Ironclad is hiring a
Senior Risk Manager

Summary

The job is for a Risk Management professional at Ironclad, a leading contract lifecycle management platform company. The role involves conducting risk assessments, developing risk management strategies, monitoring and reporting on their effectiveness, collaborating with cross-functional teams, and providing guidance to junior team members.

Requirements

• Bachelor’s degree in Information Security, Risk Management, or a related field, or equivalent experience
• 5+ years of experience in risk management, information security, or a related field
• Proven experience conducting risk assessments and developing risk management strategies
• Strong understanding of security compliance frameworks such as SOC 2, ISO 27001, NIST, GDPR, HIPAA, or others
• Excellent analytical and problem-solving skills, with the ability to identify potential risks and develop effective mitigation plans
• Strong communication skills, with the ability to clearly articulate risk management concepts to both technical and non-technical stakeholders
• Ability to work independently and manage multiple priorities in a fast-paced environment
• Demonstrated ability to learn and adapt to new security compliance frameworks as needed
• Able to articulate risks associated with software procurement

Responsibilities

• Conduct risk assessments to identify and evaluate potential risks that could impact the organization’s operations and compliance with security standards
• Develop and implement risk management strategies and mitigation plans to address identified risks
• Monitor and report on the effectiveness of risk management initiatives and recommend improvements as necessary
• Collaborate with cross-functional teams, including IT, Legal, and Compliance, to ensure alignment with risk management objectives
• Stay current on emerging security threats, trends, and compliance requirements, and update risk management practices accordingly
• Support the expansion of our compliance scope by learning and implementing new security frameworks as needed
• Provide guidance and mentorship to junior team members on risk management best practices and methodologies
• Assist in preparing reports and presentations for senior leadership on risk management activities and outcomes

Preferred Qualifications

• Master’s degree in Information Security, Risk Management, or a related field
• Professional certifications such as Certified Information Systems Auditor (CISA), GIAC Security Essentials (GSEC), or Certified in Risk and Information Systems Control (CRISC)
• Experience working in a SaaS company or technology-focused organization
• Experience in vendor risk management or third-party risk assessments
• Previous experience with contract lifecycle management or related SaaS platforms
• Experience mentoring or leading junior risk management professionals
• Knowledge of AI governance and AI supply chain risk assessment
• Experience with accounting or other auditable professions

Benefits

• Health, dental, and vision insurance
• 401k
• Wellness reimbursement
• Take what you need vacation policy
• Generous parental leave for both primary and secondary caregivers
• Base Salary Range: $120,000 - $130,000