Summary
Overview
Work History
Education
Skills
Websites
Languages
Timeline
Generic

Susan Bradley

Columbus

Summary

Risk management professional with over 25 years of expertise in healthcare, insurance, and pension funds. Proven track record in third-party management, business continuity, and incident response. Developed and implemented risk management frameworks that enhanced organizational resilience and ensured regulatory compliance. Strong skills in policy development, strategic planning, and effective stakeholder communication.

Overview

21
21
years of professional experience

Work History

Enterprise risk management officer

School Employees Retirement Systems of Ohio
Columbus
07.2020 - Current
  • Direct and oversee the Vendor Management Program by establishing a comprehensive vendor risk repository and implementing a structured framework for vendor ranking, scoring, and tiering.
  • Lead the creation, review, and analysis of vendor due diligence and security assessments, ensuring alignment with critical business functions and data exchange requirements.
  • Direct and oversee the organization-wide Enterprise Risk Management (ERM) program, including risk assessments, risk registers, and business impact analyses.
  • Ensure enterprise risks are managed in compliance with applicable policies, regulations, and laws.
  • Collaborate with all departments to document risks, impacts, likelihood, responses, and criticality.
  • Define and establish risk tolerance and appetite at both departmental and organizational levels.
  • Responsible for directing and overseeing Business Continuity and Disaster Recovery Plans and programs along with IT, Information Security, and Senior Leadership.
  • Responsible for plans, playbooks, and tabletop exercises.
  • Oversee enterprise insurance program which encompasses insurance policies involving directors and officers, crime, cyber, commercial, stop loss, and auto.
  • Coordinate risk, vendor, and incident response initiatives across all departments.
  • Create and maintain risk-related policies, programs, procedures, documents, and templates.
  • Ensure programs align with company’s strategic goals.
  • Review legal contracts regarding terms related risks, incident response, disaster recovery, business continuity, and data breach notification.

Senior Quality and risk analyst

CoverMyMeds
09.2016 - 07.2020
  • Developed and implemented Enterprise Risk Management Framework across all business units.
  • Developed and implement company-wide Business Continuity framework and program.
  • Implement new programs from requirements gathering to deployment.
  • Work with business and technology leaders across the company on multiple initiatives.
  • Identify technology gaps and deficiencies by conducting risk assessments; recommends corrective action of identified control weaknesses.
  • Lead the planning, testing, tracking, remediation, and risk acceptance of identified company-wide risks.
  • Collaborate with other Governance, Risk & Compliance (GRC) specialists to ensure continuity between Risk, Quality, Information Security, Compliance, and Privacy functions.

QA PROCESS ARCHITECT

Grange Insurance
06.2012 - 09.2016
  • Worked in an agile development cycle.
  • Create and report monthly team and individual testing metric such as defect effectiveness removal, defect injection, and defect closure rate.
  • Perform root cause analysis on critical issues and calculate cost of poor quality.
  • Co-Program Lead for six Agile teams.
  • Create and report monthly team and individual testing metric such as defect effectiveness removal, defect injection, and defect closure rate.
  • Establish and compute quality metrics to look for areas of improvement.
  • Define metrics and conduct analytics of software production defects, identify trends, and drive testing and/or process improvements.
  • Implement and own quality solutions across all teams in the Software QA organization related to the trends determined in the analytics and report the trends in testing to the QA leadership.
  • Drive continuous improvement of process, and technology through development and maintenance of short, medium, and long-range software quality improvements.

QA Technical expert

Grange Insurance
06.2005 - 06.2012
  • Responsible for creating and implementing quality assurance best practices and methodologies across multiple departments.
  • Implemented the use of a standard test case matrix with built in status reporting.
  • Designed and implemented detailed testing procedures, methodologies, and best practices.
  • Increased testing efficiencies with process improvements.
  • Performed audits of work items implemented to evaluate a tester’s performance and test coverage.
  • Create and report monthly team and individual testing efficiencies.
  • Perform trend analysis of individual testing efficiencies to look for opportunities of additional training and/or mentoring.
  • Participation on a Process Improvement Committee with IT development, business analysts, and QA manager.
  • Participation in a Production Defect evaluation committee to determine defect criticality.
  • Participation in Lessons Learned for problematic projects and determine process improvements based on results.
  • Member of Production Defect Analysis team to evaluate testability and traceability of defect back to testers testing artifacts.

Education

Master of Arts - Creative Writing

Seton Hill University
Greensburg, PA
01.2014

BBA - Business Management

University of Texas
San Antonio, TX
01.1990

Skills

  • Certified Risk and Information Systems Control (CRISC)
  • Certified Third Party Risk Management Professional (CTPRP)
  • Certified Business Continuity Practitioners (CBCP)
  • Certified Six Sigma Black Belt (CSSBB)
  • Enterprise Risk Management
  • Business Continuity/Disaster Recovery
  • Use of risk-related tools
  • Operational risk assessment
  • Risk reporting
  • Incident response planning
  • Vendor risk management
  • Risk mitigation strategies

Websites

Languages

Spanish
Professional

Timeline

Enterprise risk management officer

School Employees Retirement Systems of Ohio
07.2020 - Current

Senior Quality and risk analyst

CoverMyMeds
09.2016 - 07.2020

QA PROCESS ARCHITECT

Grange Insurance
06.2012 - 09.2016

QA Technical expert

Grange Insurance
06.2005 - 06.2012

Master of Arts - Creative Writing

Seton Hill University

BBA - Business Management

University of Texas

Similar Profiles

  • Jeffrey AnnisJeffrey Annis

    Investment Accounting Manager at Ohio Public Employees Retirement System (OPERS)Investment Accounting Manager at Ohio Public Employees Retirement System (OPERS)

  • Kayla SteckKayla Steck

    Retirement Technician Supervisor at Public School Employees' Retirement SystemRetirement Technician Supervisor at Public School Employees' Retirement System

  • Anita GreenAnita Green

    Human Resources Director at Louisiana School Employees Retirement SystemHuman Resources Director at Louisiana School Employees Retirement System

  • Anthony JohnsonAnthony Johnson

    Automotive Finance Manager at AutoNation Chrysler Dodge Jeep RamAutomotive Finance Manager at AutoNation Chrysler Dodge Jeep Ram

  • Bridget MaloneyBridget Maloney

    Secretary at Ohio Association of Cardiac and Pulmonary RehabSecretary at Ohio Association of Cardiac and Pulmonary Rehab

CREATE PROFILE
Susan Bradley