• Risk Officer

    Job Location US-MA-Brockton
    Job ID
    Position Type
    Officer Full-Time
    Enterprise Risk [001100]
  • Overview

    This role will support the Enterprise Risk Department, specifically in the Information Security/Risk Management space.  This position requires the individual to coordinate across all business lines to assist in the identification, monitoring, and reporting of risks taken throughout the institution.




    Work with the ISO overseeing the Vendor Management program, including leading the project to centralize the process, ensuring all vendors are properly risk rated and captured in the vendor management software. Working closely with each Business System Administrator to ensure proper management of vendors through the entire vendor life cycle to include the following;


    • Vendor Due Diligence – New vendor onboarding and selection requirements
    • Ongoing Monitoring – Oversight and completion of monitoring tasks associated to each vendor in accordance to Vendor Policy and changes to regulations as applicable.
    • Separation/Termination – Ensure the vendor relationship is terminated properly and timely as to avoid any negative impact on the bank and customers.Managing Relationships - Effective management of relationship with external partners is integral in ensuring continued service delivery. Documentation – Maintain proper vendor materials and record keeping.
    • Audit – Support internal and external audit requests as they relate to vendor management.
    • Compliance – Ensure the Vendor Management program is in compliance with the Bank’s Policies and GLBA requirements.
    • Monitoring Contractual Agreements – Ensure SLA’s, Terms and agreements and termination details are closely tracked.
    • Problem Resolution – Responsible for troubleshooting all vendor management problems. This will require working as a liaison between the business unit and vendor.
    • Reporting – Continuous reporting on the status of the Bank’s third party relationships to the appropriate committees; Operational Risk Committee and Risk Management Committee as applicable.
    • Manage the tracking of Customer Information to ensure proper controls are in place to safeguard all non-public personal information.


    Technology Risk Assessments:

    • Under direction of the ISO, this candidate will assist with the planning, coordination and participate in administering the risk management program in accordance with GLBA
    • Work with the ISO, in conjunction with departmental system administrators, to ensure IT risk assessments are completed and reviewed.
    • Perform periodic compliance reviews, risk assessments and control testing.
    • Assist with reporting Technology Risk assessment results on a monthly, quarterly and annual basis in accordance with GLBA
    • Control Self Assessments of systems.
    • Testing of key controls.

    Other Responsibilities include:

    • Assist ISO, with the maintenance and creation of policies and standards to ensure they are current and appropriate.
    • Assist ISO with oversight of Information Security Awareness/Cybersecurity Training and testing as prescribed by GLBA.
    • Assist with internal and external audits remediation responses to satisfy any audit findings. As needed.
    • Assist in the tracking of open IT and Risk audit/exam items and the validation of corrective actions taken by the business units, as applicable.
    • Other duties as assigned.


    Job Knowledge: Maintain an excellent understanding of applicable laws and regulations, such as GLBA and FFIEC Guidelines. Understanding of Risk Management methodology and industry frameworks. Maintain an up to date understanding of Bank policies and procedures.




    Education and/or Experience:

          Bachelor’s Degree required; previous experience in banking a plus.  Knowledge of banking products, services, policies, procedures and regulations. Previous Risk Management experience.


          Communication Skills:

          Ability to write detailed but concise analysis on a variety of banking areas and prepare Board-level presentations. Ability to conduct meeting with all levels of bank employees including senior management.  Ability to speak effectively with third parties to procure information.


    Analytical Skills:

    Ability to analyze a variety of situations and develop recommendations on the best course of action.


          Other Skills and Abilities

          Strong interpersonal communication and relational skills with the ability to effectively lead and work with individuals and groups at all organization levels; ability to work independently and as part of a team.  Excellent organizational and project management skills; sound judgment; initiative; flexibility; detail and results oriented.


    Computer Skills

         Proficient in Microsoft Office, including Word, Excel, Access, Outlook and PowerPoint.  Preferably in managing an Access database and ability to create formulas and pivot tables in Excel. Computer networking and security fundamentals.


    Physical Demands: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.


    While performing the duties of this Job, the employee is regularly required to use hands to finger, handle, or feel and talk or hear. The employee is frequently required to stand; walk; sit and reach with hands and arms. The employee is occasionally required to climb or balance and stoop, kneel, crouch, or crawl. The employee must occasionally lift and/or move up to 10 pounds. Specific vision abilities required by this job include close

    vision and distance vision.


    Work Environment: The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.


    The noise level in the work environment is usually moderate.



    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Connect With Us!

    Not ready to apply? Connect with us for general consideration.