Senior IT Security Risk Program Manager

For other positions, some roles may be based outside of our Denver office (as stated in the Job Title). Roles based outside of our Denver office can sit in any of the following 28 states: AZ, CA, CO, CT, DC, FL, GA, ID, IL, KS, MA, MD, MI, MN, NC, NJ, NV, NY, OH, OR, PA, SC, TN, TX, UT, VA, WA, and WI. Please only apply if you are able to live and work full-time in one of the states listed above. State locations and specifics are subject to change as our hiring requirements shift.

----

At Guild, we uphold our Core Values in everything we do.  Our team emphasizes our Core Values in the following ways:

• Nurture A Learner’s Mindset - using a combination of feedback and reflection to gain productive insight into personal strengths and development areas
• Build Shared Success - building partnerships and working collaboratively with others to meet shared objectives
• Be an Owner - holding self and others accountable to meet commitments
• Create Belonging - recognizing the value that different perspectives and cultures bring to our company

Guild is hiring a Senior IT Security Risk Program Manager. This role is responsible for developing, implementing, and leading risk management practices that enable Guild to make risk-effective decisions that create and sustain value.  As Senior IT Security Risk Program Manager, you will work with cross-functional teams and systems owners across the business to identify, evaluate, mitigate, and monitor Guild’s risk and controls and to otherwise manage Guild’s risk program.  The Senior IT Security Risk Program Manager will be responsible for building Guild’s risk program and must be able to create and implement risk practices.  

Total compensation for this role is market competitive, including a base salary range of $120,000-$150,000 as well as company stock options. 

As Senior Risk IT Security Program Manager, you will:

• Develop, operationalize, sustain, and improve Guild’s risk program.
• Create and execute Guild’s strategic risk management vision in accordance with selected risk management frameworks.
• Implement Guild’s risk strategy, including through the development of policies, practices, procedures, and guidelines. 
• Obtain buy-in for the risk program, including through effectively establishing and managing a risk committee.
• Ensure risk management policies and practices comply with applicable laws, standards, and strategic initiatives of Guild’s risk program.
• Investigate business practices to identify, analyze, and document risks specific to Guild’s business and industry along with their impact/likelihood and mitigating controls.
• Effectively communicate, verbally and in writing, risk issues to leadership, risk committees, and stakeholders.
• Recommend proposed actions on risk management issues, translate risk committee decisions into system or process requirements, and lead remediation plans to mitigate risk.
• Build out and maintain risk management software databases including risk register, risk library, control library, risk rating, and vendor risk management.
• Continually monitor known and emerging risks and business practices to ensure compliance with Guild’s risk management policy and best practices.
• Regularly evaluate Guild’s risk program, including the effectiveness of controls, to implement improvements.
• Report metrics regarding Guild’s risk management program.
• Manage the vendor risk management function, including analysis of vendor security practices and other risks and provision and documentation of associated risks to non-technical audience.
• Provide training and awareness at all levels of the organization to enhance Guild’s risk program.

You are a strong fit for this role if you have:

• Proficiency in working with risk management tools to effectively assist with data mapping, vendor risk management, risk and control libraries, risk ratings, and other metrics needed for effective documentation, compliance, and reporting.
• Strong interpersonal and communication skills that facilitate cross-functional collaboration, including the ability to effectively communicate technical information to a non-technical audience.
• Ability and drive to operationalize risk programs cross-functionally and in accordance with company policies and applicable law.
• Strong technical skills sufficient to assess risks and recommend controls associated with advanced technologies and systems.
• Skillful at navigating highly complex, ambiguous problems with little to no existing structure and building roadmaps and frameworks to create scalable solutions.
• Self-motivation, independence, and ability to thrive in a fast-paced and unstructured environment with undefined or evolving processes and procedures.

Preferred Competencies

• Working towards or have already obtained CRISC certification.
• Willingness and ability to contribute to the establishment of currently-evolving processes and procedures.
• Leadership skills in the area of people management.

At Guild, we unlock the talent and economic potential of America’s workforce for employees and their companies. We partner with the nation’s largest employers—including Walmart, Chipotle, Discover, Hilton, Macy’s, Target, and The Walt Disney Company—to create cultures of opportunity that help them attract and retain top talent, while building the workforce of the future from within. By using our proprietary Career Opportunity Platform to develop education and learning programs that work in the real-world, thousands of employees at those companies have gained the skills, knowledge, and guidance they need to build a brighter future for themselves and their families—all without paying for tuition or career services on their own. 

Guild is female-founded and a certified B Corp. The company has been named to the TIME100 Most Influential Companies of 2022 list, CNBC Disruptor50 list three years in a row, Inc. Best Led Companies list, Fast Co. World Changing Ideas list and the B Lab Best for the World list among many others. 

Guild Education is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. If you have a disability or special need that requires accommodation, please let your recruiter know. We currently offer the following benefits:

• Access to low-cost, high-quality health care options through Cigna and Kaiser (due to coverage limitations, Kaiser is currently only available in CA & CO)
• Access to a 401k to help save for the future
• Open vacation policy for employees to rest and recharge
• 8 days of fully-paid sick leave, to take the time to heal and or recover
• Family-friendly benefits, including 12 weeks of parental leave for non-birthing parents and 18-20 weeks for birthing parents; 4-week ramp-up period for when employees return from a leave of 6 weeks or more; as well as employer-paid short-term and long-term disability, employer-sponsored life insurance, fertility and caregiving benefits.
• Well-rounded wellness benefits including free and low cost mental health resources and financial wellbeing support services
• Education benefits and tuition assistance to help your future development and growth
  
  

Guild requires COVID-19 vaccines for all employees and guests attending Guild events or entering Guild offices. As of February 1, 2022, we will be expanding our in-person vaccination requirement to include booster shots.  We will be using both Clear’s Digital Vaccine Card and state-sponsored vaccine passports to verify proof of vaccine. Accommodations or exceptions fcan be requested for medical or religious reasons. 

 

PRIVACY NOTICE

I understand that I am applying for employment with Guild Education and am being asked to provide information in connection with my application.  I further understand that Guild gathers this information through a third-party service provider and that Guild may also use other service providers to assist in the application process.  Guild may share my information with such third-party service providers in connection with my application and for the start of employment.  Guild will treat my information in accordance with Guild’s Privacy Policy.

I have reviewed and agree to Guild’s Privacy Policy as well as the privacy policies of the third-party service providers used by Guild associated with the application process.