Program Manager | Governance, Risk & Compliance

About Wealth Enhancement

Wealth Enhancement is an independent wealth management firm with an endless passion for enriching the lives of our clients. We continually seek to perfect our craft of personalized financial planning with our team-based Roundtable and UniFi processes that go far beyond the standard approach. We proudly provide unique financial plans and investment management services to over 75,000 households from our over 100 offices - and growing - nationwide.

Since 1997, Wealth Enhancement has tirelessly raised the standard of wealth management with specialized knowledge and more attentive service that helps every client craft their future. For more information, please visit www.wealthenhancement.com.

We have an excellent opportunity for a Program Manager, Governance Risk & Compliance! The Cyber Security Program works with the Wealth Enhancement business community to secure data, systems, network resources, and protect the confidentiality, integrity and availability of our customers and company assets to ensure they are secure and in compliance with regulatory controls.

To develop and manage the mission, the Cyber Security Program will:

• Develop processes, procedures, and policies required for the protection of confidential information Identify risks to the security of data and systems

• Develop and implement strategies to help protect the assets of the company and determine the best protocol for each situation

• Mitigate these risks to levels acceptable to the enterprise

• Define security requirements, establish baselines and measure compliance, based on applicable laws, regulations, and best practices

• Manage relationships with business users and departments to investigate security issues and evaluate products and processes

In the spirit of pay transparency, we are excited to share the base salary range for this position is $120,000 - $135,000, exclusive of bonuses and benefits. This role is also eligible for an annual corporate bonus. We encourage you to apply and provide us with your compensation expectations when you do. We’re big on open conversations, so, let’s have one.

Primary Job Functions

Governance Risk & Compliance (GRC) Manager

• Risk and controls assessments – Managing the creation and execution of risk and controls assessments

• Security standards – Developing security standards, procedures, and controls to manage risk

• Compliance – Ensuring compliance with relevant regulations

• Governance – Maintaining proper governance structure and processes

• Reporting – Monitoring and reporting on compliance status, risks, and issues to senior leadership

• Training – Providing training and guidance to staff on compliance requirements and best practices

• Stakeholder liaison – Liaising with senior leadership, stakeholders, and external counterparts to resolve issues

Manage and Develop GRC Responsibilities

• Implementing processes to automate and continuously monitor information security controls

• Defining and documenting business process responsibilities

• Performing internal and external risk assessments

• Documenting and reporting control failures and gaps

• Managing and tracking risk registry and exception management processes

• Assisting other staff with security program functions

Develop GRC Program Roadmap and Strategy

• Current state assessment – Conduct detailed audits encompassing compliance assessments, risk assessments, and gap analysis

• Stakeholder engagement – Engage diverse departmental stakeholders to understand their GRC needs and concerns

• GRC framework design – Develop a robust GRC framework aligned with organizational objectives and regulations

• Integration identification – Identify and map out areas managed separately (in silos) for GRC practices

• Tools and technology integration – Choose and implement basic GRC tools to streamline processes, in addition to partnering with Compliance and Human Resources to establish a cross-functional team for standardized processes across the enterprise

• Experience in implementing a GRC Program from design, implementation to operationalization

Program Management

• Proactively manage business owners and technology owners to enhance their abilities to prioritize tasks

• Develop team activities and drive good time management and attention to detail skills to keep team on track

• Setting objectives is a primary function of the GRC manager that accomplishes and maintain success

• Strategic alignment an reporting – Align GRC practices with strategic objectives, develop comprehensive metrics and reporting systems

Operational Security Risk Services

• Ensure all security risk operations are carried out in appropriate manner and in a cost-effective way

• Improve operational management systems, processes and best practices

• Purchase software and subscription plans and develop an inventory and oversee team efficiency

• Exceptional communication skills, strong organizational abilities, adaptability and flexibility, and problem-solving and decision-making skills

Education/Qualifications

• Bachelor's Degree in Information Management or equivalent work experience

• 7+ years of work-related experience in Governance Risk & Compliance, Program Management

• Good verbal and written communication skills.

• Proficient with Microsoft Office Suite or related software.

• Familiarity with the concept of Least Privileged

• Familiar with regularity controls such as SOX, GDPR, FNRA

• Familiar with Security Control Frameworks such as NIST and ISO

WEG hires employees and makes decisions about their salary qualifications based on factors such as: the role to be performed; educational and professional experience, qualifications, skills and credentials; tenure, cost-of-living and demand for the role in the applicable market. Thus, the entire salary range for those who are classified as the Individual Contributor level is $97,500 to $156,000.

IND123

#LI-REMOTE

#LI-MR1

Comprehensive Benefits Offerings

Our benefits aim to balance four key elements that make life and work meaningful: health and wellness, financial well-being, professional development, and work/life harmony. You may participate in the following benefits & development opportunities:

• Training and professional development

• Medical, dental and vision coverage (Available to employees and their families)

• Health Savings Account (HSA) with employer contribution and Flexible Spending Accounts (FSA) for medical, dependent, and transit expenses

• Life and AD&D insurance – employer paid and voluntary options

• Short-term and long-term disability, workers compensation – employer paid

• 401k with match and profit sharing

• Wellness programs and resources

• Voluntary benefits, including pet insurance

• 18 days of paid time off (PTO), accrued annually (25 PTO days after 4 years of service)

• 12 paid holidays each year (10 pre-determined and 2 floating days)

• Paid parental leave and paid caregiver leave (Caregiver leave available after 6 months of tenure)

• Reimbursement for tuition, licensing, and other credentials (Available after meeting service requirements)

Should you need reasonable accommodation when completing the application form or during the selection process, contact the Human Resources Department at 763-417-1700

Information provided on this application will be kept confidential and only be shared with those involved in the selection process.

Equal Opportunity Employer, including disabled and veterans. This organization participates in E-Verify.

Click the following link to view Federal and E-Verify posters: Link

OSHA Requirements: This position requires the ability to stand or sit for long periods of time, file documents in high or low cabinets, to use the telephone and to use the computer systems.