Enterprise Risk Analyst III

Job Type

Full-time

Description

Who We Are:

FFB, a dynamic and acclaimed single-branch bank born in the heart of Fresno, CA in 2005, is on a mission to redefine the banking experience. Our commitment to delivering top-notch banking services has propelled us to the forefront of the industry, earning us accolades and recognition. At FFB, we recognize the uniqueness of each individual who walks through our doors, and our dedicated team strives to craft personalized banking solutions that cater to their distinct needs.

What sets FFB apart is not just our Fresno roots but the diverse talents that make up our team, hailing from every corner of the country. We firmly believe that our people are our greatest strength, and we're constantly on the lookout for ambitious and passionate individuals who align with FFB's vision, regardless of their location.

If you're ready to be part of a winning team and contribute to our ongoing success story, we invite you to apply and join the FFB family!

Recent Achievements Speak Louder Than Words

• 2024 & 2025 - American Banker - #1 Top Performing Publicly Traded Bank with under $2b in assets
• 2023 - American Banker - "Top 5" Community Bank in the Country #4
• 2023 - OTCQX - Best 50 Companies #3
• 2023 - 5-star Rating Bauer Financial
  
  

What You Should Expect While Working At FFB

• Company ownership through our Employee Stock Ownership Program (ESOP)
• A friendly, close-Knit work culture that encourages growth
• Opportunities to Participate in Community Networking Events
• Benefits Package
• Medical/Dental/Vision
• Life Insurance
• Paid Vacation
• 401(k) Retirement Plan
• Training & Development
• Tuition Reimbursement
• Employee Assistance Program
• Internal Job Posting & Referral Program
  
  

Ideal Candidate

FFB prides itself on its core values of Teamwork, Relationship, Authenticity, and Commitment (TRAC). We expect that our team members will reflect these values in the workplace in various ways:

• Teamwork – We collaborate, hold each other accountable, and win together.
• Relationship – We are trustworthy, transparent, and respectful.
• Authentic – We are humble, vulnerable, and we speak up.
• Commitment – We are owners...Be hungry, responsive, and have a sense of urgency.
  
  

About The Position

The Enterprise Risk Analyst supports the bank’s risk management framework by identifying, assessing, and monitoring risks that may affect operations, compliance, reputation, or financial stability. This role collaborates with business units to evaluate controls, recommend mitigation strategies, and assist with regulatory reporting. The analyst plays a key role in strengthening risk awareness and ensuring alignment with banking regulations and internal risk policies.

