🛠 Tech Stack

💼 About This Role

You'll execute risk assessments and manage the risk intake process, ensuring daily execution of the risk program. You'll be the primary face of the Risk Intake Process, guiding stakeholders through the methodology. This role offers exposure to cloud-native architectures and SaaS security models.

🎯 What You'll Do

• Execute risk assessments including scoping and scoring
• Conduct risk identification intake from Jira Service Desk
• Draft Risk Assessment Memos with actionable recommendations
• Assess control design adequacy and operating effectiveness

📋 Requirements

• 3–5 years experience in Information Security or GRC
• Experience performing risk assessments and scoring
• NIST CSF, NIST SP 800-30/39/53 and ISO 27005 knowledge
• Advanced Excel/Google Sheets skills for data analysis

✨ Nice to Have

• Experience with FedRAMP, SOC 2, PCI-DSS
• Knowledge of cloud-native architectures
• Jira workflow and dashboard creation

🎁 Benefits & Perks

• 🏖️ Unlimited PTO
• 🏥 Health insurance
• 💰 Equity
• 📈 401k matching
• 🏡 Remote work

📨 Hiring Process

Estimated timeline: 2-4 weeks · AI estimate

1. 1Recruiter Call· 30 min
2. 2Hiring Manager Interview· 45 min
3. 3Technical Interview· 60 min