Apply on Employer Site

CBB Bank - Commonwealth Business Bank · 1 day ago

FVP Enterprise Risk Lead

Los Angeles, CA

Full-time

Onsite

Senior Level, Lead/Staff

$100K/yr - $120K/yr

10+ years exp

CBB Bank is seeking an Enterprise Risk Lead (FVP) to partner with the CRO in designing and overseeing the Bank’s Enterprise Risk Management framework. This role involves providing expertise across various risk disciplines, ensuring compliance with regulatory requirements, and promoting a strong risk culture within the organization.

BankingCommercial LendingFinancial Services

Responsibilities

Assist the CRO with the development, implementation, and continuous improvement of the ERM framework

Coordinate enterprise-wide risk assessments and maintain risk appetite statements

Prepare risk dashboards, heat maps, and reports to senior management and the Board

Assist the CRO with the risk governance processes, including policy development and compliance monitoring

Ensure timely remediation of findings and maintain strong relationships with regulators

Promote a strong risk and compliance culture across the organization

Direct QA reviews for BSA/AML compliance programs to ensure adherence to regulatory standards

Identify systemic issues and recommend corrective actions

Collaborate with Audit teams on remediation efforts

Own the Bank’s BCP program, including policy updates, scenario planning, and resilience strategies

Coordinate annual testing exercises and ensure readiness for operational disruptions

Provide guidance to business units on continuity planning and disaster recovery

Support the CRO in monitoring compliance with applicable laws, regulations, and internal policies

Review and update compliance-related policies and procedures to ensure alignment with regulatory changes

Partner with Compliance and Internal Audit teams to address findings and implement corrective actions

Provide guidance on regulatory requirements during product development and operational changes

Support the CRO in monitoring the Bank’s Information Security Risk Management program in coordination with IT Security

Ensure compliance with FFIEC cybersecurity guidelines and other regulatory requirements

Review and report on cyber risk metrics, vulnerability assessments, and incident response readiness

Participate in cybersecurity risk assessments and ensure remediation of identified risks

Support development of security awareness training for employees

Maintain the Bank’s Model Risk Management framework in compliance with regulatory guidance (e.g., SR 11-7)

Review model inventory, validation, and performance monitoring processes

Coordinate independent model validations and ensure timely remediation of findings

Prepare model risk reports for senior management and regulators

Work with business units to ensure proper documentation, governance, and approval of models

Prepare comprehensive risk and compliance reports for executive leadership, committees, and regulators

Drive continuous improvement in risk processes, controls, and reporting

Chair or actively participate in risk-related committees (e.g., Enterprise Risk Committee, Vendor Risk Committee)

Oversee vendor risk assessments, onboarding, and ongoing monitoring

Ensure compliance with internal policies and regulatory requirements for outsourcing

Partner with Procurement and Legal to mitigate third-party risks

Develop and deliver risk and compliance training programs for staff and management

Comply fully with all Bank policies and procedures

Qualification

Enterprise Risk ManagementComplianceBusiness Continuity PlanningRisk ReportingData Analysis ToolsRisk Management SystemsCertifications CRCMCertifications CAMSCertifications etc.Analytical SkillsCommunication SkillsLeadership SkillsOrganizational SkillsCollaboration Skills

Required

Bachelor's degree from accredited 4-year University desired or

Minimum of 10 years' progressive experience in Enterprise Risk Management, Operational Risk, Compliance, Audit, or related risk disciplines within a financial institution

Maintain the highest standards of confidentiality, integrity, and information security across all risk domains

Strong analytical and critical‑thinking skills, ability to assess complex risk issues and develop actionable solutions

Excellent written and verbal communication skills, with the ability to prepare executive‑level reports and present to senior management and regulatory bodies

Demonstrated ability to manage multiple concurrent initiatives and operate effectively in a fast‑paced, evolving regulatory environment

Strong organizational skills with the ability to prioritize tasks, exercise sound judgment, and make risk‑based decisions

Advanced proficiency in risk management systems, data analysis tools, and Microsoft Office applications (Excel, PowerPoint, Word)

Ability to collaborate and influence across departments, including IT, Compliance, Audit, and business lines

Strong leadership capabilities with the ability to guide cross‑functional teams and promote a culture of risk awareness and accountability

Preferred

Preferred certifications (not required but highly beneficial): CRCM, CAMS, CRMA, CISA, CIA, CISM, CISSP, FRM, or similar risk/compliance/security designation