girl looking into her desktop
Back to search results

EAC Compliance & Operational Risk Manager

Charlotte, North Carolina;

Job Description:

The EAC C&OR Manager assists in engaging other C&OR officers, including horizontal coverage owners and EAC, to provide comprehensive oversight of FLU/CF activities. This role assists in developing and maintaining a global coverage plan which defines the scope and risk-based focus of the second line’s risk management activities. The EAC C&OR Manager also assists in preparing materials for C&OR regulatory exams/audits/inquiries and may assist with preparation for FLU/CF regulatory exams/audits/inquiries

Activities this role performs for their area of coverage include, but are not limited to:

• Produces and/or oversees the development of independent risk management reporting as input into governance and management routines
• Contributes to participation in industry forums and monitors regulatory expectations, emerging legislation and regulation, political scrutiny, litigation and key influencers (trade associations, PACs, lobbyists, consumer groups, and media) in the EAC subject area to identify and mitigate emerging risks
• Identifies regulatory training needs and provides subject matter expertise to support the development of training curriculum
• Develops and maintains C&OR-owned policies/standards and reviews relevant FLU/CF-owned policies and standards to ensure regulatory and operational risk requirements are appropriately addressed, inclusive of conduct risk as applicable
• Monitors the regulatory environment to identify regulatory changes applicable to area(s) of coverage, advises business leaders on those changes, directs the appropriate areas to implement or amend policies, standards, procedures and/or processes to address regulatory requirements, and challenges the implementation plan as needed; maintains a comprehensive regulatory inventory
• Identifies, aggregates, reports, escalates, inspects and challenges remediation plans, and performs thematic analysis on FLU/CF-owned issues and control enhancements
• Ensures C&OR “owned” issues and control enhancements are identified and addressed appropriately and timely
• Contributes to or leads development of risk coverage plans, executes and / or oversees execution of monitoring, testing and risk assessments, and communicates results
• Reviews and challenges the FLU/CF process, risk, control (PRC) inventory and FLU/CF Risk & Control Self-Assessment (RCSA) related to EAC themes or trends
• Reviews and challenges internal and external operational loss events, including development of remediation plans to strengthen controls, and approves where appropriate
• Participates in Scenario Analysis activities for coverage areas and challenges as appropriate
• Ensures metrics are designed to measure key risks and control performance, monitors and reports on metric performance and breach remediation

This role will be focused on oversight of the Enterprise Third Party program from a compliance and operational risk perspective. The role will focus on key performance aspects of Enterprise Third Party program to assess compliance with applicable guidance from the OCC. Key activities include monitoring, testing, execution of targeted assessments, governance and oversight. The role may also require periodic engagement with regulators and regulatory exams.

Activities this role performs for their area of coverage include but are not limited to:
• Create and manage a global coverage plan which defines the scope and focus of the second line’s risk management activities.
• Helps establish, monitor and report on enterprise risk tolerance metric(s) that are translated and connected to relevant business metrics (Key Risk Indicators).
• Monitor regulatory environment and participate in industry forums to identify areas of focus and conduct benchmarking.
• Create and maintain a regulatory inventory, communicate regulatory changes to and engage the FLU/CF in assessing impacts of regulatory changes for enterprise area of coverage.
• Develop and maintain relevant policies or review relevant FLU / CF policies to ensure they reflect regulatory and operational risk requirements.
• Advise and direct business leaders through the FLU/CF C&OR officers to ensure that regulatory requirements are addressed in their respective procedures and controls so that their daily activities operate in a compliant manner.
• Conduct and contribute to annual and targeted risk assessments.
• Review and analyze aggregate results of FLU/CFs’ Risk and Control Self-Assessments (RCSA) for EAC-specific themes and trends.
• Create and manage monitoring and testing coverage plans and related metrics.
• Monitor and test the effectiveness of the FLU and CF’s processes and compliance and operational risk controls.
• Identify, aggregate, report and escalate risks, issues and control enhancements and ensure the C&OR officers for the FLU/CF are aware of issues.
• Review and analyze internal and external losses related to their area of coverage for enterprise-wide themes; escalate concerns or loss exposures as appropriate.
• Lead or contribute to Scenario Analysis activities to provide a forward-looking estimate of hypothetical operational losses.
• Execute governance and management routines.
• Identify regulatory training needs, provide subject matter expertise to support development of training curriculum, and inspect FLU/CF.
• Advise Risk peers and business leaders in preparations for and participation in regulatory exams and audits. Prepare and participate in EAC-specific exams and audits.
• Inspect that gap closure plans and commitments made regarding actions in response to Matters Requiring Attention (“MRAs”) and other actions are completed.
• Escalate regulatory relations concerns to EAC C&OR Executive.
• Ensure Compliance and Operational Risk “owned” issues (i.e., Internal Audit, Regulator and Self-Identified issues) are addressed appropriately and timely.

The EAC Compliance & Operational Risk Manager plans, drives and reviews team deliverables to support consistent quality of activities, processes and outputs. This role may contribute as a manager responsible for providing leadership direction to attract, assess, develop, motivate and retain a team, or may act as an individual contributor.

