Internal Audit and Risk Manager

Position Description:

The Risk Manager is responsible for identifying assessing and monitoring organizational risk across the Foundation. This position conducts independent audits evaluates compliance with internal policies and external regulations and provides leadership with actionable insights to reduce risk and strengthen internal controls. This role requires a high degree of discretion sound judgment and the ability to work independently while building effective relationships across all levels of the organization.

1. Enterprise Risk Assessment & Monitoring: Identify assess and monitor organizational risk across operations finance HR compliance and programs; maintain a risk register and recommend mitigation strategies aligned with the Foundations mission and risk tolerance.
2. Audit & Internal Controls Oversight: Conduct regular objective audits of internal processes including HR/personnel files credit card usage and receipts expense reimbursements and operational controls; document findings and track follow-up actions.
3. Policy Compliance & Governance Support: Review compliance with internal policies employment regulations labor laws and governance standards; recommend updates or improvements to policies and procedures to reduce exposure and increase consistency.
4. Workers Compensation & Insurance Management: Oversee workers compensation processes and claims management; review insurance coverage (for example workers comp liability D&O property) to ensure adequate protection and alignment with organizational needs.
5. Investigations & Issue Resolution: Serve as an independent resource for reviewing risk-related concerns irregularities or breakdowns in process; conduct fact-based investigations and provide confidential findings and recommendations to leadership.
6. Risk Reporting & Executive Advisory: Prepare clear concise risk reports for the Deputy Director CEO and other stakeholders as appropriate; communicate trends emerging risks and mitigation progress in a timely and actionable manner.
7. Risk Awareness & Continuous Improvement: Support a culture of accountability transparency and proactive risk management by providing guidance education and consultation to staff while maintaining independence from operational decision-making.
8. Perform Other Duties as Assigned: At all times maintain excellent personal service to all personnel while maintaining a level of sensitivity and fairness; attend all relevant staff meetings; assist in the improvement of human resources management systems and procedures; demonstrate flexibility and understanding when asked or required to perform other duties as assigned. (Performs approximately 15% of day)

Education/Training/Experience/License Required:

Bachelors degree in Risk Management Business Administration Finance Accounting Human Resources Public Administration or a related field (or equivalent combination of education and experience). An average of 7-10 years of progressively responsible experience in risk management internal audit compliance finance HR operations or a related oversight function. Demonstrated experience conducting independent audits reviews or assessments of organizational processes and internal controls. Strong working knowledge of employment practices personnel records internal controls and compliance requirements particularly in nonprofit or mission-driven organizations. Proven ability to work independently with minimal supervision exercise sound judgment and manage confidential and sensitive information with discretion. Experience preparing and presenting findings recommendations and reports to senior leadership or boards. Excellent analytical documentation and written communication skills. Professional certifications such as CPA CIA CISA ARM CRM SHRM-SCP/CP or similar (or actively pursuing). Experience in a nonprofit foundation public sector or highly regulated environment. Familiarity with workers compensation administration insurance coverage review and claims management. Experience supporting or interacting with governance bodies (e.g. Audit Committee Board of Directors). Background in process improvement internal controls design or enterprise risk management (ERM) frameworks.