University (Degree) Preferred Physical Requirements: Sedentary Work Career Level: 7IC
Senior Operational Risk Officer
Location
United States
Posted
1 day ago
Salary
0
Seniority
Senior
No structured requirement data.
Job Description
Senior Operational Risk Officer
EverBank
Role Description The Operational Risk Officer Sr is responsible for executing key oversight activities that support the bank's risk management framework. This role will coordinate risk governance processes, facilitate enterprise-wide oversight forums, and drive execution of risk appetite monitoring and validation, regulatory exam support, and issue validation. The ideal candidate has strong organizational and communication skills and a solid understanding of banking risks and regulatory expectations. - Maintains risk management programs and support risk committees. - May perform additional duties through expertise in a specific area of operational risk such as information technology, cybersecurity, fraud risk management, issue or incident management, or investigations. - Participates in process improvement initiatives to enhance risk oversight effectiveness. - Collaborates with business lines and second line risk functions to ensure alignment with the bank’s risk management program. - Coordinates Risk Management’s response to regulatory exams, internal audits, and supervisory reviews. - Supports the remediation and documentation of regulatory findings. Tracks and manages exam deliverables, data requests, and pre/post-exam communications. - Leads the collection, validation, and analysis of risk appetite metrics. Prepares dashboards and reporting packages for senior management and board committees. - Supports periodic updates and enhancements to the risk appetite framework and thresholds. Tracks committee decisions and ensures follow-up actions are documented and executed. - Familiarity with OCC Heightened Standards and other relevant banking regulations. - Provides guidance and coaching to risk officers and analysts. Represents risk management leadership and provides credible challenge to bank management through quantitative analysis and superior oral and written communication skills. Qualifications - 5 years of experience in Enterprise Risk Management. - Prior experience supporting a large bank or financial institution. Requirements - 7+ years of experience in ERM (Preferred). - Advanced understanding of ERM Frameworks and concepts (Preferred). - Knowledge of OCC regulations (Preferred). - Strong GRC platform experience (Preferred). - Previous Project Management experience (Preferred). - Data Analytics background - Power BI and Tableau is a plus (Preferred). Benefits - Physical Requirements: Sedentary Work. Company Description Posting end date - 7/13/26
Related Guides
Related Categories
Related Job Pages
More Risk Jobs
• Own complex fraud investigations from end to end • Operate as the senior-most investigative authority • Partner with Compliance, Product, Engineering, and Data teams • Represent fraud findings directly to leadership • Act as senior investigative lead during fraud incidents • Drive fraud rule, threshold, and control changes • Use SQL/Databricks for data analysis behind investigations
DFIR Specialist, Cyber Security Risk Management
Community Health Systems Professional Services CorporationCommunity Health Systems is one of the nation's leading healthcare providers. With healthcare delivery systems in 36 distinct markets across 14 states, CHS operates 69 affiliated hospitals with more than 10,000 beds and approximately 1,000 other sites of care, including physician practices, urgent care centers, freestanding emergency departments, imaging centers, cancer centers, and ambulatory surgery centers.
Role Description As an Incident Response Specialist, you will leverage your extensive expertise in digital forensics, incident handling, and crisis management to lead the containment, mitigation, and resolution of advanced security incidents across the organization’s enterprise environment. This role is responsible for the end-to-end lifecycle of security incidents, including: - Coordinating cross-functional response efforts - Performing deep-dive forensic analysis - Engineering strategic containment strategies to minimize business impact You will serve as a technical leader with deep hands-on proficiency in host, network, and cloud forensics, applying incident response best practices to drastically reduce mean time to respond and remediate. This role requires exceptional analytical, problem-solving, and decisive communication skills, allowing you to: - Translate complex technical findings into actionable remediation plans for executive leadership - Work closely with Detection Engineering, Threat Intelligence, and key partners across the organization to ensure an integrated, proactive defense - Work independently with minimal supervision - Take ownership of security incidents - Provide technical mentorship and training to team members You will play a key role in shaping the organization's incident response strategy, execution of tabletop exercises, ensuring operational resiliency, and continuously hardening the organization’s overall security posture. Qualifications - H.S. Diploma or GED required - Associate Degree or Bachelor’s Degree in Cyber Security, Computer Science, Information Systems, or related field preferred - 5+ years of IT or Information Security experience, including 3+ years in Digital Forensics and Incident Response - Familiarity with MITRE ATT&CK, Cyber Kill Chain, and other threat modeling frameworks preferred - Experience