Director, Enterprise Risk Management

Job Summary

The Director, Enterprise Risk Management serves as a leader within the Enterprise department.  The Director develops, oversee, and implement an organization-wide Enterprise risk management strategy that ensures the identification, assessment, and mitigation of risks that could negatively impact the organization’s ability to achieve its objectives. The Director evaluates and oversee vendor risks.  This position will drive reporting, presentations and education to executives and board members to communicate the status and nature of Enterprise risks at L.A. Care.  Additionally, the Director will lead business continuity planning efforts, including emergency response and crisis management.

This position oversees L.A. Care’s exception management process and other duties that support the mission and responsibilities of the Enterprise department.

Manages all aspects of running an efficient team, including hiring, supervising, coaching, training, disciplining, and motivating direct reports.

Duties

Risk Strategy Development and Implementation:

Develop and execute a comprehensive Enterprise risk management strategy aligned with the organization's objectives, including the creation of an enterprise annual Enterprise risk assessment.

Establish policies, frameworks, and processes for identifying, assessing, managing, and mitigating Enterprise risks across all business units, including the establishment and maintenance of enterprise risk tolerance.

Regularly update Enterprise risk assessments and profiles, presenting findings to the executive team and board of directors.

Oversee the management of ongoing issues.  Work with internal audit, legal, and Enterprise teams to address any organizational, regulatory or Enterprise risks.

Business Continuity Planning (BCP):

Lead the development and maintenance of the organization's Enterprise risk management business continuity plan.

Coordinate Enterprise risk management business impact analyses (BIAs) to identify critical business functions and resources.

Ensure regular testing and updating of business continuity and disaster recovery plans to minimize disruption during emergencies.

Provide training and guidance to departments on Enterprise risk management business continuity best practices.

Exceptions Management:

Establish an exceptions management process for handling Enterprise risk management deviations from established policies.

Review and evaluate Enterprise risk exceptions requests, ensuring they are justified, documented, and aligned with organizational risk tolerance.

Collaborate with business leaders to assess the potential impact of exceptions and implement compensating controls as needed.

Duties Continued

Vendor Risk Oversight:

Lead and oversee a comprehensive vendor risk management program to assess and monitor risks related to third-party relationships.

Oversee vendor due diligence processes, including risk assessments, contract reviews, and performance monitoring.

Ensure vendors comply with regulatory requirements and internal security and risk policies.

Monitor and mitigate potential risks arising from third-party vendors, ensuring they meet the organization’s risk and Enterprise standards.

Risk Monitoring and Reporting:

Establish key risk indicators (KRIs) and develop dashboards to monitor risk exposure across the organization.

Prepare and present regular reports to executive leadership on risk status, emerging threats, and mitigation strategies.

Provide timely risk assessments and recommendations to senior leadership for informed decision-making.

Team Leadership and Development:

Manage staff, including, but not limited to monitoring of day-to-day activities of staff, monitoring of staff performance, mentoring, training, and cross-training of staff, handling of questions or issues, etc. raised by staff, encourage staff to provide recommendations for relevant process and systems enhancements, among others.

Collaborate cross-functionally with business units to embed risk management into day-to-day decision-making.

Perform other duties as assigned.

Education Required

Education Preferred

Experience

At least 7 years of experience in risk management, including experience in business continuity planning and vendor risk management.

At least 5 years of experience of leading, supervising and/or managing staff.

Demonstrated ability and experience in ensuring adherence to legal and ethical standards within the organization.

Skills

Required:

Proven Leadership with the ability to manage cross-functional teams and drive organizational change.

Excellent analytical, problem solving, and decision-making skills.

Strong communication skills with the ability to present complex risk concepts to executive leadership and board members.

Strong ability to organize tasks, managing timelines and allocating resources to complete projects successfully.

Demonstrated ability to respond quickly to changing circumstances and adapting to new situations.

Demonstrated ability and understanding of financial statements and making informed business decisions based on financial data.

Preferred:

Strong knowledge of risk management frameworks, regulatory requirements, and best practices

Licenses/Certifications Required

Licenses/Certifications Preferred

Required Training

Physical Requirements

Additional Information