88 Information Security Manager jobs in Washington

**Company :**
Highmark Health
**Job Description :**
**JOB SUMMARY**
This job provides Information Security and Risk Management services for the Organization. Works with peers within security, HM Health Solutions customers and application teams to ensure alignment with current and future security needs. Manages activities of various Information Security personnel. Makes decisions on personnel actions (promotions, hiring, terminations, etc.). Develops talent, addresses resource management, cultivates capabilities of staff, planning and coordination of work, and managing performance. Conducts the oversight of security technology products for network, systems, and data. Controls expenses within the operating unit and is responsible for meeting budget goals. Actively contributes to the Information Security ans Risk Management (ISRM) strategic planning process by working with the Directors to develop and implement department strategic plans and action steps that support the corporate strategic objectives. Actively involved in the coordination, implementation, problem solving, communication, and training of new technologies and processes, as they are developed and moved into the environment. Develops and presents Information Security awareness and training programs.
**ESSENTIAL RESPONSIBILITIES**
+ Perform management responsibilities including, but not limited to: involved in hiring and termination decisions; coaching and development; rewards and recognition; performance management and staff productivity.
+ Plan, organize, staff, direct and control the day-to-day operations of the department; develop and implement policies and programs as necessary; may have budgetary responsibility and authority.
+ Provide oversight of all aspects of project management to ensure continuous improvement of processes: negotiate and collaborate with leadership and staff to develop security solutions and options; develop and adhere to internal standards and strategies; ensure adherence to approved methodologies; coordinate resources, time, contingency plans and risk management.
+ Provide leadership to the department: lead and champion organizational change; encourage participation in activities that support relationship development; champion information security innovation; encourage and enforce proper training in regards to security issues.
+ Ensure compliance to Corporate and Information Security policies, standards and procedures.
+ Communicate effectively with all levels of the organization: facilitate meetings; plan, design and provide presentations; represent HM Health Solutions with outside entities; prepare divisional procedures, policies, reports and correspondence; spread awareness of new and existing security threats; provide oversight regarding metrics, funding, budgets and resources.
+ Other duties as assigned or requested.
**EDUCATION**
**Required**
+ Bachelor's Degree in Information Security, Information Systems, Information Assurance, Computer Science or related field
**Substitutions**
+ 6 years of relevant experience substitution for a Bachelor's Degree
**Preferred**
+ Master's Degree in Computer Science, Information Security or related field
**EXPERIENCE**
**Required**
+ 7 - 10 years in Information Security and/or Information Risk Management and/or Information Technology
+ 7 - 10 years in developing, communicating and presenting Information Security and Risk Management concepts to varying audiences
+ 1 - 3 years in mentoring others in a leadership role
+ 1 - 3 years in Staff Management
+ 1 - 3 years in developing and executing strategic plans to realize business objectives
**Preferred**
+ 10 - 15 years in Information Security and/or Information Risk Management and/or Information Technology
+ Experience managing an information security function using the HITRUST Common Security Framework (HITRUST CSF), or the NIST 800-83 cyber security framework
+ Experience supporting SSAE 16 or SOC 2 Security Trust Principle audits
+ Experience establishing budgets and meeting fiduciary goals
+ Security industry organization participation/leadership (HITRUST, ISACA, InfraGard, ISC2, ISSA, etc.)
**LICENSES AND CERTIFICATIONS**
**Required**
+ None
**Preferred**
+ Certified Information Systems Security Professional (CISSP) **OR**
+ Certified Information Security Manager (CISM) **OR**
+ Certified in Risk and Information Systems Controls (CRISC) **OR**
+ Information Technology Infrastructure Library (ITIL)
**SKILLS**
+ Knowledge of regulatory requirements such as Health Insurance Portability and Accountability Act (HIPPA), Payment Card Industry Data Security Standards (PCI DSS), and FIPS-140
+ Strong teamwork and interpersonal skills
+ Experience in leading process improvement initiatives
+ Ability to motivate high performance, multi-discipline teams
+ Demonstrated competency in project execution
+ Demonstrated abilities in relationship management
**Languages (Other than English)**
None
**Travel Requirement**
0% - 25%
**PHYSICAL, MENTAL DEMANDS and WORKING CONDITIONS**
**Position Type**
Office-Based
Teaches/Trains others regularly
Frequently
Travels regularly from the office to various work sites or from site-to-site
Occasionally
Works primarily out-of-the office selling products/services (Sales employees)
Does Not Apply
Physical Work Site Required
Yes
Lifting: up to 10 pounds
Does Not Apply
Lifting: 10 to 25 pounds
Does Not Apply
Lifting: 25 to 50 pounds
Does Not Apply
**_Disclaimer:_** _The job description has been designed to indicate the general nature and essential duties and responsibilities of work performed by employees within this job title. It may not contain a comprehensive inventory of all duties, responsibilities, and qualifications required of employees to do this job._
**_Compliance Requirement_** _: This job adheres to the ethical and legal standards and behavioral expectations as set forth in the code of business conduct and company policies._
_As a component of job responsibilities, employees may have access to covered information, cardholder data, or other confidential customer information that must be protected at all times. In connection with this, all employees must comply with both the Health Insurance Portability Accountability Act of 1996 (HIPAA) as described in the Notice of Privacy Practices and Privacy Policies and Procedures as well as all data security guidelines established within the Company's Handbook of Privacy Policies and Practices and Information Security Policy._
_Furthermore, it is every employee's responsibility to comply with the company's Code of Business Conduct. This includes but is not limited to adherence to applicable federal and state laws, rules, and regulations as well as company policies and training requirements._
**Pay Range Minimum:**
$108,000.00
**Pay Range Maximum:**
$201,800.00
_Base pay is determined by a variety of factors including a candidate's qualifications, experience, and expected contributions, as well as internal peer equity, market, and business considerations. The displayed salary range does not reflect any geographic differential Highmark may apply for certain locations based upon comparative markets._
Highmark Health and its affiliates prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on any category protected by applicable federal, state, or local law.
We endeavor to make this site accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact the email below.
For accommodation requests, please contact HR Services Online at
California Consumer Privacy Act Employees, Contractors, and Applicants Notice
Req ID: J