in scripting, automation (e.g., Python, PowerShell), and AI for security operations preferred Requirements - Perform advanced digital forensics and incident analysis, including host, network, memory, and log analysis, to determine the root cause, scope, and impact of security breaches - Act as the primary technical incident commander during major security events, coordinating cross-functional teams, communication channels, and executive updates - Develop, govern, and continuously optimize incident response playbooks, runbooks, and tabletop simulation exercises to ensure organizational readiness - Collaborate with the Detection Engineering, Threat Intelligence, and organization stakeholders to translate post-incident findings into proactive detection rules and monitoring controls - Author detailed incident post-mortem reports and root-cause analysis documentation for technical teams and executive leadership - Conduct post-incident reviews to identify control gaps, procedural bottlenecks, and security weaknesses, translating lessons learned into strategic remediation projects - Maintain comprehensive documentation of incident timelines, evidence custody chains, response activities, and compliance metrics - Maintain comprehensive documentation of processes and activities - Provide technical leadership, guidance, and mentorship to junior and senior incident response analysts and SOC team members - Stay abreast of emerging threat actor tactics, techniques, and procedures (TTPs) and regulatory reporting requirements to ensure incident handling processes remain cutting-edge and compliant Company Description
• Define, review and maintain corporate AI Governance (Responsible AI) policies, guidelines and frameworks, aligned with business, technology, data and control functions; • Serve as the corporate reference for AI Governance, advising business areas on the appropriate use of AI models, including predictive models, generative models and intelligent automations; • Structure and sustain the governance model for the lifecycle of AI solutions, from ideation through continuous monitoring (model lifecycle management); • Define standards for development, validation, deployment and monitoring of AI models, including criteria such as explainability, fairness (algorithmic bias), robustness, reliability and observability; • Establish and guide the management of risks related to AI, including operational, reputational, ethical and regulatory risks; • Participate in defining and monitoring controls for the responsible use of AI, ensuring compliance with regulations (e.g., LGPD, GDPR, AI Act – where applicable) and internal policies; • Support the definition of adoption and prioritization criteria for AI initiatives considering business value, complexity, risk and area maturity; • Ensure traceability and documentation of AI models, including artifacts such as model cards, data lineage, versioning and validation criteria; • Act as the corporate focal point for AI topics, promoting alignment between business areas, IT, Data, Analytics, innovation and global teams; • Support projects from conception, ensuring alignment with governance principles and responsible AI usage; • Structure and run forums, committees and decision-making bodies related to AI, contributing analyses, recommendations and strategic guidance; • Promote the dissemination of a culture of responsible AI use, including awareness, training and safe adoption initiatives; • Ensure information security requirements are incorporated at all stages of the AI solutions lifecycle (Security by Design); • Support the security assessment of the AI supply chain, including pre-trained models, third-party datasets and external APIs; • Collaborate with Information Security to define incident response procedures for AI systems; • Support monitoring and control of unauthorized use of AI tools (Shadow AI); • Help structure AI Red Teaming processes and adversarial testing of AI models before production deployment; • Define, together with Information Security, access controls (RBAC), data protection in AI pipelines and data residency requirements.
Risk & Fraud Analyst
over99We build products that break rules, push limits and reshape how the world experiences iGaming.
• Review withdrawals requiring manual risk assessment. • Monitor suspicious accounts, linked accounts, payment abuse, bonus abuse, gameplay anomalies, and provider alerts. • Investigate payment-related risks, including unusual deposit and withdrawal activity, duplicate payment methods, ownership concerns, and suspicious transaction patterns across both fiat and crypto. • Support KYC investigations, reviewing failed or pending verifications, document inconsistencies, payment ownership, and third-party payment concerns. • Conduct crypto-related investigations, including wallet reviews, blockchain analysis, repeated wallet usage, funding sources, and unusual transaction behaviour. • Analyse player behaviour across accounts, wallets, devices, IP addresses, payment methods, and gameplay to identify fraud patterns and emerging risks. • Use internal administration tools, payment systems, fraud platforms, KYC providers, blockchain explorers, and reporting dashboards to investigate cases. • Record investigation outcomes with clear documentation, evidence, and decision-making rationale. • Escalate complex or high-risk cases where appropriate. • Work collaboratively with Payments, Compliance, Product, VIP, and Customer Support teams. • Support a 24/7 Risk Operations function through a rotating shift pattern, including weekends.


