Join the transformative team at City of Hope, where we're changing lives and making a real difference in the fight against cancer, diabetes, and other life-threatening illnesses. City of Hope’s growing national system includes its Los Angeles campus, a network of clinical care locations across Southern California, a new cancer center in Orange County, California, and treatment facilities in Atlanta, Chicago, and Phoenix. our dedicated and compassionate employees are driven by a common mission: To deliver the cures of tomorrow to the people who need them today.

We have an exciting opportunity to join our Enterprise Risk Management department. Reporting to the Executive Director, Enterprise Risk Management (ERM), the Enterprise Risk Management (ERM) Program Manager is a key advisor and facilitator, responsible for execution of all aspects of the Enterprise Risk Assessment process. This role requires collaboration with diverse departments and stakeholders across multiple locations. This leader serves as the deputy to the Executive Director, Enterprise Risk Management, with deep expertise in Enterprise Risk Management program management, strong executive presence, and broad knowledge of Risk Management in the healthcare space. This leader will execute the System-wide Annual Risk Assessment in coordination with ERM’s aligned assurance partners (Compliance and Internal Audit) and support the annual Strategic and Financial planning processes. Responsibilities include conducting stakeholder interviews, developing and managing surveys, managing the Risk Register, and reporting in the GRC system, and creating and delivering individual/group presentations to audiences at a variety of levels (from front-line employees to senior leaders) across COH.

As a successful candidate, you will:

• Plans, coordinates, and leads a small team to execute the system-level Annual Risk Assessment and other Risk Assessments across the COH system.
• Manages and maintains the System-wide Risk Register
• Manages and aligns Risk rating criteria across the COH system.
• Leads efforts to coordinate the identification and documentation of risk mitigations, response plans and controls.
• Leads activities to establish and implement risk tolerances, thresholds, and metrics.
• Builds and maintains a system-level control inventory / control library.
• Participate in control validation activities and shared assurance protocols.
• Establishes and manages Risk escalation processes and Risk tolerance/threshold breach protocols.
• Prepares risk assessment content for use in meetings with executives, chairs, and directors to communicate and discuss the results of risk assessments.

Your qualifications should include:

• Bachelor's degree with a Concentration in Risk Management, Business, Healthcare/Life Sciences, or a related field
•  8+ years of relevant work experience, with at least 5 years of experience in Risk Management, Internal Audit, or a similar risk consulting / internal control function (e.g., internal audit, compliance, fraud mitigation, etc.)
• Demonstrated experience establishing regular and collaborative engagement across the organization with key stakeholders at an executive level to drive risk awareness and transparency.
• Demonstrated experience in facilitative, collaborative conflict resolution and in a role where differing points of view are common, including between yourself and more senior members of the organization.
• Demonstrated experience leading large, diverse, geographically dispersed work teams without a direct reporting relationship to accomplish tasks under a strict timeline.
• Demonstrated experience engaging with and influencing leaders and executives with multiple competing priorities to execute key tasks and activities in support of the ERM program.
• Knowledge of standard risk frameworks, compliance standards, privacy laws and financial regulations
• Ability to travel occasionally (1-2 times per year) to COH locations across the US, currently including CA, AZ, IL, and GA.
• Knowledge of COSO, NIST, ISO and other risk frameworks preferred.
• Knowledge of HIPAA, HITECH, HITRUST CSF, GDPR, CCPA and other regulatory frameworks applicable in healthcare environments preferred.
• Process improvement certification (e.g., Lean, Six Sigma) preferred.
• Experience with Auditboard, Jira, and Gartner tools a plus.
• Professional Risk Management certification(s) a plus.
• Risk management experience in a complex institution and/or highly matrixed environment a plus.
• Experience at a major consulting/audit firm a plus.

City of Hope employees’ pay is based on the following criteria: work experience, qualifications, and work location.

City of Hope is an equal opportunity employer.