Sign upLog in

Risk Program Administrator

Wollborg Michelson Recruiting

Sacramento, CA

Apply
JOB DETAILS
SKILLS
Administrative Skills, Analysis Skills, Auditing, Best Practices, Communication Skills, Computer Security, Computer Software, Contract Management, Customer Support/Service, Data Collection, Documentation, Establish Priorities, Financial Analysis, Identify Issues, Information/Data Security (InfoSec), Internet Security, Interpersonal Skills, Leadership, Legal, Management Reporting, Manual Dexterity, Materials Management, Metrics, Microsoft Excel, Microsoft Office, Microsoft Outlook, Microsoft PowerPoint, Microsoft Visio, Microsoft Word, Negotiation Skills, Office Equipment, Operations Management, Organizational Skills, Performance Metrics, Policy Development, Power BI, Presentation/Verbal Skills, Procedure Development, Process Development, Process Improvement, Process Management, Program Evaluation, Regulations, Reporting Skills, Research Skills, Risk, Risk Analysis, Risk Management, Risk Management Framework (RMF), Security Monitoring, ServiceNow, Team Player, Time Management, Vendor/Supplier Management, Writing Skills
LOCATION
Sacramento, CA
POSTED
1 day ago

Risk Program Administrator


Job Summary

The Risk Program Administrator supports the risk management framework as a key second line of defense. This role is responsible for administration, coordination, risk reporting, and control assurance activities that support information security, third-party risk, and regulatory exam readiness. The position executes established risk management processes, manages KRI/KPI reporting, monitoring, and issue management, and prepares audit and examination evidence in accordance with enterprise risk procedures. The role also develops new processes, detailed process maps, and manages departmental standards and procedures, as well as prepares and delivers management reporting and presentations for leadership and committees.

Responsibilities
  • Coordinate risk assessments with internal and external stakeholders.
  • Support risk appetite and tolerance tracking, including documentation and escalation thresholds for information security, third-party, and other risk areas.
  • Prepare materials for management-level committees such as risk management, technology, and information security.
  • Execute issue management processes and reporting for information security and third-party risk issues identified through operational risk methods.
  • Develop, maintain, and monitor KRIs/KPIs and related metrics;coordinate data collection from first line owners and validate submissions.
  • Respond to and prepare evidence for audit and examination requests;assist with management action plans and monitor open issues and conditions.
  • Challenge assumptions and perspectives on risk and recommend improvements to policies, procedures, and practices to mitigate risk.
  • Assist with preparation of risk committee materials, including reports and presentations on program effectiveness, risk levels, emerging risks, and status of risk and control issues.
  • Perform other duties to support enterprise risk management, including ad hoc analysis, deep-dive investigations, and special projects.
  • Support information security and third-party risk management leadership with departmental organization, task tracking, planning, and escalation support.
  • Maintain a thorough understanding of applicable laws, regulations, standards, frameworks, and practices relevant to information security and third-party risk programs.

Requirements
  • Bachelor s or master s degree.
  • At least five years of risk management experience in an analyst or specialist role, or equivalent experience in third-party/vendor management, cybersecurity, operations management, or program implementation.
  • Strong oral and written communication, presentation, research, and reporting skills.
  • Sufficient manual dexterity to operate a computer, software, and standard office equipment.
  • Ability to work effectively as part of a team.

Summary Qualification
  • Demonstrated knowledge of risk management programs, practices, and processes, with the ability to understand information security and third-party risk terminology.
  • Strong organizational skills with a high degree of initiative and ability to prioritize assignments and make timely decisions.
  • Knowledge of third-party agreement terms, contract frameworks, and contract management practices.
  • Knowledge of cybersecurity operations, frameworks, and information security management practices.
  • Strong analytical, problem-solving, and workflow analysis skills, with the ability to synthesize information from multiple sources.
  • Ability to apply judgment around industry best practices and make balanced risk/reward decisions.
  • Strong interpersonal and customer service skills, with the ability to negotiate, influence, and build collaborative relationships.
  • Ability to clearly communicate complex situations to management and executive audiences.
  • Proven ability to work effectively both independently and in a team environment.

Skills
  • Advanced proficiency in Microsoft Office (Word, Excel, Visio, Outlook, PowerPoint).
  • Experience with tools such as Power BI, ServiceNow, and Concur (preferred).
  • Strong process facilitation, process management, and process improvement skills.
  • Effective verbal, written, and presentation communication skills.
  • Ability to build, interpret, and maintain risk metrics, KRIs, and KPIs.


Wollborg Michelson Recruiting is an Equal Opportunity Employer and prohibits discrimination of any kind. We ensure job offers are made based of one s employment experience, skills, and qualifications, regardless of race, gender, ethnic origin, or any other classification protected by law. All applicants must furnish proper identification to prove their legal right to work in the US upon a job offer. We participate in E-Verify to confirm one s right to work in the US. Wollborg Michelson Recruiting does not provide sponsorship for an employment-based visa status.

About the Company

W

Wollborg Michelson Recruiting