Job description
In this newly created role, you are responsible for the leadership of Third-Party Risk Management (TPRM) at UNFCU by setting effective strategic direction concerning the oversight and management of Third Party vendors and Third Party Risk, setting policy protocols, and ensuring legal/regulatory compliance. Play a pivotal role in overseeing and elevating the organization's TPRM program. Accountable for the due diligence approach, developing an effective ongoing monitoring program, and providing effective challenge to confirm risks are within UNFCU's risk appetite, all while maintaining a balance between Risk Management and UNFCU's overall strategy.
This position is expected to be hybrid.
NYC Salary Range - $174,470 - $245,000 annually; compensation is commensurate to geographic location.
Regardless of seniority or role, uphold UNFCU's mission, core values, and guiding principles by providing an exceptional service experience to colleagues and members alike through consistent demonstration of our service excellence behaviors.
Set and monitor overall strategic direction for Third Party Risk Management department.
Provide proactive subject matter expertise to senior management with regard to developing trends noted, regulatory/legal requirements and policy development and enhancements.
Design, establish, and maintain the TPRM Framework and governance structure, including policy, requirements, procedures, systems, training, monitoring, and testing, to oversee effective execution of the TPRM Program across the organization.
Provide strategic thought leadership in designing and operationalizing the TPRM program.
Manage the execution of the Third-Party Risk Management program throughout the life cycle.
Assist in maturing the TPRM strategy, development and execution roadmaps for TPRM.
Oversee the escalation and remediation of all TPRM vendor related issues identified through ongoing monitoring, the risk assessment process or incident management.
Collaborate with business units to implement controls and processes that mitigate third-Party Risk while balancing Risk Management and partner experience.
Bachelor's degree in a relevant field and about 10 years of experience in a financial services environment with exposure to regulated environments, including more than 5 years of experience in Third Party Risk Management and/or Procurement, particularly in financial services
5 or more years in a leadership capacity
Experience in executing Risk Management strategy development, including long term planning and managing ongoing risk performance
Experience in leading the design, development, and implementation of EGRC (Enterprise Governance, Risk, and Compliance) systems with a focus on TPRM applications
Good knowledge of regulatory compliance and the financial services industry, applicable to different organizational functions, with a focus on effectively documenting and reporting TPRM compliance efforts
Ability to produce clear, concise and impactful policies and procedures. This includes drafting, reviewing, and maintaining documented policies and procedures related to TPRM, in alignment with regulatory expectations and industry standards
Working knowledge of Governance, Risk and Compliance (GRC) concepts and platforms (e.g., RSA Archer, MetricStream, LogicManager and Quantivate)
Proficiency in data analysis for reporting and decision-making purposes
Proficiency with Microsoft Office Suite (MS Excel, MS PowerPoint, etc.); proficiency in data analysis software and tools such as SAS, Tableau, or similar applications is a plus
Knowledge of process documentation methods