Semperis

Head of Risk and Compliance

Semperis

full-time

Posted on:

Location Type: Hybrid

Location: HobokenNew JerseyUnited States

Visit company website

Explore more

AI Apply
Apply

Job Level

Lead

Tech Stack

Cyber Security

About the role

  • Develop and lead the company-wide risk and compliance management strategy, policies, and framework aligned with organizational objectives and regulatory standards
  • Collaborate with different stakeholders to identify, assess, and mitigate operational, cybersecurity, and compliance risks
  • Own and evolve the company’s risk register, metrics, and reporting cadence, providing transparent insights to the CISO, senior leadership, and board committees
  • Manage and lead the company’s compliance frameworks including ISO, Common Criteria, FedRamp, SOCII, GDPR, and more
  • Quarterback compliance efforts, testing and auditing
  • Lead third-party and vendor risk management programs, ensuring supply chain resilience and adherence to company security requirements

Requirements

  • 7+ years of experience in enterprise risk management, cybersecurity, or information assurance
  • Strong understanding of cybersecurity frameworks, operational risk, business continuity, and compliance programs
  • Proven experience working within or alongside a CISO organization in a fast-paced technology or cybersecurity environment
  • Expertise in quantitative and qualitative risk analysis, reporting, and executive communication
  • Familiarity with standards and regulations such as NIST, ISO 27001, SOC 2, GDPR, DORA, and NIS2
  • Excellent relationship-building and influencing skills, capable of engaging stakeholders across technical and business domains
  • Relevant certifications preferred: CRISC, CISSP, CISM, CISA, ISO 27005 Risk Manager, or equivalent
Benefits
  • Semperis maintains office locations in several cities across the globe
  • Equal opportunity employer

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
risk managementcompliance managementcybersecurityquantitative risk analysisqualitative risk analysisreportingbusiness continuityvendor risk managementsupply chain resilienceauditing
Soft skills
relationship-buildinginfluencingstakeholder engagementexecutive communication
Certifications
CRISCCISSPCISMCISAISO 27005 Risk Manager