk Management, and Compliance in support of the company's Three-Lines of Defense (3LOD) program.
- Own and maintain the business line's process inventory and internal control environment inventory.
- Work with Compliance (and other Risk functions) to understand and monitor applicable regulations and requirements.
- Partner with Enterprise Risk Management in executing Risk and Control Self-Assessments.
- Own and maintain the business line's detailed process and technical recovery plans.
- Partner with Business Continuity Management on business line's participation in BC/DR tests.
- Oversee and monitor the business line's third-party relationships, including both performance and risk management.
- Support the business line in the design and build of process maps in alignment with Early Warning's Process Classification Framework.
- Design, maintain, and report metrics (KPIs and KRIs) demonstrating control effectiveness.
- Identify and self-report issues through the ERM Self-Identified Issue Process, individually and together with other LOD1 business-line members.
- Ensure risk remediation plans exist and are sufficient; track remediation plans to completion and ensure remediation is on-time and sustainable; ensure action plans and remediation of issues by Risk Owner.
- Support business line Risk Acceptance Forms (RAF) process, when applicable.
- Support business line leadership in managing and reporting its related risks; provide reports and explanations for use in Business Reviews, Audit or Management Committee meetings.
- Collaborate with Business Intelligence to design and implement risk reports for management.
- Deliver education and awareness of risk ownership essentials.
- Continually monitor and update assessments of the control environment, keeping abreast of significant control issues, trends and developments.
- Perform internal control effectiveness test plans and procedures.
- Support the company's commitment to protect the integrity and confidentiality of systems and data.
Requirements
Education and/or experience typically obtained through completion of a Bachelor’s degree in Business Administration, Finance, Accounting or other related field of specialty. Typically, a minimum of 8 or more years of progressive audit, operational risk or other risk management experience or other proven related business experience. Good understanding of risk management and internal control leading practices within specialized area of focus. Demonstrated ability to work effectively in a complex, highly regulated environment. Working knowledge of regulatory requirements within specific area of focus. Effective communication, organization and presentation skills. Effective influence management skills.
Qualifications
Knowledge of COSO’s Internal Control – Integrated Framework, or similar. Certification in risk management. First line of defense risk management experience.
Skills
Knowledge of COSO’s Internal Control – Integrated Framework, or similar. Certification in risk management. First line of defense risk management experience.
Benefits
Healthcare Coverage – Competitive medical (PPO/HDHP), dental, and vision plans as well as company contributions to your Health Savings Account (HSA) or pre-tax savings through flexible spending accounts (FSA) for commuting, health & dependent care expenses. 401(k) Retirement Plan – Featuring a 100% Company Safe Harbor Match on your first 6% deferral immediately upon eligibility. Paid Time Off – Flexible Time Off for Exempt (salaried) employees, as well as generous PTO for Non-Exempt (hourly) employees, plus 11 paid company holidays and a paid volunteer day. 12 weeks of Paid Parental Leave Maven Family Planning – provides support through your Parenting journey including egg freezing, fertility, adoption, surrogacy, pregnancy, postpartum, early pediatrics, and returning to work. And SO much more!
Pay
In Phoenix, AZ/ Chicago, IL / Washington, DC in USD per year is: $104,000 - $130,000. In New York, NY/ San Francisco, CA in USD per year is: $125,000 - $156,000. Additionally, candidates are eligible for a discretionary incentive plan and benefits.