Vice President - Risk & Control Self-Assessment (RCSA)

If you are motivated and believe in the credit union philosophy of "People Helping People," join our team!

The Risk & Control Self-Assessment (RCSA) Vice President plays a critical role in the implementation, refinement, and ongoing execution of the enterprise RCSA program. This position will support the rollout of the program across business units, helping translate established methodology and standards into consistent, high-quality execution.

While the RCSA framework and foundational design are being established, this role will provide meaningful input into select areas of program development, including methodology enhancements, documentation standards, facilitation approach, and reporting. The Manager will partner closely with business units, risk partners, and leadership to facilitate assessments, provide credible challenge, and ensure outputs are aligned with program expectations.

This role is critical to driving adoption of the RCSA program, improving the consistency and quality of risk and control documentation, and helping mature the organization’s ability to identify, assess, and manage operational risk. The position requires strong knowledge of risk and control concepts, the ability to influence stakeholders, and the capability to operate effectively in an evolving program environment.

Essential Responsibilities:

• (25%) Assessment Facilitation & Credible Challenge: Lead and facilitate RCSA engagements with business units, including risk identification, control identification, control effectiveness assessments, residual risk evaluation, and documentation of results. Provide effective challenge to ensure assessments are complete, supported, and aligned with program standards. Help drive consistency in how business units articulate risks, controls, weaknesses, and proposed mitigation activities.
• (20%) RCSA Program Implementation & Adoption: Support the rollout of the RCSA program across the organization by translating established methodology into practical execution. Reinforce expectations, drive adherence to timelines, and support business units in adopting RCSA practices into their ongoing risk management activities.
• (15%) Reporting, Analysis & Program Monitoring: Prepare and support reporting on RCSA execution, key themes, emerging trends, assessment results, and program maturity. Responsibilities include analyzing results across business units, identifying common control gaps or risk themes, monitoring completion status, and helping develop management reporting for leadership committees and executive stakeholders.
• (15%) Governance, Standards & Quality Assurance: Support the establishment and maintenance of governance and quality assurance practices for the RCSA program. Responsibilities include reviewing completed assessments for completeness and quality, identifying documentation deficiencies, ensuring alignment with program standards, and recommending enhancements to improve consistency, usability, and value of the process.
• (10%) Risk & Control Framework Support: Partner with business units and risk partners to support the development and refinement of risk and control inventories, process documentation, and alignment to enterprise taxonomies. Responsibilities include helping ensure risks and controls are documented in a clear, structured manner and that RCSA outputs can support broader risk management activities and reporting.
• (10%) Collaboration, Stakeholder Support & Training: Provide day-to-day guidance to business units and stakeholders regarding RCSA methodology, expectations, and documentation standards. Responsibilities include supporting meetings, workshops, and training efforts; responding to questions; reinforcing roles and responsibilities; and helping foster broader understanding of risk and control self-assessment expectations across the organization.
• (5%) System & Tool Enablement: Support implementation and ongoing enhancement of systems and tools used to document, track, and report RCSA activities. Responsibilities may include partnering on Archer or other GRC system requirements, helping define workflow expectations, validating data quality, and supporting continuous improvement of the RCSA recordkeeping and reporting process.

Required Education & Experience (Knowledge, Skills, & Abilities):

• Bachelor’s degree in business, finance, risk management, accounting, or related field (or equivalent work experience)
• 5–8 years of relevant experience in operational risk management, enterprise risk management, controls, audit, compliance, process improvement, or related field.
• Strong understanding of risk and control concepts, including inherent risk, residual risk, control design, control performance, and control gaps.
• Experience facilitating or supporting risk assessments, control assessments, process reviews, audits, or related risk management activities.
• Ability to evaluate business processes, identify risks and controls, and challenge documentation for clarity, completeness, and logic.
• Strong written and verbal communication skills, including the ability to translate complex concepts into practical guidance and concise documentation.
• Ability to build structure, manage multiple priorities, and work effectively in a developing program environment.
• Strong analytical, organizational, and stakeholder management skills with the ability to influence across all levels of the organization.

Preferred Education & Experience (Knowledge, Skills, & Abilities):

• Experience helping build or mature an RCSA program or similar enterprise risk management process.

• Experience in a financial institution, credit union, bank, or other regulated environment.
• Familiarity with operational risk frameworks, internal control frameworks, and governance practices.
• Experience using Archer or another GRC platform to support risk and control documentation, workflow, and reporting.
• Experience developing procedures, templates, training materials, dashboards, or management reporting.
• Familiarity with risk taxonomies, process inventories, control inventories, and issue management integration.

Job Environment & Physical Requirements:

• Hybrid work environment that supports a mix of in-office and remote work, with periodic in-person collaboration based on team or business needs.
• Prolonged periods of sitting at a desk and working on a computer.
• Ability to work independently and manage multiple tasks or projects with minimal supervision.

SECU provides equal employment opportunity to all qualified persons regardless of race, color, religion, age, sex, sexual orientation, gender identity, national origin, genetic information, disability, veteran status, or other classification protected by law.

Disclaimer

State Employees' Credit Union reserves the right to fill this role at a higher/lower level based on business need.