Ironclad is hiring a
Senior Risk Manager

Summary

Join Ironclad as a Risk Management Specialist to conduct risk assessments, develop risk management strategies, and collaborate with cross-functional teams. As a leader in Contract Lifecycle Management, we're looking for someone with strong analytical skills, experience in risk management, and knowledge of security compliance frameworks.

Requirements

• Bachelor’s degree in Information Security, Risk Management, or a related field, or equivalent experience
• 5+ years of experience in risk management, information security, or a related field
• Proven experience conducting risk assessments and developing risk management strategies
• Strong understanding of security compliance frameworks such as SOC 2, ISO 27001, NIST, GDPR, HIPAA, or others
• Excellent analytical and problem-solving skills, with the ability to identify potential risks and develop effective mitigation plans
• Strong communication skills, with the ability to clearly articulate risk management concepts to both technical and non-technical stakeholders
• Ability to work independently and manage multiple priorities in a fast-paced environment
• Demonstrated ability to learn and adapt to new security compliance frameworks as needed
• Able to articulate risks associated with software procurement

Responsibilities

• Conduct risk assessments to identify and evaluate potential risks that could impact the organization’s operations and compliance with security standards
• Develop and implement risk management strategies and mitigation plans to address identified risks
• Monitor and report on the effectiveness of risk management initiatives and recommend improvements as necessary
• Collaborate with cross-functional teams, including IT, Legal, and Compliance, to ensure alignment with risk management objectives
• Stay current on emerging security threats, trends, and compliance requirements, and update risk management practices accordingly
• Support the expansion of our compliance scope by learning and implementing new security frameworks as needed
• Provide guidance and mentorship to junior team members on risk management best practices and methodologies
• Assist in preparing reports and presentations for senior leadership on risk management activities and outcomes

Preferred Qualifications

• Master’s degree in Information Security, Risk Management, or a related field
• Professional certifications such as Certified Information Systems Auditor (CISA), GIAC Security Essentials (GSEC), or Certified in Risk and Information Systems Control (CRISC)

Benefits

• Health, dental, and vision insurance
• 401k
• Wellness reimbursement
• Take what you need vacation policy
• Generous parental leave for both primary and secondary caregivers