**Job Description**
At Boeing, we innovate and collaborate to make the world a better place. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
The Boeing Company is looking for an **Information Technology Manager - SAP Security** to join the team in **Seattle, WA; Arlington, VA; Renton, WA; Ridley Park, PA; Heath, OH; Plano, TX;** or **Dallas, TX.**
You will join the Systems, Applications, and Products (SAP) S/4 Center of Excellence as the Manager of SAP Security and Security Operations to lead the SAP user security and security operations team. You will oversee access management, technology controls, resilience, and cybersecurity initiatives under the direction of the Enterprise Resource Planning (ERP) implementation team and in coordination with Infrastructure and Boeing Enterprise Security. This role is responsible for ensuring the integrity, confidentiality, availability, and compliance of Boeing's SAP landscape.
You will design and implement robust security measures, manage System Applications Processing (SAP) roles and key access processes, and ensure compliance with applicable regulations and standards. You will partner strategically with internal teams and external stakeholders to design, adopt, and integrate appropriate controls, deliver consistent processes and solutions, and promote control automation following industry best practices. You will maintain up-to-date knowledge of industry trends, standards, tools, and processes to deliver first-time quality, and provide knowledge transfer and training on security best practices to Information Technology (IT) and business teams.
**Position Responsibilities:**
+ Manages and integrates employee activities across IT including security architecture design and administration, application security analysis and design, information management, architecture, computing security, computing security, computing project security support and/or process analysis
+ Develops and executes project and process plans, implements policies and procedures and sets operational goals
+ Acquires resources for projects and processes, provides technical management of suppliers and leads process improvements
+ Develops and maintains relationships and partnerships with customers, stakeholders, peers, partners and direct reports
+ Provides oversight and approval of technical approaches, products and processes
+ Manages and provides developmental opportunities for employees
+ Manages the operational, technological, and legal risks associated with the business
+ Designs, develops, and maintains SAP security roles and authorizations with a focus on SAP S/4 FIORI and S4 HANA to meet business needs and compliance requirements
+ Leads the implementation of SAP Control Panel GRC (Governance, Risk, and Compliance) modules, including Access Control, Process Control, Risk Management and Fire Fighter Provisioning
+ Develops and maintain documentation related to SAP security policies, procedures, and role designs
+ Provides expert guidance on SAP user security best practices, risk management, and compliance strategies
+ Identifies, assesses, and manages inherent risks in our system and promotes a risk-mitigating culture
+ Drives transparent, quantifiable, and long-lasting control improvements by working together with the audit, compliance, business control management, and technology teams
+ Uses data to streamline and improve the product development lifecycle through Continuous Integration/Continuous Development CI/CD pipelining, Development, Security and Operations (DevSecOps), Infrastructure as Code (IaC) and other automations as appropriate
+ Oversees troubleshooting and resolution of technical issues, especially complex issues that span multiple teams
+ Follows new technologies and industry trends, bringing useful technologies into the team to improve product development and quality
+ Works with enterprise architecture and security personnel to position the product for long term maintainability and scalability, ensure adherence to Enterprise Architecture, and ensure regulatory/policy compliance
+ Understands the big picture and the inter-relationships of all positions and activities in the system, including the impact of changes in one area on another area
+ Understands the inter-relationships between components of systems and plans, anticipating future events, and applying the principles of systems thinking to accelerate performance
**Basic Qualifications (Required Skills/Experience):**
+ Bachelor's degree or higher
+ 10+ years of experience working in a cross-functional environment with all levels in the business from individual contributors to executive leadership
+ 10+ years of experience within information technology
+ 10+ years of experience with SAP Security and /or SAP GRC
+ 5+ years of experience with System Applications Processing (SAP), S/4 HANA
+ 5+ years of experience in management or leading teams
+ Able to travel both domestically and internationally
**Preferred Qualifications (Desired Skills/Experience):**
+ Certifications in SAP related technologies
+ 5+ years of experience communicating effectively with multiple levels of an organization
+ 5+ years of experience using Information Technology (IT) systems
+ Experience with Cloud security including Cybersecurity, Encryption, and Key Management
**Drug Free Workplace:**
Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies _._
**Pay & Benefits:**
At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.
The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.
The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.
Pay is based upon candidate experience and qualifications, as well as market and business considerations.
Summary pay range: $123,250 - $178,250
Applications for this position will be accepted until **Sept. 08, 2025**
**Export Control Requirements:** This position must meet export control compliance requirements. To meet export control compliance requirements, a "U.S. Person" as defined by 22 C.F.R. §120.15 is required. "U.S. Person" includes U.S. Citizen, lawful permanent resident, refugee, or asylee.
**Export Control Details:** US based job, US Person required
**Relocation**
Relocation assistance is not a negotiable benefit for this position.
**Visa Sponsorship**
Employer will not sponsor applicants for employment visa status.
**Shift**
This position is for 1st shift
**Equal Opportunity Employer:**
Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.
Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.