Essential Duties

• Serves as the ERM subject matter expert (SME) for IT Risk and Information Security within the Bank’s risk governance structure.
• Conducts IT Risk Assessments across infrastructure, systems, applications, and third-party technologies, evaluating control effectiveness and alignment with regulatory expectations.
• Partners closely with the Information Security Officer (ISO), IT Department, and Compliance teams to identify, evaluate, and monitor technology-related risks.
• Develops and maintain IT and Cybersecurity risk profiles, control libraries, and risk registers in the Bank’s GRC system (e.g., Archer).
• Assess technology change management, SDLC, patch management, user access management, and incident response processes for risk adequacy.
• Assists with reviews of SOC 1 / SOC 2 reports, vulnerability assessments, penetration test results.
• Assists with cybersecurity audit needs, such as building annual NIST and RSAT documentation with IT, ensuring any identified gaps are logged in the FFB Bank GRC tool, and supporting remediation plans in coordination with ERM and IT.
• Provides data-driven insights and risk reporting to senior leadership and committees (Operational Risk, IT Steering, and Board Risk).
• Supports the ERM Director in implementing and maintaining the enterprise-wide risk management strategy.
• Coordinates IT risk integration into broader enterprise risk categories (Operational, Strategic, Reputational, and Compliance).
• Participates in enterprise-wide RCSA sessions, identifying control gaps related to IT and Information Security.
• Assists in the development of risk appetite metrics, KRIs, and risk dashboards reflecting IT and Information Security exposures.
• Leads technical risk reviews for vendors providing IT, cybersecurity, or data processing services.
• Evaluates vendor SOC reports, security questionnaires, and risk control frameworks, escalating findings where appropriate.
• Partners with the ERM Vendor Management team to ensure all IT vendors are risk-rated and monitored according to policy and regulatory guidance.
• Supports DR/BCP testing and scenario analysis for technology-dependent business processes.
• Ensures alignment between the IT Disaster Recovery Plan and the enterprise Business Continuity Program.
• Participates in annual tabletop exercises and post-event evaluations related to IT incidents or outages.
• Supports the ERM Incident Management Program for technology-related incidents (e.g., outages, cyber events, or security breaches).
• Assists in tracking remediation activities, validating issue closure, and providing root-cause analyses.
• Supports ongoing control testing for IT-related key risk indicators and operational loss events.
• Prepares risk reports, dashboards, and presentations for senior management and the Board.
• Monitors trends and regulatory developments in cybersecurity and IT risk management, recommending enhancements to ERM programs.
• Contributes to continuous improvement of the Bank’s ERM technology and reporting processes.
• Embodies the TRAC Values and Critical Behaviors (Teamwork, Relationship, Authenticity, Commitment) as core principles, using them to guide daily interactions and decision-making.
• Completes administrative tasks with a sense of urgency, including required Bank Compliance Training. Responds to internal and external inquiries via email, phone, or messaging platforms in a timely and professional manner. Positively represents the Bank through ethical conduct and community involvement.
• Demonstrates an understanding of and commitment to EEO policies. Fosters a respectful, inclusive workplace by valuing cultural differences, preventing harassment of any kind, and supporting a diverse workforce.
• Ensures adherence to all Bank policies, procedures, and processes, along with applicable state and federal laws, rules, and regulations, ensuring confidentiality and data privacy while carrying out AML/CFT (Anti-Money Laundering and Countering the Financing of Terrorism) responsibilities specific to the role.
• Performs duties in an office or home office environment, involving tasks such as writing, typing, speaking, lifting moderate weights, and operating office equipment. The position requires physical activities like sitting, walking, and reaching. Reasonable accommodation can be made for individuals with disabilities to perform essential functions.
• Travels up to 10%, including but not limited to attending company meetings, training sessions, and corporate events, with travel typically being regional or local based on business needs.
  
  

Requirements

• Bachelor’s degree from an accredited college or university in a relevant field (e.g., Business, Finance, or related) preferred. Advanced degree or relevant certifications strongly preferred for senior-level roles.
• Minimum 3–5 years of related Banking Industry, Risk Analysis experience required.
• Proficient analytical and problem-solving skills; capable of interpreting complex data and providing meaningful insights.
• Experience, knowledge and training in financial statement and tax return analysis typically resulting from a combination of education in accounting, financial and/or credit analysis or related areas.
• Experience with Governance, Risk, & Control (GRC) Tools preferred. Proficiency with Microsoft Office Suite (Excel, Word, Outlook) required.
• Effective oral, written, and interpersonal communication skills with the ability to apply common sense to carry out instructions, interpret documents, understand procedures, write reports and correspondence, and speak clearly to customers, vendors and employees.
• Strong organizational and time management abilities with attention to detail.
• Strong teamwork and relationship skills to lead collaborative efforts, foster alignment, and drive results across teams.
• Ability to take initiative and impact change within the Bank through consensus building and conflict resolution.
• Willingness to take on special projects and perform other duties as assigned, beyond core responsibilities, to support team and organizational needs.
• Commitment to continuous learning and professional development to stay current with industry standards and best practices.
• Ability to maintain authenticity and integrity in all professional interactions, ensuring trust and credibility with stakeholders.
• Capable of managing multiple priorities and meeting deadlines in a dynamic environment.
• Ability to work independently with minimal supervision and as part of a team.
• Proven ability to adapt to changing priorities and procedures.
• Current driver’s license and a vehicle with appropriate insurance coverage if required to drive while performing assigned duties and responsibilities.
  
  

Salary Description

$83,000 - $93,000 Annual Salary