Cybersecurity Risk Professional

TL;DR

Cybersecurity Risk Professional (Cybersecurity): Identifying, assessing, and monitoring cyber risks across the organization with an accent on validating risk improvements, managing exceptions, and supporting issue remediation. Focus on conducting cyber risk analyses, evaluating third-party risk scores, and facilitating the cybersecurity exceptions process.

Location: Santa Clara, CA. This position may require access to technology and/or software subject to U.S. export control laws and regulations, requiring applicants to be eligible to access export-controlled information. hirify.global may need to obtain export licensing approval from the U.S. Department of Commerce and/or the U.S. Department of State. Except for U.S. citizens, lawful permanent residents, or protected individuals, applicants may be subject to an export license review prior to employment.

Salary: $84,730–$126,900 per annum

Company

hirify.global’s semiconductor solutions are the essential building blocks of the data infrastructure that connects our world.

What you will do

• Conduct cyber risk analyses across systems, processes, and third parties.
• Evaluate third-party risk scores and deliver actionable insights to stakeholders.
• Facilitate the cyber security exceptions process, including accurate documentation, risk evaluation, approval routing, and remediation.
• Track, investigate, and help resolve risk issues, collaborating with cross-functional stakeholders for root cause analysis and remediation planning.
• Maintain dashboards and workflows for issue and exception visibility and reporting.
• Use risk management tools and frameworks to ensure consistency and accuracy in assessments.
• Collaborate with internal teams to support a strong risk culture and robust control environment.

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field.
• 3–5 years of experience in cyber risk, IT risk, or compliance.
• Familiarity with risk management frameworks and methodologies.
• Strong analytical skills with meticulous attention to detail.
• Excellent communication abilities for explaining risk to both technical and non-technical audiences.
• Proficiency with Microsoft Office tools (Excel, PowerPoint, SharePoint).
• Highly organized, with the ability to manage multiple priorities simultaneously.
• Must be eligible to access export-controlled information under U.S. law.

Nice to have

• CISA or CRISC certification.
• Experience with exception and issue management processes.
• Knowledge of ISO 27001, NIST, or similar frameworks.
• Understanding of data privacy and security regulations.
• Knowledge of 8D, 5 why, and other root cause analysis approaches.

Culture & Benefits

• Comprehensive benefits supporting financial well-being, family support, and mental/physical health.
• Employee stock purchase plan with a 2-year look back.
• Family support programs to help balance work and home life.
• Robust mental health resources to prioritize emotional well-being.
• Recognition and service awards to celebrate contributions and milestones.
• Commitment to diversity and equal employment opportunity.

Hiring process

• Candidates are not permitted to use AI tools (such as transcription apps, real-time answer generators, or automated note-taking bots) during interviews.
• Use of AI tools without prior instruction from the interviewer will result in disqualification.