Risk Manager in Scottsdale, AZ at Discount Tire Corporate Careers

Date Posted: 9/6/2019

Job Snapshot

  • Employee Type:
    Full-Time
  • Region:
  • Experience:
    Not Specified
  • Date Posted:
    9/6/2019

Job Description

Here at Discount Tire, we celebrate the spirit of our people with extraordinary pride and enthusiasm. Our business has been growing for more than 55 years and now is the best time in our history to join us. We are opening more locations every year and we are always looking for qualified individuals to join us in our growth. We are a company that promotes from within, both in our retail and corporate operations. 

 

The Risk Manager guides the management of business risks in support of the enterprise value streams. Creates a systematic process that identifies, prioritizes, manages, and monitors enterprise risk.  Administers the company’s governance, risk and compliance (GRC) platform to document and track risk mitigations and to create and report relevant metrics. Maintains the Business Continuity (BC) platform and works collaboratively with BC plan owners to ensure plans and processes are reviewed, documented, updated and tested. Demonstrates a self-motivated desire leading to the effective delivery of the Integrated Risk Management (IRM) vision. Collaborates and influences stakeholders during the IRM, BC and Disaster Recovery (DR) processes.

 

Essential Duties and Responsibilities:

  • Supports the Physical Security Manager regarding all aspects of the enterprise-wide risk management program.
  • Educates, guides and influences stakeholders at all levels and across all business segments on appropriate risk management objectives, activities, documentation and remediation approaches.
  • Leads in the strategic development and management of the Enterprise Risk Management (ERM) framework and related policies and programs, and provides guidance to operational segments in developing organizationally-specific risk programs.
  • Conducts an Enterprise Risk Assessment (ERA) a minimum of every two years.
  • Leverages the GRC platform to effectively and efficiently manage the IRM process with full transparency.
  • Manages the deep dive gap analysis to support the ERA, and prioritizes risks through a heat map or risk matrix.
  • Tracks and reports on the progress of IRM.
  • Ensures mitigation strategies are created, implemented, executed, measured and operationalized.
  • Conducts periodic reviews (at least quarterly) with business risk stakeholders to determine mitigation strategy progress and changing risks.
  • Develops, plans and reports against the Risk program portfolio of work; ensures Risk documentation and reoccurring processes are repeatable and measureable.
  • Manages the enterprise Business Continuity Program (BCP) and administers the BCP platform; ensures the program status is current and able to support any type of business disruption.
  • Partners with IT on the maintenance of a Technical Impact Analysis (TIA) in support of an enterprise BCP; coordinates with IT on regular testing of IT recovery plans.
  • Conducts a mock exercise at least annually to test the effectiveness and efficiency of the BCP.
  • Trains the organization on individual, business and enterprise responsibilities.
  • Generates documented processes that augment the BCP.
  • Works collaboratively with IT Management to ensure an effective Disaster Recovery Plan (DRP) is documented, business recovery time objectives can be met, and recovery process procedures are documented, tested and updated.
  • Generates a documented process to support the DRP requirements.
  • Documents, tracks and reports on planned and unplanned outages and business interruptions, and conducts after action reviews to identify opportunities for improvement.
  • Develops Risk and Business Continuity training and awareness materials; ensures they are maintained, updated and communicated; collaborates regularly with business and project stakeholders.
  • Identifies and analyzes Risk and Business Continuity metrics that reflect how the program provides business value; regularly reports to key stakeholders with recommendations.
  • Manages the BCP Roadmap and provides quarterly reporting and annual presentation to Business Segment Leadership on the BCP and Roadmap status.
  • Validates effectiveness and efficiency of Risk and Business Continuity programs, methods and equipment through external benchmarking efforts, documents findings and reports out to stakeholders.
  • Establishes and manages Risk and Business Continuity vendor relations, including, but not limited to scope of work, vendor requirements and deliverables.
  • Assists employees, vendors and other customers by answering questions related to Risk and Business Continuity programs, processes and procedures.
  • Stays current on industry specific solutions, technology offerings and continuously monitors the changing landscape of retail business risks.
  • Completes work in a timely and accurate manner while providing exceptional customer service.
  • Other duties as assigned.

Job Requirements

Qualifications:

  • This position requires a combined minimum 7 years of experience in IRM and BC with progressive complexity and responsibility.
  • Corporate retail experience is preferred.
  • Comprehensive understanding of Payment Card Industry regulations as they pertain to the retail industry, Health Insurance Portability and Accountability Act (HIPAA) security knowledge and experience in working with information security best practices.
  • Proven experience managing various platforms (Riskonnect and Fusion platform experience is preferred) and reporting methods.
  • Demonstrated experience with technology standards, frameworks and implementation.
  • Proven enterprise project management experience.
  • Expert level experience with process analysis, including but not limited to business case development and financial analysis.
  • General knowledge of systems administration and configuring and automating technical controls is preferred.
  • Detailed understanding of risks specific to retail, cloud and business partnerships.
  • Proficiency with Microsoft office, including Word, Excel, Project, PowerPoint and Visio.
  • Demonstrated ability to communicate across all levels of the organization, present complex ideas concisely and clearly articulate technical ideas to a non-technical audience both verbally and in writing.
  • Demonstrated ability to influence and provide consistent results across all levels of the organization.
  • Demonstrated business acumen with an expert knowledge and understanding of business issues, priorities, goals, and strategy.
  • Proven ability to provide innovative ideas with the technical aptitude to implement ideas is required.
  • Demonstrated ability to work efficiently under pressure, accurately meet deadlines, present a professional demeanor and work well independently.
  • Proven ability to be self-directed and self-motivated, and able to prioritize work in alignment with organizational goals and objectives.
  • Exhibit strong troubleshooting and organizational skills.
  • Adjust to changing requirements while maintaining a positive will-do attitude.
  • Maintain confidentiality, treat others with respect and uphold Company values.

 

Educational Requirements:

  • Bachelor’s Degree in Business or a related field or equivalent training and work experience.
  • Risk, Business Continuity and Security certifications such as ARM, CSP, CPP, CISSP, CRISC, and PMI-RMP are highly desired.

 

Work Days:

Normal work days are Monday through Friday.  Occasional Saturdays and Sundays may be necessary.

 

Work Hours:

Normal work hours are 8:00 a.m. to 5:00 p.m. Additional hours may be necessary.