Risk Manager (Trust and Security)

TL;DR

Risk Manager (Trust and Security): Building and maturing a formal security risk management program for the hirify.global Data Cloud (VDC) platform with an accent on cloud-native security, risk identification, and business-relevant risk prioritization. Focus on designing risk assessment processes, maintaining the security risk register, and partnering with engineering and SRE teams to drive measurable risk reduction across SaaS environments.

Location: Office-based in San Francisco, CA

Salary: $128,400 – $328,700 USD (dependent on geographic zone)

Company

hirify.global is a leader in data resilience and security, protecting over 550,000 customers globally by ensuring data and AI are secured, resilient, and fully understood.

What you will do

• Build and operate a formal security risk management process, including identification, assessment, and prioritization.
• Maintain the VDC Security risk register, mapping technical findings to business-relevant risk ratings.
• Partner with engineering, SRE, and security teams to convert high-priority risks into actionable work items.
• Prepare executive-level risk reporting for leadership, highlighting trends and mitigation progress.
• Collaborate with Global Information Security (GIS) to align risk taxonomy and enterprise requirements.
• Continuously improve risk processes, metrics, and tooling to ensure measurable security investments.

Requirements

• 5+ years of experience in security risk management, governance, or related roles in cloud/SaaS environments.
• Hands-on experience building/operating risk registers and working with security findings (vulnerability scans, penetration tests).
• Deep understanding of cloud security concepts, specifically within Microsoft Azure.
• Ability to translate complex technical findings into clear business impact for senior stakeholders.
• Proficiency with workflow tools like Jira and experience collaborating in distributed team environments.

Nice to have

• Experience partnering with central/corporate security teams in large organizations.
• Experience preparing risk reporting for C-suite executives.
• Familiarity with risk frameworks such as ISO 27005, NIST SP 800-30, or FAIR.
• Exposure to event-driven cloud architectures.

Culture & Benefits

• Comprehensive medical, dental, and vision coverage starting on day one.
• Unlimited paid time off, 12 paid holidays, plus 4 global hirify.globale Days and 24 volunteer hours annually.
• 401(k) retirement plan with company matching contributions.
• Generous paid parental leave policies (8–16 weeks).
• Mental health support, fertility/adoption/surrogacy support, and digital wellness tools.
• Extensive learning opportunities via LinkedIn Learning, O'Reilly, and professional development workshops.