Responsibilities
- Lead the development and ongoing enhancement of a data-driven security risk management framework, including risk scoring models, likelihood and impact assessments, and defined risk tolerance levels to support consistent organizational decision-making.
- Maintain and govern a centralized, up-to-date security risk register, defining key risk indicators, monitoring trends, and ensuring accountability for risk mitigation with business and technical stakeholders.
- Design and deploy automated systems for identifying and monitoring security risks by integrating data from vulnerability scanners, cloud security platforms, SIEMs, and third-party risk feeds to ensure real-time risk visibility.
- Create and deliver executive-level risk reporting dashboards that translate technical risks into business terms such as breach probability, financial impact, control costs, and remaining exposure to guide strategic investment.
- Collaborate across departments including Legal, Privacy, Finance, and Engineering to advise on security risk, influence investment priorities, and promote enterprise-wide risk awareness.
Benefits
- Support for mental health, wellness, and physical fitness
- Access to career development coaching and professional growth resources
- Comprehensive family planning and fertility benefits
- Long-term savings and retirement planning options
- On-site food services accommodating diverse dietary needs
Work Arrangement
Hybrid — San Francisco
Other
- Standard in-office days are Monday, Tuesday, and Thursday.
- Most employees may work remotely on Wednesdays.
- Remote work on Fridays is determined by role responsibilities and team dependencies.
- Recruiters will provide detailed in-office expectations during the interview process.