Certification Program Compliance and Risk Manager

This is a fully remote position, open to applicants in United States.

📋 Description

• Identify and document risk scenarios, collaborating with internal and external stakeholders to develop, implement, and assess controls aimed at mitigating impact.

• Maintain ISACA’s Certification Impartiality Threat Analysis to address emerging threats within the certification landscape of ISACA.

• Take ownership of the governance, review, and continuous enhancement of the Certification Policies and Procedures Manual, ensuring adherence to ISO/IEC 17024:2026 requirements.

• Evaluate the impact of policy modifications, identify compliance risks and gaps, and partner with Senior Management to implement corrective measures and uphold accreditation readiness.

• Oversee the completion and upkeep of ANSI accreditation process documentation necessary for the annual surveillance application of ISACA certification programs.

• Coordinate with internal stakeholders to collect, review, and validate evidence of compliance with accreditation standards, ensuring documentation is accurate, complete, and submitted within set deadlines.

• Aid in assessing surveillance findings, contribute to root cause analyses of identified nonconformities, and manage the development, implementation, monitoring, and validation of corrective actions to mitigate compliance risks and maintain ongoing accreditation status for ISACA certifications.

• Maintain and update certification-control documents (ECG, CPE Policy) and ensure ISACA's external information (e.g., website) aligns with updated policies or procedures.

• Conduct compliance reviews of the certification management system to ensure ongoing adherence to the ISO/IEC 17024:2026 Standard.

• Hold periodic certification management system review meetings with Senior Management to identify inefficiencies and potential improvements, documenting and implementing resolutions.

• Supervise investigations into suspected fraud cases, documenting findings and reporting to the appropriate stakeholders.

• Develop and analyze Key Risk Indicators (KRIs) for each certification-related risk.

• Collaborate with legal, cybersecurity, IT, and product teams to tackle large-scale certification fraud.

• Analyze data and generate reports for management regarding potential fraud risks, trends, and the outcomes of investigations.

• Prepare and present certification compliance metrics, annual assessment results, and accreditation-related reports for governance bodies, including the Audit and Risk Committee (ARC), ensuring transparency, accountability, and informed decision-making.

• Manage the Certification Audit Program and act as the liaison for annual policy audits.

• Oversee reports related to credentialing status, compliance metrics, and operational performance.

• Manage the Preventive and Corrective Actions Tracking process and worksheet to ensure identified controls are implemented on schedule.

⛳️ Requirements

• Bachelor’s degree in business, Law, Certification, Risk, or a related field.

• 5+ years of experience in accreditation credentialing standards (e.g., ANAB ISO/IEC 17024), compliance, quality assurance, risk mitigation, exam security, and fraud prevention, including a minimum of 2 years in supervisory or project management roles.

• 3+ years of direct experience in managing governance, risk, compliance, or accreditation activities within certification programs.

• Experience supporting accredited certification programs and maintaining compliance with accreditation standards (e.g., ANAB ISO/IEC 17024), including the application of regulatory, legal, and ethical requirements in credentialing environments.

• Proven expertise in enterprise risk management, including risk identification, assessment, mitigation planning, risk register management, and the development of compliance monitoring frameworks and internal controls.

• Experience managing compliance operations, encompassing corrective and preventive action (CAPA) processes, audit readiness activities, and conducting compliance reviews or accreditation assessments.

• Advanced experience overseeing credentialing integrity functions, including the investigation of exam irregularities, misconduct, and certification violations, as well as implementing exam security, fraud prevention, and test integrity controls.

• Proficient in developing governance documentation, including policies, SOPs, procedures, and control frameworks.

• Advanced skills in analyzing compliance and operational data, constructing dashboards and risk reporting tools, and preparing and presenting findings to leadership.

• Experience with certification management systems or credentialing platforms, as well as workflow or case management tools (e.g., Jira or similar systems).

• Proven ability to manage cross-functional initiatives and engage stakeholder groups across compliance, operations, and program functions.

🏝️ Benefits

• ISACA Career Opportunities and Benefits Options