• Responsible for corporate governance of all risk committees, including charter maintenance, committee scheduling, and adherence to corporate governance requirements. • Led the development and implementation of the Enterprise Risk Management Committee. As chairperson, responsible for establishing agendas, facilitating development of meeting materials, and leading the committee meeting. • Supported the CRO in the implementation of the Directors’ Risk Committee. As Secretary, responsible for establishing agendas, working with risk stripe owners on materials, and meeting facilitation.• Oversee the Risk Appetite Statement and related reporting on measures and indicators. • Administer the New Activities process and chairperson of the New Activities Committee responsible for reviewing and assessing new activities. • Managed the Operational Risk Program, including key risk indicator monitoring and reporting, issue management and reporting, annual fraud risk assessment, Risk and Controls Self-Assessment (RCSA) program, and operational risk event and loss reporting.• Led the implementation and execution of the RCSA program, ensuring proper identification and assessment of key risks and controls. Conducted second line review and challenge to ensure control gaps were identified and remediation plans mitigated the risk. • Oversaw the administration of the third-party risk management function.• Administered the Model Risk Management Program, including annual model certification, validation findings management, and model risk reporting. • Implemented the Policy Governance framework covering the development, documentation, approval, management, and control of all policies, programs, and standards.• Participated in the management of the Internal Controls over Financial Reporting (ICFR) process, including maintaining controls documentation/process maps, deficiency monitoring, and liaison with the external auditor and parent company.

Responsibilities included:• Coordinate the quarterly enterprise wide risk assessment, identifying any control gaps and monitoring remediation actions for reducing the risk to an acceptable level. Report results to senior management and the Board.• Designated operational risk advisor on projects and initiatives, proposed product/system development, and enhancements to business processes, ensuring risk exposure is identified by management and adequate controls/risk mitigation implemented.• Manage the Bank’s COSO and Sarbanes Oxley (SOX) compliance process. Responsible for all phases of the process: scoping and planning, controls documentation and testing, monitoring and assessment of deficiencies and remediation actions, and reporting to management and the Board. Serve as primary liaison with the Bank’s external audit firm.• Administering the Vendor Management Program, ensuring third-party risk is properly mitigated through vendor risk assessing, monitoring, and reporting in accordance with FFIEC standards.• Assist with the development and monitoring of the Bank’s Risk Appetite Statement, including the reporting of related Key Risk Indicators and Key Performance Indicators.• Administering the Business Continuity Plan, including periodic plan updating, and coordinating the annual plan test and reporting the results to management and the Board.• Assist with oversight of the Policy Governance Program. Implemented and administer the Bank’s policy governance tool, Navex.• Oversee the development and administration of the Bank’s model risk governance program, including monitoring of models across the enterprise to manage risk exposure and ensure compliance with regulatory guidance.

• Involved with the development and administration of the Bank’s ERM Program, including defining the framework, standards, and practices for identifying, assessing, monitoring and responding to risks across the enterprise. • Managed the annual enterprise-wide risk assessment plan, consisting of risk assessments over business lines, operational functions, regulatory compliance, and new products and technologies. • Provided oversight of the ERM issue management process.• Assisted with developing, establishing, and reporting of risk indicators, including Key Performance Indicators (‘KPI’) and Key Risk Indicators (‘KRI’) across multiple business lines and functions. • Risk governance subject matter advisor to senior management by providing recommendations to policies, procedures, and processes.• Participated in the due diligence of financial institution acquisition candidates.• Assisted with the coordination of regulatory examinations and financial statement external audits. • Led the implementation of the Bank’s Governance, Risk, and Controls (‘GRC’) system, MetricStream. Served as administrator and subject matter expert of the GRC solution.• Participated in the development of the Model Risk Management policy and program.• Involved with developing and facilitating the Bank’s vendor management program. Provided oversight of vendor due diligence and risk assessment processes. • Managed the Risk Recognition Group, consisting of a Risk Manager and five Risk Analysts. The Group acted as a second line of defense and provided risk oversight of the Retail Banking division. Developed a controls assurance program to assess and report risk within the division. • Developed and established the Retail Operations Group, consisting of five managers and 24 team members. The Group provided operational, compliance, and risk management support to the Retail Banking division.• Directed and conducted the annual FDICIA internal controls evaluation and certification process.

