SENIOR RISK PROGRAM MANAGER

Drive technical risk excellence across CircleCI as a key member of our Governance, Risk, and Compliance (GRC) team. You’ll collaborate with teams throughout the organization to transform diverse risk initiatives into cohesive, sustainable programs that support our business growth, compliance requirements, and security objectives. By combining your risk expertise with program management skills, you’ll help shape the future of GRC strategy while solving complex challenges critical to our continued success.

• Design and maintain a comprehensive risk register spanning company operations
• Develop and oversee a control portfolio in partnership with Security, IT, and Finance teams to contextualize and support risk treatment
• Identify, track, prioritize, and work with owning teams to mitigate audit findings across multiple disciplines
• Enhance vendor risk management and prevent shadow IT
• Collaborate across teams to address documentation gaps, report findings, and escalate issues appropriately
• Enhance GRC tooling capabilities through improvements to existing systems and evaluation of new solutions
• Participate in daily GRC triage and support activities
• Provide support to maintain our SOC 2 and FedRAMP accreditations, in addition to SOX ITGC and customer-driven reviews
• Stay current with US and international risk management practices to scale CircleCI’s GRC efforts