Required Skills: Minimum Years of Business & Functional Experience: 7 years
Degree Required: Bachelor’s Degree or Equivalent experience

Desired Skills: In depth knowledge of or certification in law, rule, regulation or area of coverage (ie: SCRA, Privacy); Desired: Association of Privacy Professional (IAPP) accredited certification programs for Privacy EAC

Job Band:

H4

Shift: 

1st shift (United States of America)

Hours Per Week:

40

Weekly Schedule:

Referral Bonus Amount:

0

Job Description:

The EAC C&OR Manager assists in engaging other C&OR officers, including horizontal coverage owners and EAC, to provide comprehensive oversight of FLU/CF activities. This role assists in developing and maintaining a global coverage plan which defines the scope and risk-based focus of the second line’s risk management activities. The EAC C&OR Manager also assists in preparing materials for C&OR regulatory exams/audits/inquiries and may assist with preparation for FLU/CF regulatory exams/audits/inquiries

Activities this role performs for their area of coverage include, but are not limited to:

• Produces and/or oversees the development of independent risk management reporting as input into governance and management routines
• Contributes to participation in industry forums and monitors regulatory expectations, emerging legislation and regulation, political scrutiny, litigation and key influencers (trade associations, PACs, lobbyists, consumer groups, and media) in the EAC subject area to identify and mitigate emerging risks
• Identifies regulatory training needs and provides subject matter expertise to support the development of training curriculum
• Develops and maintains C&OR-owned policies/standards and reviews relevant FLU/CF-owned policies and standards to ensure regulatory and operational risk requirements are appropriately addressed, inclusive of conduct risk as applicable
• Monitors the regulatory environment to identify regulatory changes applicable to area(s) of coverage, advises business leaders on those changes, directs the appropriate areas to implement or amend policies, standards, procedures and/or processes to address regulatory requirements, and challenges the implementation plan as needed; maintains a comprehensive regulatory inventory
• Identifies, aggregates, reports, escalates, inspects and challenges remediation plans, and performs thematic analysis on FLU/CF-owned issues and control enhancements
• Ensures C&OR “owned” issues and control enhancements are identified and addressed appropriately and timely
• Contributes to or leads development of risk coverage plans, executes and / or oversees execution of monitoring, testing and risk assessments, and communicates results
• Reviews and challenges the FLU/CF process, risk, control (PRC) inventory and FLU/CF Risk & Control Self-Assessment (RCSA) related to EAC themes or trends
• Reviews and challenges internal and external operational loss events, including development of remediation plans to strengthen controls, and approves where appropriate
• Participates in Scenario Analysis activities for coverage areas and challenges as appropriate
• Ensures metrics are designed to measure key risks and control performance, monitors and reports on metric performance and breach remediation

This role will be focused on oversight of the Enterprise Third Party program from a compliance and operational risk perspective. The role will focus on key performance aspects of Enterprise Third Party program to assess compliance with applicable guidance from the OCC. Key activities include monitoring, testing, execution of targeted assessments, governance and oversight. The role may also require periodic engagement with regulators and regulatory exams.

Activities this role performs for their area of coverage include but are not limited to:
• Create and manage a global coverage plan which defines the scope and focus of the second line’s risk management activities.
• Helps establish, monitor and report on enterprise risk tolerance metric(s) that are translated and connected to relevant business metrics (Key Risk Indicators).
• Monitor regulatory environment and participate in industry forums to identify areas of focus and conduct benchmarking.
• Create and maintain a regulatory inventory, communicate regulatory changes to and engage the FLU/CF in assessing impacts of regulatory changes for enterprise area of coverage.
• Develop and maintain relevant policies or review relevant FLU / CF policies to ensure they reflect regulatory and operational risk requirements.
• Advise and direct business leaders through the FLU/CF C&OR officers to ensure that regulatory requirements are addressed in their respective procedures and controls so that their daily activities operate in a compliant manner.
• Conduct and contribute to annual and targeted risk assessments.
• Review and analyze aggregate results of FLU/CFs’ Risk and Control Self-Assessments (RCSA) for EAC-specific themes and trends.
• Create and manage monitoring and testing coverage plans and related metrics.
• Monitor and test the effectiveness of the FLU and CF’s processes and compliance and operational risk controls.
• Identify, aggregate, report and escalate risks, issues and control enhancements and ensure the C&OR officers for the FLU/CF are aware of issues.
• Review and analyze internal and external losses related to their area of coverage for enterprise-wide themes; escalate concerns or loss exposures as appropriate.
• Lead or contribute to Scenario Analysis activities to provide a forward-looking estimate of hypothetical operational losses.
• Execute governance and management routines.
• Identify regulatory training needs, provide subject matter expertise to support development of training curriculum, and inspect FLU/CF.
• Advise Risk peers and business leaders in preparations for and participation in regulatory exams and audits. Prepare and participate in EAC-specific exams and audits.
• Inspect that gap closure plans and commitments made regarding actions in response to Matters Requiring Attention (“MRAs”) and other actions are completed.
• Escalate regulatory relations concerns to EAC C&OR Executive.
• Ensure Compliance and Operational Risk “owned” issues (i.e., Internal Audit, Regulator and Self-Identified issues) are addressed appropriately and timely.

The EAC Compliance & Operational Risk Manager plans, drives and reviews team deliverables to support consistent quality of activities, processes and outputs. This role may contribute as a manager responsible for providing leadership direction to attract, assess, develop, motivate and retain a team, or may act as an individual contributor.

Required Skills: Minimum Years of Business & Functional Experience: 7 years
Degree Required: Bachelor’s Degree or Equivalent experience

Desired Skills: In depth knowledge of or certification in law, rule, regulation or area of coverage (ie: SCRA, Privacy); Desired: Association of Privacy Professional (IAPP) accredited certification programs for Privacy EAC

Shift:

1st shift (United States of America)

Hours Per Week: 

40

Learn more about this role

Full time

JR-22039760

Band: H4

Manages People: No

Travel: No

Manager:

Talent Acquisition Contact:

Alexander Watkins

Referral Bonus:

0