VP of Risk Management

Come Join Heritage Financial Credit Union as Vice President of Risk Management

Are you an experienced risk management leader passionate about driving growth while safeguarding the future in the banking/credit union space?

We’re looking for a strategic visionary to take the lead as the Vice President of Risk Management and head the Credit Union's Enterprise Risk Management program. In this pivotal role, you’ll play an essential part in shaping a comprehensive risk framework that not only protects our financial health, reputation, and regulatory standing but also fuels our mission to empower members and foster growth.

Position Purpose

The Vice President of Risk Management leads the Credit Union’s Enterprise Risk Management program, ensuring a comprehensive, forward‑looking risk framework that protects the organization's financial strength, reputation, and regulatory standing. This role provides strategic leadership of operational, regulatory, vendor, liquidity, and strategic risks, aligning them with the Credit Union’s growth objectives and member‑focused mission.

The VP of Risk Management guides policy and procedure changes, strengthens internal controls, supports training and risk awareness initiatives, streamlines processes, mentors staff, and promotes a proactive risk culture throughout the organization. This position is a member of the Senior Management team and advises on emerging risk, supporting the Credit Union in establishing controls to mitigate identified risks.

The role reports to the CFO and serves as a strategic advisor to Executive Management, overseeing Risk, Compliance, Vendor Management, and Legal functions. It partners with key leaders on Business Continuity, Cybersecurity, and Data Governance initiatives.

Enterprise Risk Management

• Lead the development, implementation, and continuous enhancement of the Credit Union’s Enterprise Risk Management framework, including operational, regulatory, vendor, physical security, and strategic risk components.
• Establish and maintain risk assessment methodologies that identify, evaluate, and monitor enterprise‑wide risk exposures.
• Develop tools, processes, and reporting mechanisms that allow leadership to measure, monitor, and communicate risk across the organization.
• Ensure alignment of risk‑management practices with regulatory expectations and industry best practices.
• Support the Credit Union’s ability to responsibly innovate, expand services, and deepen community relationships while maintaining a safe and sound operating environment.

Risk Identification, Monitoring & Reporting

• Partner with business leaders to identify, assess, aggregate, and document risks and controls across operational areas, including new or modified products, services, delivery channels, regulatory requirements, and third‑party relationships.
• Evaluate operational and strategic risks associated with new products, services, delivery channels, and partnerships to ensure responsible introduction and continued value to members.
• Monitor key risk indicators and performance metrics to identify emerging trends or potential exposure areas.
• Communicate risk assessment results and recommendations to executive leadership, governance committees, and business unit leaders.
• Support the development and execution of stress testing and contingency planning activities in coordination with relevant departments.

Governance, Policy & Internal Controls

• Recommend and guide policy and procedural changes that strengthen the Credit Union’s internal control environment and risk posture.
• Ensure enterprise policies and risk‑management practices remain aligned with regulatory guidance and organizational strategy.
• Collaborate with Information Technology leadership to strengthen cybersecurity controls and support data governance initiatives.
• Support enterprise governance practices that reinforce the Credit Union’s fiduciary responsibility to safeguard member assets and maintain institutional stability.

Organizational Risk Advisory

• Serve as a consultative partner to executive and senior leadership in evaluating business risks and implementing appropriate mitigation strategies.
• Provide guidance to business units in identifying, evaluating, and managing operational and regulatory risks.
• Provide risk advisory support for major initiatives including system implementations, vendor management initiatives, strategic projects, and potential mergers or acquisitions.
• Balance prudent risk management with the Credit Union’s mission to deliver accessible financial services and meaningful value to membership and communities.

Regulatory & External Coordination

• Act as liaison between the Credit Union and regulatory agencies regarding enterprise risk‑management matters.
• Support regulatory examinations and provide guidance to management on regulatory risk expectations.
• Assist leadership in maintaining a risk governance framework consistent with regulatory expectations and sound financial institution practices.

Leadership & Risk Culture

• Promote a strong and proactive risk culture throughout the organization through education, communication, and collaboration.
• Encourage an organizational understanding that effective risk management strengthens the Credit Union’s ability to serve members and sustain long‑term community impact.
• Coordinate training initiatives to strengthen organizational awareness of risk‑management principles and responsibilities.
• Build strong working relationships across departments to facilitate effective risk identification and resolution.
• Provide leadership and development support to staff within the Risk Management and Compliance functions.

Qualifications

Education/Certification: 4‑year college degree preferred plus 5‑10 years of experience in bank compliance, security, AML/BSA/Fraud, and cybersecurity, or a comparable combination of education and experience. Preferred certifications include Certified Fraud Examiner (CFE), Association of Certified Anti‑Money Laundering Specialist (ACAMS), or Certified Information Security Manager (CISM).

Knowledge: Comprehensive knowledge of the federal regulatory framework governing federally chartered credit unions, including the Federal Credit Union Act, NCUA rules and regulations, and the CAMEL(S) rating system. Fluency in key consumer compliance laws (BSA/AML, OFAC, TILA, ECOA, FCRA, TISA) and NCUA prudential risk guidelines covering interest rate, liquidity, and concentration risk. Familiarity with NCUA’s Prompt Corrective Action (PCA) framework, Supervisory Committee requirements, and applicable Dodd‑Frank provisions is required.

Working knowledge of FFIEC cybersecurity guidance, third‑party vendor management expectations, and model risk‑management best practices is essential. Experience navigating NCUA examinations is essential.

Experience: Excellent communication and influence skills to clearly convey complex information verbally and in writing. Report, presentation, and group facilitation abilities; strong professional relationship building; and networking internally and externally. Experience providing leadership and influential oversight of others.

Skills/Abilities: Maintain a professional appearance and positive attitude at all times.

Salary & Benefits

Salary: $157,000 – $175,000 annually, based on experience.

• Paid Time Off & Paid Federal Holidays
• Medical, Dental, Vision & Life Insurance
• Employee Assistance Program
• Flexible Spending Accounts (FSA)/Health Savings Accounts (HSA)
• Supplemental Benefits: Critical Illness Care, Identity Theft Protection, Pet Insurance, Legal Services
• BenefitsPlus+ perks program (travel, entertainment, gift cards and more)
• CareNet – benefits concierge service
• 401(k) with 5% Employer Match
• Educational Assistance
• Paid Time to Volunteer
• HFCU Logo‑wear for employees

Equal Opportunity Statement

Employment at our Credit Union is based upon merit, ability, and qualifications. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected status.