**_Company Overview:_**
Cardinal Health, Inc. (NYSE: CAH) is a global healthcare services and products company. We provide customized solutions for hospitals, healthcare systems, pharmacies, ambulatory surgery centers, clinical laboratories, physician offices and patients in the home. We are a distributor of pharmaceuticals and specialty products; a global manufacturer and distributor of medical and laboratory products; an operator of nuclear pharmacies and manufacturing facilities; and a provider of performance and data solutions. Working to be healthcare's most trusted partner, our customer-centric focus drives continuous improvement and leads to innovative solutions that improve the lives of people every day. With approximately 50,000 employees worldwide, Cardinal Health ranks among the top fifteen in the Fortune 500.
**_Department Overview:_**
**Information Technology** oversees the effective development, delivery, and operation of computing and information services. This function anticipates, plans, and delivers Information Technology solutions and strategies that enable operations and drive business value.
**Information Security and Risk** develops, implements, and enforces security controls to protect the organization's technology assets from intentional or inadvertent modification, disclosure, or destruction. This job family develops system back-up and disaster recovery plans, conducts incident responses, threat management, vulnerability scanning, virus management and intrusion detection as well as completes risk assessments. The IT Governance and Compliance function within the organization develops, enhances, and maintains security policies and IT compliance programs in alignment with regulatory, legal, and contractual requirements, while collaborating closely with key stakeholders to maintain a security and compliant technology environment.
We are committed to building a resilient, secure, and compliant digital ecosystem, and you will play a critical role in safeguarding our information and supporting our mission to improve the lives of people every day.
We are seeking a **strategic** and **experienced** **Manager of IT Compliance** , and in this role, you will have the opportunity to lead meaningful work, collaborate across functions, and help shape the future of our IT compliance strategy.
**_Job Overview:_**
Manager of IT Compliance will lead the development, execution, and continuous improvement of our enterprise IT compliance programs. This role will set the strategy in collaboration with the leader as well as provide direction and oversight across a broad set of compliance domains, including IT Privacy regulations (i.e., HIPAA, GDPR, etc.), third party certification management (e.g., HITRUST, SOC 2), and proactively driving compliance to emerging regulatory obligations. The manager will lead a high-performing team and work cross-functionally with legal, privacy, audit, and IT stakeholders to ensure the organization maintains a strong and proactive compliance posture.
**_Key Responsibilities:_**
+ **People Leadership:** Lead and develop a team of IT compliance professionals. Foster an inclusive, collaborative, accountable and high-performing team culture.
+ **Program Leadership:** Set strategic direction in collaboration with the leader for the IT Compliance function, aligning program objectives with organizational goals and evolving regulatory requirements.
+ **IT Privacy Compliance Program:** Oversee the design, implementation, enhancement, and maintenance of the IT privacy compliance program to enable compliance with key IT privacy regulation requirements (e.g., HIPAA, GDPR), while partnering with key partners and stakeholders.
+ **Third-Party Certifications Management:** Set strategic direction in collaboration with the leader for management of external certifications such as HITRUST and SOC 2, including program governance, planning, readiness, remediation oversight, cost and support model, and ongoing maintenance of the certifications.
