Overview

The Head of Enterprise Risk Management (ERM) is responsible for designing, implementing and embedding risk policies, frameworks and methodologies to manage strategic and operational risks across the enterprise consistent with Board Approved Risk Appetite.

Principal Accountabilities and Duties

Provides leadership, knowledge and experience to enable effective management and control of the Enterprise Risk Management Framework (ERMF). Supports the CRO and Risk in ensuring that an effective ERMF is in place, supporting 1st Line teams with appropriate coaching, monitoring and objective aggregation and analysis of information for the executive and Board Audit and Risk Committee (BARC).

Ensuring all risks and controls are managed within a clear taxonomy that informs and protects EAB through effective lessons learned and other feedback loops to build and embed an effective risk culture across EAB

Oversight

• Maintenance of the ERMF, including keeping it relevant for the purpose of ensuring effective risk control and oversight underwriting achievement of the banks strategic objectives.
• Ensuring close alignment of the ERMF with all elements of the Board approved Risk Appetite.
• Day to day management of ERM for the Bank taking into account all key risks and controls the Bank is exposed to via a coordinated, effective and integrated taxonomy that effectively articulates the health of the Bank against the Boards approved risk appetite.
• Establish and propose to the BARC and Board appropriate risk appetite limits and KRIs for all key risks.
• Ensuring that there are appropriate risk monitoring and reporting tools and mechanisms in place which allow effective risk control, stress testing, reporting and monitoring against key KRIs to the Board / BARC, Executive Committee (EXCO), Executive Risk & Compliance Committee (ERCC), and other relevant committees.
• With the Company Secretary, CRO and CEO, review, challenge, refresh and update, as necessary, the Banks committee structures and their terms of reference for BARC / Board approval.
• Embedding all aspects of the Bank's ERMF into the overall business.
• Developing and evolving risk management policies and policy frameworks / controls, including the quantification of risk appetite and related measures, limits and tolerances.
• Improving the Bank's risk management readiness, posture and culture through regular and effective communication and training programs.
• Ensuring that regulatory requirements for ERMF and control are met.

Risk & Regulatory Duties

• Maintain knowledge of applicable regulatory requirements through effective horizon scanning, responding through thoughtful gap analysis reports to Compliance and CRO (and BARC as appropriate).
• Report policy / procedure breaches and areas of potential non-compliance and suspicions promptly upon identification in accordance with the Bank's Risk and Compliance policies and formal / informal escalation paths.
• Executes and tests all controls within own area to minimise risk of policy, procedure, risk appetite and / or regulatory breaches.
• Identify new risks / control gaps within own area via own RCSA.

Qualifications, Knowledge, Skills and Experience Required

• Excellent knowledge of ERMFs, with recent experience in developing and embedding an ERMF into effective use across an enterprise.
• Fully conversant with the interactions between Risk Appetite, Committee structures, the risk and control environment, event / incident management, the RCSA process and the effective aggregation of data into informative and forward looking risk registers, heat maps, dashboards and board papers.
• Demonstrable effectiveness in coaching, training and influencing best practices across the enterprise.
• Strong knowledge of Banking structures, business models, products, services and processes.
• Deep understanding of Bank transaction processing flows, product, portfolio and process control frameworks, prudential controls and monitoring.
• Well developed awareness of developments in financial markets, wider Risk management practices, and regulation.