General Summary
The Director of Enterprise Risk Management (ERM) is a senior leadership role reporting to the Chief Risk Officer. This position provides strategic oversight of the organization's enterprise-wide risk program, ensuring effective identification, measurement, assessment, monitoring, and reporting of risks across all business lines. The role leads a broad portfolio of risk disciplines, including model risk, third-party risk, operational risk, business continuity and resiliency, policy governance, and physical security. Acting as a trusted advisor to executive leadership, this role leverages deep expertise to guide decision-making, strengthen organizational controls, and enhance overall risk maturity.

Major Duties & Responsibilities

Enterprise Risk Framework & Governance

• Develop, implement, and enhance ERM frameworks, policies, governance structures, and procedures in alignment with applicable regulatory expectations.
• Lead and optimize enterprise-wide risk assessments and RCSAs, ensuring comprehensive identification and evaluation of risks and corresponding controls.

Program Oversight

• Provide leadership and oversight across keyERM components including:
  • Model Risk Management
  • Third-Party/Vendor Risk Management
  • Operational Risk Management
  • Business Continuity & Disaster Recovery
  • Policy Management
  • Physical Security

Risk Analytics & Reporting

• Establish and maintain key risk indicators (KRIs), risk appetite statements, and enterprise risk registers to drive transparency and accountability.
• Deliver regular risk updates to senior leadership and the board, including enterprise-wide risk profiles and trends.
• Provide strategic insights and recommendations to support informed decision-making.

Governance & Committee Leadership

• Partner with the Chief Risk Officer to shape agendas and materials for risk governance committees.
• Participate in cross-functional governance and ensure that committee deliverables meet regulatory and organizational expectations.
• Own the creation, updates, and governance of ERM-related policies, programs, standards, and procedures.

Risk Culture & Training

• Foster an enterprise-wide risk-aware culture by developing and delivering risk management training, awareness initiatives, and tools.

Regulatory & Audit Engagement

• Lead or support regulatory examination preparation and engagement.
• Coordinate responses to regulatory or audit findings and ensure timely remediation.

Other Responsibilities

• Monitor emerging risks, industry developments, and regulatory changes to proactively adjust risk strategies.
• Provide support to related risk management functions as needed.
• Execute other duties as assigned to support enterprise risk objectives.

Qualifications

Education

• Bachelor's degree in business, finance, accounting, or related field (Required)
• Master's degree in a related discipline (Required)

Experience

• 12+ years of progressive experience in risk governance, controls, or enterprise risk functions
• 5+ years serving as a senior ERM leader within a large financial institution (> $5B in assets)

Knowledge, Skills & Abilities

• Proven ability to lead and manage multiple complex initiatives across diverse stakeholder groups
• Strong executive presence with comfort presenting to senior leadership and boards
• Exceptional written and verbal communication skills, including the ability to translate technical concepts for non-technical audiences
• Demonstrated leadership in team building, project management, and enterprise change initiatives
• High proficiency with MS Office and ability to apply technology solutions to enhance risk programs

Licenses/Certifications

• Relevant professional certification(s) (e.g., CPA, CIA, etc.) required