Vender/Operational Risk Management Administor

First Heritage Federal Credit Union is a leading employer and financial institution in the communities served, dedicated to both the success and financial well-being of our members and team members. We are a strong, growing, dynamic organization, operating nine full-service local locations, with total assets of $700 million. First Heritage is dedicated to being an employer of choice, offering a competitive salary, generous 401k contributions and health, vision and dental plans. We also offer an array of options to continue your professional growth and development including an educational assistance program as well as supporting our team members to participate in external and internal leadership programs. We believe that supporting and empowering our team members in their personal growth is key to happiness and success, which in turn is passed on to our members and the community.

Serve as the administrator for the Credit Union’s Vendor Management Program, with responsibility for researching, developing, and implementing appropriate tools and processes to identify, assess, report, and monitor vendor risks across the Credit Union and in various business and strategic initiatives. Responsible for implementing, maintaining, and administrating the Vendor Management Program of the Credit Union which is a component of the organization’s Enterprise Risk Management Program. Ensures that identified risk exposures are properly mitigated, and appropriate risk action plans are implemented throughout the organization.

Major Duties and Responsibilities

Develops and performs risk assessments on third-party service provider relationships in compliance with the Vendor Management Program to ensure the organization maintains strong working relationships that benefits the Credit Union and that risks associated with vendor relationships are identified and mitigated to the appropriate extent possible.

Works with the Chief Risk Officer to provide subject matter expertise in the creation, implementation, and maintenance of appropriate enterprise risk management tools, policies, and procedures to be compliant with applicable rules and regulations and industry best practices. Proposes updates to management regarding vendor management policies and procedures to ensure compliance and best practices. Communicates information to Board, management, and auditors/examiners, as necessary.

Ensures appropriate and well-managed third-party vendor relationships are maintained across the organization. Ensures that appropriate due diligence is exercised in all phases of third-party relationships, from onboarding to vendor termination. Along with management (vendor owners), evaluate that service providers are performing in accordance with contract terms and service agreements.

Ensures thorough documentation is maintained for all vendor as defined in the Vendor Management Policy and is reviewed on a routine basis for continual compliance. Coordinate ongoing vendor due diligence reviews of existing vendors based on vendor criticality and ensure that appropriate due diligence reviews are conducted as required based on vendor risk rating.

Identify and review user access permissions of all systems used across all business units of the organization to ensure accurate user access provisioning is maintained.

Lead the Vendor Management Committee with responsibility for meeting facilitation, preparation of agenda, discussion material, and minutes. Prepares and analyzes reports for management regarding the Vendor Management Program.

Performs periodic risk assessment as part of the Enterprise Risk Management Program, with an emphasis on operational risk.

Must comply with all company policies and procedures, applicable laws and regulations, including but not limited to, the Bank Secrecy Act, the Patriot Act, and the Office of Foreign Assets Control.

Knowledge and Skills

Experience

Requires a CRVPM certification or the ability to acquire one. Minimum Two to Five years of similar financial services related experience, including time spent in preparatory positions.

Education/Certifications/Licenses

Degree in business administration or related field preferred or equivalent combination of training and experience

Interpersonal Skills

A significant level of trust, credibility and diplomacy is required. In-depth dialogue, conversations and explanations with customers, direct and indirect reports and outside vendors can be of a sensitive and/or highly confidential nature. Ability to communicate information of significance in a manner that is easily understood by all areas and levels of management, Board of Directors, auditors and regulatory examiners. Communications may involve motivating, influencing, educating, and/or advising others on matters of significance. Strong interpersonal and project management skills. Solid analytical, organizational, problem-solving skills.

Compensation: Actual compensation figures are based on a number of factors including work experience, relevant skills and training, and if applicable, licenses or certifications. In addition, First Heritage offers a very strong benefits package as well as multiple position levels to allow growth and earnings potential.

Physical Requirements:

Is able to bend, sit, and stand in order to perform primarily sedentary work with limited physical exertion and occasional lifting of up to 10 lbs. Must be capable of climbing/descending stairs in an emergency situation. Must be able to operate routine office equipment including computer terminals and keyboards, telephones, copiers, facsimiles, and calculators. Must be able to routinely perform work on computer for an average of 6-8 hours per day, when necessary. Must be able to work extended hours or travel off site whenever required or requested by management. Must be capable of regular, reliable and timely attendance.

Working Conditions

Must be able to routinely perform work indoors in climate-controlled shared work area with minimal noise and with the ability to work independently with minimal supervision.

Mental and/or Emotional Requirements

Must be able to perform job functions independently or with limited supervision and work effectively either on own or as part of a team. Must be able to read and carry out various written instructions and follow oral instructions. Must be able to complete basic mathematical calculations, spell accurately, and understand computer basics. Must be able to speak clearly and deliver information in a logical and understandable sequence. Must be capable of dealing calmly and professionally with numerous different personalities from diverse cultures at various levels within and outside of the organization and demonstrate highest levels of customer service and discretion when dealing with the public. Must be able to perform responsibilities with composure under the stress of deadlines / requirements for extreme accuracy and quality and/or fast pace. Must be able to effectively handle multiple, simultaneous, and changing priorities. Must be capable of exercising the highest level of discretion on both internal and external confidential matters.