Internal Audit and Risk Manager

About The Position

Requirements

• Bachelor’s degree in Risk Management, Business Administration, Finance, Accounting, Human Resources, Public Administration, or a related field (or equivalent combination of education and experience)
• An average of 7-10+ years of progressively responsible experience in risk management, internal audit, compliance, finance, HR operations, or a related oversight function
• Demonstrated experience conducting independent audits, reviews, or assessments of organizational processes and internal controls
• Strong working knowledge of employment practices, personnel records, internal controls, and compliance requirements, particularly in nonprofit or mission-driven organizations
• Proven ability to work independently with minimal supervision, exercise sound judgment, and manage confidential and sensitive information with discretion
• Experience preparing and presenting findings, recommendations, and reports to senior leadership or boards
• Excellent analytical, documentation, and written communication skills

Nice To Haves

• Professional certifications such as CPA, CIA, CISA, ARM, CRM, SHRM-SCP/CP, or similar (or actively pursuing)
• Experience in a nonprofit, foundation, public sector, or highly regulated environment
• Familiarity with workers’ compensation administration, insurance coverage review, and claims management
• Experience supporting or interacting with governance bodies (e.g., Audit Committee, Board of Directors)
• Background in process improvement, internal controls design, or enterprise risk management (ERM) frameworks

Responsibilities

• Identify, assess, and monitor organizational risk across operations, finance, HR, compliance, and programs
• Maintain a risk register and recommend mitigation strategies aligned with the Foundation’s mission and risk tolerance
• Conduct regular, objective audits of internal processes, including HR/personnel files, credit card usage and receipts, expense reimbursements, and operational controls
• Document findings and track follow-up actions
• Review compliance with internal policies, employment regulations, labor laws, and governance standards
• Recommend updates or improvements to policies and procedures to reduce exposure and increase consistency
• Oversee workers’ compensation processes and claims management
• Review insurance coverage (for example, workers’ comp, liability, D&O, property) to ensure adequate protection and alignment with organizational needs
• Serve as an independent resource for reviewing risk-related concerns, irregularities, or breakdowns in process
• Conduct fact-based investigations and provide confidential findings and recommendations to leadership
• Prepare clear, concise risk reports for the Deputy Director, CEO, and other stakeholders as appropriate
• Communicate trends, emerging risks, and mitigation progress in a timely and actionable manner
• Support a culture of accountability, transparency, and proactive risk management by providing guidance, education, and consultation to staff while maintaining independence from operational decision-making
• Maintain excellent personal service to all personnel while maintaining a level of sensitivity and fairness
• Attend all relevant staff meetings
• Assist in the improvement of human resources management systems and procedures
• Demonstrate flexibility and understanding when asked or required to perform other duties as assigned