**Director Third-Party Risk Manager/Sr. Compliance Counsel** **Job Details** **Job Location** 412 Office - Knoxville, TN **Description** **BASIC FUNCTION:** The Director Third Party Risk Manager/Sr, Compliance Counsel assists the CRO with the implementation and maintenance of the Bank’s Enterprise Risk Management (“ERM”) Program and implements, executes, and maintains the Bank’s Vendor/Third-Party Risk Management (“TPRM”) program and systems to ensure regulatory compliance, efficiency, and effectiveness of third-party contract management, due diligence and risk assessment. Responsible for execution of the Bank’s Third-Party Vendor Risk Management Policy, as well as processes and procedures, which include vendor sourcing, contract management, oversight of risk assessments, review of contracts/agreements, due diligence process, ongoing monitoring, executive reporting, periodic recertification, contingency planning, and vendor termination activities. Also serves as a resource to the Chief Compliance Officer to answer all legal issues related to bank compliance and serve as liaison with outside counsel related to compliance issues. **ESSENTIAL FUNCTIONS:** **ERM Program** + Implements and maintains risk management policies, standards, and frameworks. + Contributes risk management perspectives to the evaluation of new products and services or significant changes in existing products and services and advises management on appropriate controls. + Prepares materials for Enterprise Risk Management Committee meetings. + Monitors risk profile and alignment with the Bank’s Risk Appetite Statement. + Serves as administrator of Enterprise Risk Management risk assessments. + Promotes and supports a culture of risk management. + Other duties as assigned by the CRO. **TPRM Program** + Provide management and oversight of the Vendor/Third Party Risk Management Policy/Program in accordance with applicable laws, rules, and directives. + Administer the Bank’s vendor risk software and platforms, ensuring that all third-party documentation is safeguarded and accurately maintained within appropriate databases. + Implement, monitor, and maintain effective internal controls over service providers, including communication of information requirements and access to customer and bank information consistent with applicable laws and regulations. + Work with business unit leaders to identify, select, qualify, and implement third-party solutions through effective new vendor selection and vendor contract renewal processes and risk assessments/due diligence, including, but not limited to, non-disclosure agreements, due diligence reviews, risk assessments, and input on contract requirements. + Initiate and ensure appropriate, ongoing training, maintenance, and monitoring of activities to mitigate operational and compliance risk related to the Bank’s Vendor/Third Party Risk Management Policy/Program, in accordance with business needs and regulatory requirements. + Coordinate new vendor selection process and complete the due diligence for end-to-end assessment process for new and existing third parties in a timely manner, ensuring appropriate controls are in place. + Engage with subject matter experts (SMEs) to request, review, and analyze all relevant third-party documentation and internally and externally prepared due diligence/risk assessments received. Communicate with business unit leaders and executives about issues, concerns, process, parameters, and other information. + Maintain awareness, understanding, and compliance with the Bank's internal policies and procedures, laws, guidelines, and regulations appropriate for this function, as well as financial industry topics, trends, methods/processes, technology, best practices, etc., through research, industry events, networking, etc. + Respond to regulatory and internal/external audit requests as directed. + Research, develop, standardize, and enhance policy, procedures, and tools to assess and document third party/vendor risks, risk level categories, and responses to potential business disruptions. **Legal** + Stay abreast of laws, regulations, and changes in state and federal agencies; provide legal counsel on a variety of topics to ensure compliance with state and federal laws and regulations. Notify business and compliance managers and executives of applicable issues and changes. + Work with legal counsel, executives, compliance, and risk officers, and serve as liaison with outside counsel to assess, mitigate, and address all legal aspects of bank compliance matters. + Coordinate with Sr. Corporate Counsel and TPRM Executive Committee (EC) to execute vendor approvals in accordance with bank policy. + Review contracts, agreements, and legal documents as needed; assist management and staff with legal issues. + Collaborate with business lines to ensure compliance with applicable federal and state regulations. + Conduct legal research and provide practical feedback and guidance. **SKILLS, KNOWLEDGE, AND TRAINING:** + Experience working with or at the Federal Deposit Insurance Corporation (FDIC) preferred. + Understanding of banking laws and regulations, including consumer compliance requirements (e.g., lending and depository regulations). + Proven organizational abilities and communication skills that will be utilized to promote the Third-Party Vendor Management Program and further its effectiveness. + Proficient in the understanding of vendor risk management practices, including the lifecycle of risk identification, treatment, mitigation, acceptance, remediation as well as inherent and residual risks. + Strong interpersonal skills and ability to function as part of a highly collaborative team. + Ability to read and interpret documents such as contracts, legal documents, procedure manuals, general business correspondence and/or journals or government regulations, and to disseminate information. + Excellent written and oral communication skills with experience writing policy and procedural documentation. **WORKING CONDITIONS:** + Standing, walking, some travel required + Must be able to sit at a desk for extended periods of time and use a computer **REQUIREMENTS:** + Minimum 7 years of work experience related to Enterprise Risk Management and/or Third-Party Risk Management within the banking industry – or applicable related experience + Law degree preferred + Experience with vendor due diligence and risk assessments performed internally or by external parties + Experience using technology, systems, and software for third party risk management – prefer experience with NContracts and NVendor contract and risk assessment/due diligence technology platform + Excellent analytical, problem-solving, and decision-making skills + Effective communication and interpersonal skills, with the ability to interact confidently with stakeholders at all levels using strong written and verbal communication skills + Demonstrated leadership ability + Proven ability to work collaboratively in a dynamic and fast-paced environment + Proficient with vendor contract and risk assessment technology systems + Bachelor’s degree + Regulatory, practical knowledge, and experience to advise others SouthEast Bank is an equal opportunity employer. It is our policy to treat all individuals equally, regardless of race, color, religion, sex, gender, national origin, disability, age, genetic information, sexual orientation, transgender/gender identity, sexual preference, or service in the armed forces.