+ **IT Compliance Assessment:** Direct and oversee the execution of compliance assessments and gap assessments for existing regulations from an IT perspective, collaborating with key stakeholders and partners throughout the organization.
+ **Regulatory Monitoring:** Proactively identify, assess, and operationalize compliance to new or evolving regulatory requirements that impact the organization's IT environment, collaborating with key stakeholders and partners throughout the organization.
+ **Reporting and Metrics:** Establish KPIs and KRIs as well as reporting processes to provide ongoing updates to leadership on health of the IT compliance program effectiveness, risk exposure, and compliance trends and posture.
+ **Advisory Services:** Serve as a key advisor to stakeholders across Privacy, Legal, Audit, IT and Business Units to confirm regulatory and contractual obligations are understood and addressed in IT processes and controls.
**_Qualifications:_**
+ Bachelor's Degree in related field or equivalent work experience
+ 10+ years' experience in IT Governance, Risk and Compliance functional roles such as IT Compliance, IT Risk Management, IT Audit, Enterprise Risk Management, etc preferred.
+ Proven leadership experience with the ability to foster an inclusive and engaging culture.
+ Prior experience working with Internal or External Audit functions are a plus.
+ Deep knowledge of risk and control frameworks as well as key regulatory requirements that impact healthcare organizations.
+ Direct experience in managing third-party certifications such as HITRUST and SOC 2 is preferred including readiness and gap assessments to managing certifications.
+ Strong understanding of IT environments, systems, data governance practices
+ Strong interpersonal skills and presentation skills with ability to tailor message for the audience are foundational for success.
+ Strong and effective communication skills with ability to influence and drive actions.
+ Ability to identify and engage cross functional teams to solve problems that meet organizational objectives.
+ Ability to identify alternative solutions to solve a given problem when traditional solution may not be feasible.
+ Security, compliance, or risk certifications such as CIPT (Certified Information Privacy Technologist), CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional) and/or CIPP (Certified Information Privacy Professional) certifications are preferred.
**Anticipated salary range:** $121,600 - $182,385
**Bonus eligible:** Yes
**Benefits:** Cardinal Health offers a wide variety of benefits and programs to support health and well-being.
+ Medical, dental and vision coverage
+ Paid time off plan
+ Health savings account (HSA)
+ 401k savings plan
+ Access to wages before pay day with myFlexPay
+ Flexible spending accounts (FSAs)
+ Short- and long-term disability coverage
+ Work-Life resources
+ Paid parental leave
+ Healthy lifestyle programs
**Application window anticipated to close:** 9/25/2025 *if interested in opportunity, please submit application as soon as possible.
The salary range listed is an estimate. Pay at Cardinal Health is determined by multiple factors including, but not limited to, a candidate's geographical location, relevant education, experience and skills and an evaluation of internal pay equity.
_Candidates who are back-to-work, people with disabilities, without a college degree, and Veterans are encouraged to apply._
_Cardinal Health supports an inclusive workplace that values diversity of thought, experience and background. We celebrate the power of our differences to create better solutions for our customers by ensuring employees can be their authentic selves each day. Cardinal Health is an Equal_ _Opportunity/Affirmative_ _Action employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, ancestry, age, physical or mental disability, sex, sexual orientation, gender identity/expression, pregnancy, veteran status, marital status, creed, status with regard to public assistance, genetic status or any other status protected by federal, state or local law._
_To read and review this privacy notice click_ here (

