Share this Job

Director - Enterprise Risk Management

Date: Mar 15, 2023

Location: Atlanta, GA, US, 30308

Company: Norfolk Southern Corp.

Requisition 35545: B6 - Director Enterprise Risk Management 



Primary Purpose:
This position is responsible for facilitating the Corporation’s Enterprise Risk Management (ERM) program. It will oversee, monitor, and analyze all risk management activities of the organization. The role will also collaborate with key stakeholders across the organization to ensure risks to strategic initiatives and emerging risks are identified and appropriately managed to balance both threats and opportunities to NS. This position is also responsible for communicating regular updates on the ERM program to executive management and the Board of Directors.


Principle Duties:

  • Facilitates, coordinates, and manages ERM and all related risk management activities throughout the company.
  • Refines and regularly reviews existing ERM framework elements, including the risk management identification and oversight processes, templates, and monitoring and development of KRIs.
  • Provides guidance and tools to risk owners throughout the company for risk management principles, monitoring of KRIs and emerging threats, risk response plans, and reporting, and ensures awareness of risk owners’ responsibility to manage key risks within their areas.
  • Establish and maintains strong engagement with various business partners including Legal, Finance, Internal Audit, IT and Information Security, and Marketing and ensures effective ongoing alignment of corporate and functional risk managements needs and processes to ensure compliance with internal standards and external regulatory requirements.
  • Coordinates and plans Enterprise Risk Council (ERC) and Risk Working Group (RWG) sessions and workshops.
  • Develops and leads scenario planning exercises for key risks to develop a range of potential outcomes and relevant mitigation plans.
  • Promotes risk awareness across business processes and strategic initiatives on behalf of risk owners and shares emerging risks and potential impacts.
  • Manages technology and information systems designed to support leading risk management practices.
  • Prepares management risk reporting and dashboards for Risk Working Groups, senior leadership, the CEO, and the Board and its relevant Committees.



  • 6-10 years of experience in an internal/ external auditor, enterprise risk management, risk consulting, and/or business process owner position in large corporate environment in related industry
  • Demonstrated ability to refine and implement enterprise risk management programs and proactively identify risks and propose solutions
  • Continuous learner with business savvy, able to adapt and learn new principles and concepts
  • Strategic thinker with the ability to anticipate potential outcomes with broad knowledge and perspective and willing to seek others for advice and solutions
  • Broad understanding of the inter-dependency between operational, technological, strategic and reputational risks as well as general compliance standards
  • Excellent collaboration and communications skills with experience influencing, communicating, building relationships, and driving change with all levels through cross-functional groups
  • Excellent presentation and training skills including the ability to engage audiences with credibility and deliver effective presentations with actionable items
  • Professional, self-starter, results oriented and approachable
  • Strong analytical and problem-solving skills with attention to detail and customer focus
  • Demonstrated ability to prioritize deliverables efficiently and manage multiple initiatives simultaneously to drive projects to completion timely


Education Level:

  • Required: Bachelor’s Degree
  • Preferred: Master’s
  • Preferred Certification:
    • Certified Internal Auditor (CIA)
    • Certified Risk Manager (CRM)


Company Overview

Since 1827, Norfolk Southern Corporation (NYSE: NSC) and its predecessor companies have safely moved the goods and materials that drive the U.S. economy. Today, it operates a customer-centric and operations-driven freight transportation network. Committed to furthering sustainability, Norfolk Southern helps its customers avoid 15 million tons of yearly carbon emissions by shipping via rail. Its dedicated team members deliver more than 7 million carloads annually, from agriculture to consumer goods, and is the largest rail shipper of auto products and metals in North America. Norfolk Southern also has the most extensive intermodal network in the eastern U.S., serving a majority of the country’s population and manufacturing base, with connections to every major container port on the Atlantic coast as well as the Gulf of Mexico and Great Lakes. Learn more by visiting


At Norfolk Southern, we believe in celebrating our individuality. By leveraging the unique backgrounds and viewpoints of our employees, we can create a culture of innovation, respect, and inclusion. We know that employees thrive in a workplace where differing viewpoints, ideas, and experiences are freely shared and valued. As such, we encourage all employees to contribute their distinctive skills and capabilities to our organization.


Equal employment opportunities are available to all applicants regardless of race, color, religion, age, sex, national origin, disability status, genetic information, veteran status, sexual orientation, and gender identity. Together, we power progress.


Nearest Major Market: Atlanta