Director, Enterprise Risk Management

NCQA is looking for a new Director of Enterprise Risk Management. The qualified candidate will be responsible for the leadership, innovation, and management necessary to identify, evaluate, mitigate, and monitor the company's operational risk. They will develop enterprise risk management tools, practices, and policies to analyze and report enterprise risks and to manage risks according to an enterprise risk management framework. The Director of Enterprise Risk Management will ensure the organization's risk management policies and strategies are in compliance with applicable regulations, and strategic imperatives of the organization.

Along with the above, the qualified candidate will advise on the enterprise risk management architecture for the company, monitor and analyze risks within the company's business units and reports on these risks to the Enterprise Risk Officer, Internal Enterprise Risk Committee and supports reporting to the Finance & Audit Committee of the Board.

The qualified candidate will serve as the Compliance Manager for the company and coordinate compliance activities to ensure the company complies with its regulatory, ethical and internal policy obligations. They will prepare annual compliance monitoring and audit plans and conduct annual compliance audits

Qualifications

List the minimum and preferred levels of Education, Experience and Special Skills needed to perform the responsibilities of the position.

Education

Degrees,

Certificate

Minimum Required:

Bachelor's degree in law, business administration, or relevant field. Certifications in enterprise risk management and compliance risk management

Preferred Level:

JD and certification(s) as an enterprise risk and compliance professional or compliance auditor

Experience

Yrs and type of experience

Minimum Required:

5-7 years of experience as an enterprise risk and compliance officer, manager, or similar experience

Preferred Level:

7-10 years of experience as an enterprise risk and compliance officer, manager, or similar experience

Skills

Type and

Proficiency

Minimum Required:

Strong knowledge of industry processes and regulations, including Federal Acquisition Regulations. Knowledge of enterprise risk assessment frameworks, applications, risk mitigation strategies and controls. Knowledge of software and technology risk assessment and risk mitigation strategies. Knowledge of HIPAA and protection of protected health information. Compliance audit experience. Strong project management skills. Demonstrated leadership and experience with C-suite executives.

Minimum Required:

Strong knowledge of industry processes and regulations, including Federal Acquisition Regulations. Knowledge of enterprise risk assessment frameworks, applications, risk mitigation strategies and controls. Knowledge of software and technology risk assessment and risk mitigation strategies. Knowledge of HIPAA and protection of protected health information. Compliance audit experience. Strong project management skills. Demonstrated leadership and experience with C-suite executives.

NCQA is committed to Diversity, Equity and Inclusion. We are an Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities.

NCQA is a drug free workplace. NCQA recruits, hires, trains and promotes individuals, and administers any and all personnel actions, without regard to race, color, religion, national origin, age, sex, pregnancy, citizenship, familial status, disability status, veteran status, genetic information, or other protected statuses under applicable state and federal laws.

NCQA will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c).