Overview

lululemon is an innovative performance apparel company for yoga, running, training, and other athletic pursuits. Setting the bar in technical fabrics and functional design, we create transformational products and experiences that support people in moving, growing, connecting, and being well. We owe our success to our innovative product, emphasis on stores, commitment to our people, and the incredible connections we make in every community we're in. As a company, we focus on creating positive change to build a healthier, thriving future. In particular, that includes creating an equitable, inclusive and growth-focused environment for our people.

About This Team

The Governance, Risk, and Compliance (GRC) team are trusted cybersecurity experts and strategic advisors, driving risk mitigation, regulatory compliance, and operational resilience across the organization. We collaborate closely with key business functions including Brand, Product, IT, and Finance to foster open dialogue, unlock creativity, and implement innovative, forward-thinking solutions that strengthen our compliance posture and enhance operational resilience.

Responsibilities

• Support a culture of risk management, stakeholder risk awareness with measurable risk reduction through effective governance and data-driven reporting.
• Develop & mature a Third Party Risk Management assessment lifecycle, policies, standards and procedures.
• Establish & maintain a Technology Risk Management methodology aligned with industry frameworks such as NIST RMF (SP800-37), CIS v8.1, CSA CCM/STAR, and ISO 31000:2018
• Lead strategic, cross-functional initiatives to strengthen Third Party Management program goals & capabilities
• Measure, Manage & Mature the program, track progress, drive improvements, develop and report KPIs, KRAs, process metrics, Vendor Risk profiles and management dashboards.
• Lead & execute deep-dive risk assessments of Tier0 & 1 vendors, analyze complex risk issues, manage Vendor Incident Investigations and deliver clear, actionable reporting to Executive stakeholders.
• Drive automation and AI adoption in GRC workflows to streamline risk lifecycle management, monitoring, remediating and reporting risks.
• Collaborate in stakeholder management, risk articulation, communication, risk reviews, driving risk acceptance and facilitate risk treatment activities
• Identifies needs, develops and implements technology-related continuous improvement initiatives for the department.

Qualifications

• 5+ years of experience in Technology Risk, Third Party Risk, Cybersecurity, or GRC.
• Bachelors degree with proficiency in Management Information Systems, Technology Management or Cybersecurity
• Strong program management and analytical skills; ability to translate complex data into insights.
• Professional certification such as CISM, CRISC, CISSP or PMP are a plus
• Knowledge/experience with data security and privacy regulations (e.g. NIST CSF, ISO 27001, PCI DSS, GDPR).
• Effective communication and relationship-building skills, a natural affinity for being curious and inquisitive, and an ability to work with ambiguity, analyze situations and solve complex problems.

Must Haves

• Acknowledge the presence of choice in every moment and take personal responsibility for your life.
• Possess an entrepreneurial spirit and continuously innovate to achieve great results.
• Communicate with honesty and kindness and create the space for others to do the same.
• Lead with courage, knowing the possibility of greatness is bigger than the fear of failure.
• Foster connection by putting people first and building trusting relationships.
• Integrate fun and joy as a way of being and working, aka doesnt take yourself too seriously.

Additional Notes

Authorization to work in the US is required for this role.

Compensation And Benefits Package

lululemons compensation offerings are grounded in a pay-for-performance philosophy that recognizes exceptional individual and team performance. The typical hiring range for this position is from $136,200-$178,700 annually; the base pay offered is based on market location and may vary depending on job-related knowledge, skills, experience, and internal equity. As part of our total rewards offering, permanent employees in this position may be eligible for our competitive annual bonus program, subject to program eligibility requirements.

