Job Title: Director of Risk Management

Location: Main Branch (3675 S 900 E, Millcreek, UT 84106)

Status: Full-Time/Exempt

Reports to: Chief Information Officer

Position Purpose

The Director of Risk Management is responsible for developing, implementing, and overseeing risk management strategies that safeguard the organization's financial, operational, and regulatory integrity. This role ensures compliance with all credit union laws and regulations while managing internal audit, fraud prevention, and quality control processes. The Director proactively identifies, assesses, and mitigates risks to protect the organization's assets and ensure sustainable growth.

Essential Duties, Skills & Abilities

• Exhibit outstanding member services skills by applying Granite Credit Union Service Standards and Core Values.
• Develops and oversees the enterprise risk management (ERM) framework, ensuring alignment with credit union regulatory requirements.
• Ensures compliance with federal and state regulations, including NCUA, BSA, AML, OFAC, Reg Z, Reg E, and other applicable laws.
• Collaborates with senior leadership to create and implement risk policies and procedures that align with industry best practices.
• Oversees the internal audit program identifying risks recommending corrective measures.
• Develops risk mitigation programs that address operational, financial, reputational, and cybersecurity risks. Leads efforts to detect, investigate, and prevent fraudulent activities within the organization.
• Creates and manages loss prevention programs to minimize financial, operational, and reputational risks including fraud prevention programs for loans and deposits.
• Identifies potential threats and vulnerabilities affecting the organization and establishes action plans to address them.
• Oversees quality control measures for lending, deposits, and operational functions to reduce errors and ensure regulatory compliance.
• Develops and maintains the business continuity and disaster recovery plans, ensuring operational resilience during disruptions.
• Conducts risk assessments and stress testing to evaluate the organization's preparedness for financial and operational risks.
• Monitors third-party vendor risk management programs to ensure compliance with service agreements and regulatory expectations.
• Reports on risk assessments, internal audits, and fraud investigations to executive leadership, the Board of Directors, and the Supervisory Committee.
• Professionally communicate through written and oral presentations.
• Promote a professional appearance and attitude.
• Basic computer operating skills such as email, Microsoft Office, etc.
• Attend meetings as required.
• Other duties as assigned.
• Must comply with all company policies and procedures, applicable laws and regulations, including but not limited to, the Bank Secrecy Act, the Patriot Act, and the Office of Foreign Assets Control.

Experience

5-10 years in risk management, compliance, internal audit, or fraud prevention, preferably in financial services or credit unions.

Strong understanding of credit union laws, regulatory frameworks, fraud prevention, and risk controls.

Proven ability to develop risk policies, oversee internal audits, and manage loss prevention programs.

Education

Bachelor's degree in Finance, Business Administration, Risk Management, or a related field.

Certified Risk Management (CRM), Certified Regulatory Compliance Manager (CRCM), Certified Fraud Examiner (CFE) or CIA (Certified Internal Auditor) preferred.

Granite Federal Credit Union is an Affirmative Action/Equal Opportunity Employer, including individuals with disabilities and veterans. Upon request, reasonable accommodations to the application and/or interview process will be provided.

April 1, 2026