Stanford University, recognized as one of the most prestigious and innovative academic and research institutions in the world, seeks an experienced, resilient, and strategic leader with superb communication skills to serve as Chief Risk Officer (CRO). This leader must be highly strategic and creative in collaborating with the wide array of offices and stakeholders required to foster a culture of compliance and mitigate institutional risks. This enterprise-wide position will have responsibility for the University proper as well as its related organizations, such as SLAC National Accelerator Lab, Stanford Management Company, Lucille Packard Children’s Hospital, and Stanford Health Care.
Reporting administratively to the Vice President for Business Affairs & Chief Financial Officer, this position serves as a key advisor across the institution on enterprise risks, internal audit, security and privacy, risk management, code of conduct and compliance matters. The CRO has dotted-line reporting to the hospital CEOs, and staffs the Board of Trustees Committee on Audit, Compliance and Risk, and serves as a member of similar committees at both hospitals and SLAC. The CRO will also be responsible for coordinating the University’s ethics and compliance program including overseeing the development, review and revision of compliance-related policies and procedures; serving as a channel of communication to receive and direct compliance issues to appropriate resources within the University; collaborating with issue-specific compliance officers on campus; tracking alleged violations of policies and procedures and ensuring an appropriate University response; coordinating effective monitoring and training programs; developing and monitoring a comprehensive risk map; leading proactive privacy initiatives; and communicating effectively with University leadership. While directly overseeing the varied teams within the Office of the Chief Risk Officer (OCRO), the CRO will serve as a vital partner to a large and diverse array of campus stakeholders and will place a high value on integrity and transparency. OCRO will work to create strong central processes and procedures among varied constituencies, understanding that one size may not fit all. The CRO provides an independent oversight role and will motivate administration, faculty, and staff to embrace a culture of compliance and shared responsibility to support the University’s strategic plan and mission.
The CRO will lead and develop the approximately 60 staff members in the OCRO, which encompasses the following six functions: Internal Audit; Ethics and Compliance; Enterprise Risk Management; Risk Management; Privacy and Information Security. (Information Security reports dually to the CRO and Chief Information Officer.)