At Lululemon, Investing In Our People Is a Top Priority. We Believe That When Life Works, Work Works. We Strive To Be The Place Where Inclusive Leaders Come To Develop And Enable All To Be Well. Recognizing Our Teams For Their Performance And Dedication, Other Components Of Our Total Rewards Offerings Include Support Of Career Development, Wellbeing, And Personal Growth

• Extended health and dental benefits, and mental health plans
• Paid time off
• Savings and retirement plan matching
• Generous employee discount
• Fitness & yoga classes
• Parenthood top-up
• Extensive catalog of development course offerings
• People networks, mentorship programs, and leadership series

Note: The incentive programs, benefits, and perks have certain eligibility requirements. The Company reserves the right to alter these incentive programs, benefits, and perks in whole or in part at any time without advance notice.

Workplace arrangement

Hybrid

In-person collaboration and connection is important to our culture. Work is performed onsite, minimum 4 days per week.

Details

• Seniority level: Mid-Senior level
• Employment type: Full-time
• Job function: Project Management and Information Technology
• Industries: Retail

#J-18808-Ljbffr

Description
Are you looking for an exciting role where you can analyze and develop end-to-end risk management processes with big improvement impacts to protect our customers? Amazon Web Services (AWS) is rapidly expanding its global presence.
The Enterprise Risk Management (ERM) team within Amazon Web Services (AWS) is seeking an experienced and self-motivated risk professional with a proven record of identifying, organizing, leading, and monitoring the risks in the AWS space in order to protect customer data and information.
A successful candidate will have the opportunity to manage and iterate an innovative approach to identifying, assessing, and driving remediation for enterprise risks in AWS. The candidate must be comfortable with balancing strategic thinking with tactical, detailed execution while working independently, sorting through ambiguously defined problems, identifying and facing big challenges and adjusting to sudden and frequent change. This role acts as a key liaison with AWS teams and related Amazon corporate teams.
The right candidate is someone who thinks big, understands risks and enjoys innovating brand new controls/solutions to mitigate risks.
Key job responsibilities
· Identify, assess, manage, remediate, and track a broad range of risks (e.g.: strategic, operational, financial, .) in complex IT systems and processes;
· Own and drive a relationship with key business stakeholder(s) in the AWS space, diving deep into their internal processes to develop broad domain and technical understanding and identify potential risks;
· Work cross functionally with service, infrastructure, security teams, and related Amazon corporate functions;
· Bridge communication with both technical engineering and business teams to successfully capture risk mitigation activities;
· Communicate to leadership the status and key deliverables of team initiatives, seek diverse opinions and coordinate improvement efforts;
· Mature and develop innovative approaches to the management of risks in a manner that effectively and efficiently manages the risks while meeting the needs of internal customers and minimizing business impact;
· Assist with linking policy, standard operating procedures, controls, monitoring, and reporting with the goal of improving operations, compliance policies, and risk management;
· Drive process improvement and control implementation projects through coordination with AWS teams. This includes the resolution of risk identification and the execution of projects originated from internal assessments.
About the team
Inclusive Team Culture
Here at AWS, we embrace our differences. We are committed to furthering our culture of inclusion. We have ten employee-led affinity groups, reaching 40,000 employees in over 190 chapters globally. We have innovative benefit offerings, and we host annual and ongoing learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences. Amazon's culture of inclusion is reinforced within our 14 Leadership Principles, which remind team members to seek diverse perspectives, learn and be curious, and earn trust.
Mentorship & Career Growth
Our team is dedicated to supporting new members. We have a broad mix of experience levels and tenures, and we're building an environment that celebrates knowledge sharing and mentorship.
Work/Life Balance
Our team also puts a high value on work-life balance. Striking a healthy balance between your personal and professional life is crucial to your happiness and success here, which is why we aren't focused on how many hours you spend at work or online. Instead, we're happy to offer a flexible schedule so you can have a more productive and well balanced life-both in and outside of work.
Basic Qualifications
- Bachelor's Degree in Computer Science or other related fields, or equivalent experience
- 10+ years of project/program management experience in a technical field
- 7+ years of technology risk, IT security audit, compliance and/or relevant regulatory experience
Preferred Qualifications
- Have a record of delivery of risk frameworks, IT process remediation/improvement projects with technology processes and/or major tech companies
- Grasp of AWS Infrastructure
- Have experience in performing technical assessments and documentation of infrastructure services, as well as auditing IT processes
- Have an understanding of evaluating the design and effectiveness of IT controls
- Experience defining security, resilience and compliance strategies;
- Highly organized and able to build trusting relationships with stakeholders at various levels of the organization
- Experience effectively articulating recommendations/conclusions, both verbally and written
- Strong ability to motivate people, instill accountability and drive results
- Meets/exceeds Amazon's leadership principles requirements for this role
- Meets/exceeds Amazon's functional/technical depth and complexity for this role
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $119,900/year in our lowest geographic market up to $198,300/year in our highest geographic market. Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience. Amazon is a total compensation company. Dependent on the position offered, equity, sign-on payments, and other forms of compensation may be provided as part of a total compensation package, in addition to a full range of medical, financial, and/or other benefits. For more information, please visit . This position will remain posted until filled. Applicants should apply via our internal or external career site.

