Role: Senior Security Manager (Risk and Governance)
Location: Austin, TX – Remote
Duration: Long term
Rates: DOE
Prefer US Citizen or Green Card holders (Unfortunately client is not sponsoring fopr this opportunity for this time)
Description:
- Define end to end governance workflows for:
- Risk identification and intake
- Risk review and validation
- Risk acceptance, mitigation, or transfer
- Ongoing monitoring and periodic reassessment
- Establish roles and responsibilities for risk owners, reviewers, and governance bodies.
- Design escalation and reporting processes for high risk and accepted risks.
- Engage key stakeholders across business, technology, security, and governance functions to validate risk requirements and workflows.
- Facilitate working sessions or workshops to socialize the risk register and governance processes.
- Support onboarding of initial risks into the enterprise risk register.
- Produce clear, audit ready documentation covering:
- Risk register structure and data definitions
- Risk scoring methodology
- Governance workflows and decision authorities
- Provide knowledge transfer to designated security staff to ensure sustainability beyond the contract term.
The contractor shall provide the following deliverables during the engagement:
- Standardized risk register template and taxonomy
- Documented likelihood and impact scales
- Scoring methodology and prioritization logic
- Defined workflows for risk intake, review, acceptance, and monitoring
- Roles and responsibilities matrix
- Initial set of documented risks reflecting current cybersecurity and technology risk posture
- Consolidated guidance and operating procedures for ongoing risk management