US Security Risk Domain Oversight

TL;DR

US Security Risk Domain Oversight (Security Risk): Provide cross-domain second-line oversight of core security processes (IAM, vulnerability & patch management, configuration management, network security) with an accent on independent review and challenge across multiple technology and cyber risk areas. Focus on evaluating first-line risk assessments and control effectiveness, assessing risk ratings and acceptances against policy and risk appetite, and leading thematic reviews and remediation oversight for emerging or heightened cyber risks.

Location: Remote (Alpharetta, Georgia, United States of America)

Salary: $115,440 - $173,160 USD

Company

hirify.global is a global financial institution providing banking services to households and businesses.

What you will do

• Act as a cross-domain second-line subject matter expert for security processes (IAM, vulnerability & patch management, configuration management, network security) and perform independent review and challenge.
• Oversee first-line risk assessments, control evaluations, and remediation plans to verify reasonableness, accuracy, and alignment to policy, standards, and risk appetite.
• Assess the adequacy and effectiveness of control environments and confirm whether identified risks are accurately described and rated.
• Evaluate risk acceptances, control exceptions, and remediation approaches to ensure decisions are supported and remain within appetite.
• Conduct thematic reviews and deep dives into emerging or heightened technology and cyber risk areas requiring additional oversight.
• Escalate material concerns, recurring weaknesses, or unsupported decisions to senior management.

Requirements

• 10+ years of relevant experience.
• Advanced knowledge of risk management governance, programs, policies, practices, operating frameworks, and reporting to deliver objective guidance and independent challenge.
• Ability to provide credible challenge to first-line stakeholders and escalate material concerns to senior management.
• Advanced ability to lead, plan, implement, and evaluate program/project activities to ensure completion of initiatives.
• Strong analytical and reporting skills using advanced analytical software tools and data analysis methods.
• Ability to communicate effectively in oral and written form and work collaboratively across teams.

Nice to have

• Deep experience in second-line technology and cyber risk oversight within a regulated environment.

Culture & Benefits

• Base salary with potential variable compensation/incentive awards and eligibility for cash and/or equity incentive awards.
• Health and well-being benefits, savings and retirement programs, and paid time off (Vacation PTO, Flex PTO, Holiday PTO).
• Training and onboarding sessions plus regular development conversations and access to an online learning platform.
• Mentoring programs and career development support.
• Occasional domestic travel; no international travel.

Hiring process

• Interviews scheduled for candidates of interest.
• Communication of outcomes to applicants by email or phone call.