**Company Description**
At Western Digital, our vision is to power global innovation and push the boundaries of technology to make what you thought was once impossible, possible.
At our core, Western Digital is a company of problem solvers. People achieve extraordinary things given the right technology. For decades, we've been doing just that-our technology helped people put a man on the moon and capture the first-ever picture of a black hole.
We offer an expansive portfolio of technologies, HDDs, and platforms for business, creative professionals, and consumers alike under our Western Digital®, WD®, WD_BLACK, and SanDisk® Professional brands.
We are a key partner to some of the largest and highest-growth organizations in the world. From enabling systems to make cities safer and more connected, to powering the data centers behind many of the world's biggest companies and hyperscale cloud providers, to meeting the massive and ever-growing data storage needs of the AI era, Western Digital is fueling a brighter, smarter future.
Today's exceptional challenges require your unique skills. Together, we can build the future of data storage.
**Job Description**
**Director, Risk Management**
Employees can work remotely
Full-time
**Job Description**
**Essential Duties & Responsibilities:**
As the Director of Risk Management you will play a vital role in managing and optimizing supplier and operational programs that improve the bottom line and protect the organization in various risk areas. Your responsibilities will include designing, developing and implementing risk strategic policies and procedures to assess, onboard, monitor, and optimize third-party relationships and ensure our supply chain is resilient. You will collaborate with cross-functional teams and stakeholders to drive these improvements, lead the change management, streamline processes, and ensure compliance to enhance financial & business performance.
**Third-Party Relationship Management:**
Oversee the end-to-end lifecycle of third-party relationships, from initial vendor selection and due diligence to ongoing performance monitoring and evaluation. Establish strong partnerships with vendors, managing contracts, and service level agreements to ensure the organization's needs are met effectively.
**Supply Chain Risk Resiliency:**
Strengthen the E2E supply chain risk resiliency through strategic initiatives, technology, risk mitigation plans, policy implementation, and monitoring and reporting for compliance. This will require collaboration and working closely with key stakeholders including IT, Legal, Finance and Supply Chain / Procurement teams to ensure effective risk management and mitigation. This position will also work collaboratively with other areas within the broader operation teams to ensure we have cohesive risk resiliency plans and we are able to quicky address any risk issues / events to mitigate impact.
**Procedures, Policies and Audits:**
Ensure third-party risk management practices adhere to company policies and comply with relevant required regulations and standards. Work with cross-functional teams to ensure any issues or findings are addressed timely and then governed. Ensure policies and procedures stay current, accurate and complete.
**Performance Monitoring and Evaluation:**
Mature and digitalize risk / compliance performance metrics and key performance indicators (KPIs) to measure performance against contractual obligations, service level agreements, risk resiliency, and compliance requirements. Conduct vendor performance reviews, identify areas for improvement, and implement any corrective actions necessary.
**Qualifications**
**Required:**
- Bachelor's degree in business, risk management, finance, supply chain or a related field (advanced degree preferred).
Experience in risk management, procurement, compliance or supplier governance, with at least 5 years in leadership and 10 years in work experience
- Excellent communication and interpersonal skills, with the ability to effectively engage and influence stakeholders at all levels of the organization.
- Strong knowledge of industry best practices and emerging trends in third-party management, risk resiliency, governance processes, regulatory requirements and ability to work with cross-functional teams to increase resiliency within WD and with WD suppliers.
- Strategic thinker with the ability to build and execute strategic plans and articulate vision to others, including executives.
**Skills:**
+ Proven leadership and team management skills, with the ability to lead a team, drive results, and foster a collaborative work environment.
+ Strong analytical and problem-solving skills, with a focus on data-driven decision making and continuous improvement.
+ Strong program management skills and ability to hold others accountable for deliverables to ensure program plan timelines are successfully met.
