The Risk Manager oversees STCU’s Enterprise Risk Management, Vendor Management, and Incident Response and Business Continuity programs, managing risk identification, mitigation, and reporting through the GRC system. This position quantifies risk exposures, develops organization-wide risk processes, and delivers reporting. Partnering with leaders, the Risk Manager addresses emerging risks, implements mitigation strategies, and identifies opportunities within the credit union's risk appetite.Core Job Requirements/OutcomesLead and mentor the Risk Management team by providing training, feedback, recognition and career development.Implement robust and structured risk management practices anchored around a centrally established ERM framework, and embed existing, new, or updated ERM principles and capabilities across the company to support "a culture of risk" by leading the enterprise-wide risk management governance framework, managing policy, risk appetite statements, the identification and reporting of key risks, threshold tolerances and risk capacity.Develop, maintain, and train business unit partners on a comprehensive understanding of potential risks, both internal and external, and play a key role in collaborating with business unit partners and risk owners by assessing specific risks and developing mitigation strategies through highly collaborative risk-based assessments and decisions. Manage the Vendor Management program by leading a vendor due diligence process and identifying and reporting vendor risks and criticality in line with regulatory requirements and STCU’s risk appetite. Engage with vendor owners to provide necessary vendor due diligence information, and conducting and reviewing risk assessments while leveraging software solutions to assess risk and track complianceCore Leadership PrinciplesLead by example by aligning actions with shared values.Embrace and communicate organizational direction by enlisting others in a common vision in support of organization values, goals and decisions.Effectively lead organizational change by demonstrating and fostering a growth mindset by inspiring your team to do things differently, seizing opportunities, working through challenges and persevering toward a better future.Lead performance by providing direction and delegation to create a climate where people are motivated to do their best.Encourage the heart by exhibiting empathy, actively listening and celebrating to cultivate team engagement.Other Essential FunctionsIn partnership with senior leadership, develop, implement, and evolve the ERM framework including effective governance, independence, culture, risk appetite, risk identification, controls, and quantification.Manage the full life cycle of a Governance Risk and Compliance software for ERM, vendor management, and business continuity program management, including establishing strategy and partnering with cross-functional users of the GRC software.Support business lines in the awareness and ownership of their risk position by providing education of risks, controls, and effective mitigation techniques, while also seeking areas of opportunity and efficiency within the risk appetite.Manage effective Incident Response and Business Continuity Programs by designing and leading simulations, leading the Business Impact Analysis, evaluating plan updates and test results, and ensuring identified changes resulting from testing are complete.Manage property and casualty and workers compensation policies and the credit union’s bond coverage by coordinating the application and renewal process, recommending quality coverage for premium paid, and managing claims.Prepare and deliver risk management reports to the Enterprise Risk Management Committee, senior credit union leadership team, and Finance and Risk Committee, incorporating key risk and key performance indicators where available.Foster relationships and collaborate with teams across the organization; actively consult on committees and cross functional working groups.