• Managed risk-based operational, financial, and compliance audits to provide management with an independent assessment over internal controls. • Completed work paper reviews and provided feedback to Internal Audit staff.• Assisted with the annual enterprise wide risk assessment and development of the audit plan.• Audit responsibilities included: planning, scoping, and development of the audit program; test plan execution; management of audit resources and budget; developing audit reports for presentation to management and the Audit Committee.• Provided oversight of the Bank’s process for documenting, testing, and monitoring of internal controls for compliance with Sarbanes-Oxley (SOX) 404. Completed flowcharts, process narratives, and control matrices using a COSO methodology.

• Administered the annual audit plan and performed comprehensive managerial responsibilities over the Internal Audit function and resources. • Oversaw the annual risk assessment process and development of the subsequent audit plan.• Conducted fraud investigations and reported findings to senior management.• Developed and executed various processes related to the company’s bankruptcy filing.• Developed and supervised activities to manage operational and financial risks involved with the sale of the retail branch system and deposits. • Facilitated the quarterly SOX 302 certification process, ensuring process narratives and control matrices are accurately updated and tested as necessary.

• Auditor-in-Charge over internal audits conducted at a $2.0 billion commercial bank and at a $1.8 billion commercial bank. Audit responsibilities included: planning, scoping, and development of the audit program; managing project budget and assigned staff consultants; test plan execution; and developing detailed audit reports summarizing scope, findings, and recommendations for presentation to management and the Audit Committee. Areas reviewed included: Accounting Operations, Anti-Money Laundering/Bank Secrecy Act compliance, Gramm-Leach Bliley Act compliance; Loan Operations; and regulatory compliance program. • Conducted a company wide risk assessment and assisted with the development of the annual audit plan for a $2.0 billion commercial bank and a $1.8 billion commercial bank. • Performed control evaluation and test-work to determine compliance with Sarbanes Oxley 404 for a major gaming manufacturer with international operations and a software engineering company with international operations. Responsibilities included: development of templates for control documentation and benchmarking, test-plan development and execution, and issue identification and risk assessment.• Assisted with an internal audit over financial reporting controls relating to insurance policy data and processes at a major insurance company.

• Conducted risk-based operational, financial, and compliance audits to provide management with an independent assessment over internal controls. • Audit responsibilities included: planning, scoping, and development of the audit program; test plan execution; and developing detailed audit reports summarizing scope, findings, and recommendations for presentation to management and the Audit Committee• Participated as staff auditor on various audit projects over major corporate divisions, including Loan Servicing, Finance Operations, and Central Back Office. • Functioned as Auditor-in-Charge for several audit projects including: Construction Lending, Financial Services Group, Retail Bank Branch offices, Treasury Operations, the Bank’s Automated Clearing House (ACH) process, and Gramm-Leach Bliley Act.• Reviewed work papers and provided feedback to Internal Audit staff.• Responsible for documenting, testing, and monitoring of internal controls to assist with the Bank’s Sarbanes-Oxley (SOX) 404 initiative. Applying the COSO methodology, completed flowcharts, process narratives, and control matrices for documenting of business objectives, risks, and internal controls. Developed and executed SOX test plans, risk assessed control deficiencies and recommended corrective actions.• Facilitated the quarterly SOX 302 certification process, ensuring process narratives and control matrices are accurately updated and tested as necessary

• Performed compliance and operational reviews of Retail Branch offices and Retail Banking Group support departments in accordance with established standards and practices. Prepared detailed written reports of compliance review activities for presentation to senior management.• Primary ACH and Item Processing Subject Matter Expert providing operational, compliance, and technical support to branch offices and support departments.• Assisted with the identification and validation of departmental risks and controls in support of the Bank’s Sarbanes-Oxley compliance effort.• Consulted on, and reviewed proposed changes to Bank policies and procedures for compliance with regulatory and consumer/public interest laws, rules, and regulations.

• Responsible for branch staffing and personnel requirements including hiring, terminating, training, counseling, and employee development for a staff of eight individuals.• Executed periodic quality control and operational compliance reviews of various offices throughout the branch network to minimize financial risk, ensure operational efficiency, and satisfy regulatory standards.• Elected “Most Valuable Conversion Person” for outstanding participation as trainer and lead person during bank-wide computer system conversion.• Awarded “Circle of Excellence” for placing in the top 5% for overall performance in 1996