Operational Risk Director

Operational Risk Director

Our mission is to SAVE AND IMPROVE LIVES BY EMPOWERING HEALTHCARE CONSUMERS. Come be part of remarkable.

Overview

How you can make a difference HealthEquity's Enterprise Risk Management (ERM) Team leads delivery of the firm's ERM Program, which works with teams firmwide, to manage (i.e., identify, assess, mitigate, and monitor) significant risks facing HealthEquity. ERM sits alongside Corporate Compliance. The two comprise HealthEquity's second line of defense. The ERM Team is looking to hire an Operational Risk Director / Sr Manager to continue the program's development and implementation. Bringing significant operational risk expertise, with experience managing technology, product, change, and business risks, the role is central to the success of the program. The Operational Risk Director / Sr Manager will work closely with the Chief Risk and Compliance Officer, Risk Analytics Director, and Business Resilience Director to lead the continued build-out and implementation of the ERM Program (through leadership of risk assessments and implementation of the enterprise risk taxonomy, risk appetite, key risk indicators, etc. all with a focus on operational risks). The Operational Risk Director / Sr Manager will liaise with senior and executive leadership firmwide, operational risk owners, and external consultants (as needed). This role will require deep operational risk subject-matter expertise / experience; strong critical thinking and communication skills; and the ability to learn and absorb new content and navigate ambiguity.

What you'll be doing

Leads, and is accountable for, the Second Line's (business leadership) approach to operational risk with focus on technology, product, change management, and business risks, and leading corporate wide strategy and implementation.

• Provide and apply field expertise to partner and challenge the organization's Technology, Product, IT, Security, Operations, and Strategy teams, when necessary, guided by a deep knowledge of the infrastructure, tools, and operating environments they work within.
• Apply industry best practice knowledge in the development and implementation of programs to build functional maturation, with a focus on operational risk (e.g., policies / standards / procedures; processes for risk identification, assessment, mitigation, monitoring; risk register; risk appetite; risk acceptances; key risk indicators; reporting to management / board)
• Accountable for operational risk dashboards to support dynamic risk monitoring and reporting
• Lead data-driven risk assessments on significant, complex risks (including modeling of risks to understand all parameters, worst case outcomes, etc.) and contribute to risk mitigation planning
• Engage leadership throughout the organization to enhance internal processes and champion continuous improvement in risk management
• Align the ERM Program with annual strategic planning, budgeting, enterprise project prioritization, decision support, 10-K risk identification, etc.
• Build and maintain a strong collaborative relationship between ERM, Compliance and Internal Audit team

What you will need to be successful

Advanced degree (e.g., PhD, MBA, JD) in a relevant field (e.g., risk management, business, finance, technology)

8-12 years of experience in risk management, including deep demonstrable expertise with operational risk management (product / IT / security / privacy / financial crime / etc.)

Experience using GRC tools and governance platforms (e.g., Archer, ServiceNow, or similar)

Experience using reporting and data visualization tools (e.g., PowerBI, Tableau)

Experience working in a regulated financial services entity (e.g., bank, brokerage firm, investment advisor [institutional] or consulting firm)