The Director of Business Continuity (BC) Planning and BC Third-Party Risk Management 
(BCTPRM) is responsible for providing complex strategic thought leadership to the BC 
Planning and BC TPRM Second Line of Defense (SLoD) processes and services, leading and 
directing efforts to develop, implement, test, document and maintain BCP and BC TPRM 
risk assessment methodologies, review and challenge processes and services and ensures 
alignment with Disaster Recovery, Crisis & Critical Incident Management, Emergency 
Preparedness program components. Maintains Business Continuity Risk Management (BCRM) 
policies and standards and may also be responsible for leading and executing various 
internal BCRM projects. Through BCRM’s oversight of First Line of Defense (FLoD) 
processes and services, limits Bank’s exposure of BC risks associated with business 
continuity and third-party due to disruptions such as those resulting from human error, 
transaction processing failure, external events, threats to information systems, data 
integrity and fraudulent activities.



Key Responsibilities

 

·        Provides strategic thought leadership and subject matter expertise related to 
BC Planning and BC Third-Party risk management practices.

·         Leads and directs efforts for BC Planning and BC Third-Party SLoD 
initiatives, partners with executives across the business on specific aspects of those 
initiatives and oversees implementation efforts. 

·         Proactively identifies, reports, monitors and tracks resolution of high-
impact risks, gaps and corrective action plans. 

·         Ensures regular review and maintenance of the BC Planning and BC Third-Party 
Program standards and services to ensure alignment with relevant regulatory guidance, 
company risk appetite and goals and objectives.

·         Proposes changes in BC Planning and BC Third-Party risk management strategies 
and implementation as necessary to reflect changes in the structure of the bank, 
escalating major changes to relevant committees (ORMC, IRC, TPRMC, and BCRSC) for 
approval as appropriate. 

·         Ensures First Line of Defense (FLoD) team’s alignment with the Business 
Continuity Planning Program, including business impact analysis, dependency analysis, 
and BC and pandemic Planning.

·         Ensures First Line of Defense (FLoD) team’s alignment with the Third-Party 
Risk Management program including compliance with on-boarding, due diligence, 
monitoring and testing requirements. 

·         Partners with FLoD to influence BCP/BC TPRM approach and strategic 
prioritization.

·         Maintains a risk focused control assessment, scorecards, dashboards and 
rating methodology for managing risks associates with BC Planning & BC third-party.

·         Develops required BCP/BC TPRM FLoD key risk metrics and reporting routines.

·         Tracks regulatory and industry developments by monitoring relevant sources.

·         Works with internal BCRM and ORM teams to establish a Business Continuity 
Risk and Control assessment methodology and risk management framework within the 
Americas.

·         Develops and manages BC Planning & BC Third-Party staff by:

o   Setting stretch objectives

o   Holding staff accountable for results

o   Promptly addressing performance issues and encouraging meaningful performance 
discussions

o   Providing relevant, actionable, timely feedback

o   Proactively preparing, reviewing, and approving performance reviews and performance 
plans

o   Providing necessary training and coaching on BC Planning and Third-Party risk 
assessments and review and challenge processes and services

o   Encouraging and supporting continuous improvements and skills enhancements.

·         Manages annual staff compensation reviews, determination and disposition.

·         Manages BCP and BC TPRM regulatory examination and internal audit requests 
and responses.

·         Serves as a subject matter expert to help staff gain deeper understanding of 
laws, rules and regulations (FFIEC Business Continuity Management Handbook).

·         Other duties as assigned by manager. 

Qualifications

·    Typically, requires 10-15 years of related experience in the financial services or 
banking industry supporting risk management related function focused on Business 
Continuity Planning and BC Third-Party.

·        Must be experienced in Business Continuity Planning and BC Third-Party 
practices and have a strong understanding of Operational Risk Management concepts, 
framework, programs, and regulatory guidelines.

·         High attention to detail/focus on internal control activities with focus on 
risk management, BC Planning and BC TPRM.

·         Demonstrated proficiency in BC Planning and BC TPRM risk assessment analysis 
and risk management framework.

·     People management experience strongly preferred; Ability to build collaborative 
and productive team, consensus and sphere of influence with other teams and across all 
functions.

·         Excellent communications skills, both oral and written with experience 
presenting to senior management.

·     Experience managing challenging discussions with senior leaders, with the ability 
to influence regardless of hierarchy/reporting lines.