The role:

The Senior Compliance Risk Assessment Officer will provide oversight and governance of the end-to-end compliance risk assessment process. This includes defining standards for the compliance risk assessments, overseeing execution of the process for adherence to standards, and analyzing and reporting risk assessment results to management and key stakeholders.

What you’ll do:

• Evolve the overall compliance risk assessment process, including redesigning the risk assessment methodology

• Develop tools, templates and methods (e.g., qualitative and/or quantitative) for performing compliance risk assessments

• Train and provide ongoing guidance/support (as needed) on the application and execution of the compliance risk assessment process

• Coordinate and oversee execution of annual and periodic compliance risk assessments

• Analyze and challenge risk assessment results, and ensure consistent application of methodology

• Prepare reports to summarize risk assessment results, and present results/updates to executive management and other stakeholders including risk and compliance committees

• Coordinate with stakeholders such as Independent Compliance Testing, Enterprise Risk Management, Internal Audit and other teams as necessary for key data/input needed to execute risk assessments, as well as sharing risk assessment results with such stakeholders accordingly to inform their processes

• Maintain and update the inventory of applicable rules and regulations, and products

• Coordinate and facilitate the execution of Compliance’s quarterly Risk and Control Self-Assessments (RCSAs)

• Perform quality assurance (QA) reviews of Compliance’s risk and control inventory, and control self-assessments for conformance with enterprise policies and standards

• Summarize and report quarterly RCSA results to executive management

• Monitor and track findings issued to Compliance (e.g., from Internal Audit, regulatory, self-identified/RCSAs, etc.)

• Monitor and track findings identified and issued by Compliance to enable timely closure by the applicable business units

• Support Compliance (from a project management perspective) on timely closure of open issues (both owned and identified by Compliance), including ensuring issue management processes are followed

• Prepare reports on the status of open issues and present status to executive management and other stakeholders including risk and compliance committees

This job description is not intended to be all-inclusive. Employees may be asked to perform other related duties as assigned by the supervisor to meet the ongoing needs of the organization.

What you’ll need:

• Bachelor’s degree required

• Minimum of 8 years of relevant experience in Compliance, Legal, Audit, Regulatory Compliance Management or other related experience

• Experience designing, building, and implementing risk assessment methodologies

• Experience executing risk assessments

• Professional certification such as Certified Regulatory Compliance Manager (CRCM) is preferred

Technical/Functional Competencies

• Strong interpersonal skills to collaborate with and influence various key stakeholders/partners across 1st, 2nd and 3rd lines

• Excellent communication skills, both oral and written, and the ability to communicate clearly with constituents at all levels of the organization, including playing the role of an effective challenger

• Strong organizational and critical thinking skills capable of designing and implementing programs

• Ability to analyze processes and recommend ways to improve quality and efficiency

• Detailed oriented and able to perform data analysis

• Experience with developing management reports

• Experience with managing projects

• Independently determines methods to solve most problems and takes action to execute solutions with limited assistance

• Exercises judgment in situations with limited risk (without management involvement)

• Escalates and suggests solutions for complex issues to avoid unintended/negative impact with team and cross-functionally