Security Risk Program Lead

📋 Description

• Build and mature enterprise security risk management program.
• Lead AI risk management; influence safe AI tooling adoption enterprise-wide.
• Own vendor security risk program; streamline partner reviews.
• Drive audit readiness and certifications (SOC 2, HIPAA, HITRUST) with Legal and Compliance.
• Develop executive risk reporting translating risks into business impact.
• Partner across Security Engineering, Product, Engineering, and Operations to embed risk awareness into planning and decision-making.

🎯 Requirements

• Deep experience building/operating security or ERM programs; execution-focused.
• Knowledge of healthcare security, privacy, HIPAA, SOC 2, HITRUST.
• Strong stakeholder management; translate risk to actionable guidance.
• Strong program manager with structured prioritization, documentation, and cross-functional alignment.
• Bonus: scaling ERM at high-growth/pre-IPO; vendor risk ownership; GRC tooling.

🎁 Benefits

• Comprehensive health coverage: medical, dental, vision, life, disability.
• Parental leave & family support: up to 18 weeks paid leave plus child stipend.
• Financial wellness: 401(k) and equity opportunities.
• Meals & home office support: home office stipends and meal funds for remote/in-office perks.
• Time off to recharge: Flexible PTO, 12 holidays, winter break.
• Wellness & development: Annual stipends for growth.
• Mental & physical health: No-cost therapy; flexible hours; wellness apps.
• Extra perks: Pet insurance discounts, commuter benefits, travel assistance.