Responsible for developing, implementing and monitoring a risk-based program to identify, assess and mitigate any operational risk that arises from inadequate or failed internal processes, people, systems or external events, while maintaining a balance between risk mitigation and operational efficiency.
May provide oversight to an operational risk program. Works with assigned business units and provides operational risk expertise and consulting for projects and initiatives with moderate to high risk. May provide senior-level support for systems security-related issues.
Develops testing strategies and methodologies; evaluates the adequacy and effectiveness of policies, procedures, processes, systems and internal controls; analyzes business and/or systems changes to determine impact;
identifies and assesses operational risk issues and assigns risk ratings consistent with established policy standards. Consults with business to develop corrective action plans and effectively manage change. Identifies training opportunities; may design/coordinate the development of training materials and delivers training.
Reports findings and drafts recommendations to mitigate risk to operational risk and business line management. Coordinates production of periodic operational risk performance reports for senior management, including trend analysis and recommended strategies.
May manage project teams and provide guidance to less experience specialists/consultants.