Semperis

Head of Risk and Compliance

Semperis

full-time

Posted on:

Location Type: Hybrid

Location: DallasTexasUnited States

Visit company website

Explore more

AI Apply
Apply

Job Level

Lead

Tech Stack

Cyber Security

About the role

  • Develop and lead the company-wide risk and compliance management strategy, policies, and framework aligned with organizational objectives and regulatory standards.
  • Collaborate with different stakeholders to identify, assess, and mitigate operational, cybersecurity, and compliance risks.
  • Own and evolve the company’s risk register, metrics, and reporting cadence, providing transparent insights to the CISO, senior leadership, and board committees.
  • Manage and lead the company’s compliance frameworks including ISO, Common Criteria, FedRamp, SOCII, GDPR, and more.
  • Quarterback compliance efforts, testing and auditing.
  • Lead third-party and vendor risk management programs, ensuring supply chain resilience and adherence to company security requirements.

Requirements

  • 7+ years of experience in enterprise risk management, cybersecurity, or information assurance, with at least 5 years in leadership capacity.
  • Strong understanding of cybersecurity frameworks, operational risk, business continuity, and compliance programs.
  • Proven experience working within or alongside a CISO organization in a fast-paced technology or cybersecurity environment.
  • Expertise in quantitative and qualitative risk analysis, reporting, and executive communication.
  • Familiarity with standards and regulations such as NIST, ISO 27001, SOC 2, GDPR, DORA, and NIS2.
  • Excellent relationship-building and influencing skills, capable of engaging stakeholders across technical and business domains.
  • Relevant certifications preferred: CRISC, CISSP, CISM, CISA, ISO 27005 Risk Manager, or equivalent.
Benefits
  • Health insurance
  • 401(k) matching
  • Flexible work hours
  • Paid time off
  • Professional development opportunities

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
enterprise risk managementcybersecurityinformation assurancequantitative risk analysisqualitative risk analysiscompliance programsbusiness continuityrisk register managementreportingauditing
Soft skills
relationship-buildinginfluencing skillsstakeholder engagementexecutive communicationleadership
Certifications
CRISCCISSPCISMCISAISO 27005 Risk Manager