**Additional Information**
Western Digital is committed to providing equal opportunities to all applicants and employees and will not discriminate against any applicant or employee based on their race, color, ancestry, religion (including religious dress and grooming standards), sex (including pregnancy, childbirth or related medical conditions, breastfeeding or related medical conditions), gender (including a person's gender identity, gender expression, and gender-related appearance and behavior, whether or not stereotypically associated with the person's assigned sex at birth), age, national origin, sexual orientation, medical condition, marital status (including domestic partnership status), physical disability, mental disability, medical condition, genetic information, protected medical and family care leave, Civil Air Patrol status, military and veteran status, or other legally protected characteristics. We also prohibit harassment of any individual on any of the characteristics listed above. Our non-discrimination policy applies to all aspects of employment. We comply with the laws and regulations set forth in the "Know Your Rights: Workplace Discrimination is Illegal ( " poster. Our pay transparency policy is available here ( .
Western Digital thrives on the power and potential of diversity. As a global company, we believe the most effective way to embrace the diversity of our customers and communities is to mirror it from within. We believe the fusion of various perspectives results in the best outcomes for our employees, our company, our customers, and the world around us. We are committed to an inclusive environment where every individual can thrive through a sense of belonging, respect and contribution.
Western Digital is committed to offering opportunities to applicants with disabilities and ensuring all candidates can successfully navigate our careers website and our hiring process. Please contact us at to advise us of your accommodation request. In your email, please include a description of the specific accommodation you are requesting as well as the job title and requisition number of the position for which you are applying.
Based on our experience, we anticipate that the application deadline will be **12/4/25** , although we reserve the right to close the application process sooner if we hire an applicant for this position before the application deadline. If we are not able to hire someone from this role before the application deadline, we will update this posting with a new anticipated application deadline.
#LI-BN1
**Compensation & Benefits Details**
+ An employee's pay position within the salary range may be based on several factors including but not limited to (1) relevant education; qualifications; certifications; and experience; (2) skills, ability, knowledge of the job; (3) performance, contribution and results; (4) geographic location; (5) shift; (6) internal and external equity; and (7) business and organizational needs.
+ The salary range is what we believe to be the range of possible compensation for this role at the time of this posting. We may ultimately pay more or less than the posted range and this range is only applicable for jobs to be performed in California, Colorado, New York or remote jobs that can be performed in California, Colorado and New York. This range may be modified in the future.
+ If your position is non-exempt, you are eligible for overtime pay pursuant to company policy and applicable laws. You may also be eligible for shift differential pay, depending on the shift to which you are assigned.
+ You will be eligible to be considered for bonuses under **either** Western Digital's Short Term Incentive Plan ("STI Plan") or the Sales Incentive Plan ("SIP") which provides incentive awards based on Company and individual performance, depending on your role and your performance. You may be eligible to participate in our annual Long-Term Incentive (LTI) program, which consists of restricted stock units (RSUs) or cash equivalents, pursuant to the terms of the LTI plan. Please note that not all roles are eligible to participate in the LTI program, and not all roles are eligible for equity under the LTI plan. RSU awards are also available to eligible new hires, subject to Western Digital's Standard Terms and Conditions for Restricted Stock Unit Awards.
+ We offer a comprehensive package of benefits including paid vacation time; paid sick leave; medical/dental/vision insurance; life, accident and disability insurance; tax-advantaged flexible spending and health savings accounts; employee assistance program; other voluntary benefit programs such as supplemental life and AD&D, legal plan, pet insurance, critical illness, accident and hospital indemnity; tuition reimbursement; transit; the Applause Program; employee stock purchase plan; and the Western Digital Savings 401(k) Plan.
+ **Note:** No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company's sole discretion, consistent with the law.
**Notice To Candidates:** Please be aware that Western Digital and its subsidiaries will never request payment as a condition for applying for a position or receiving an offer of employment. Should you encounter any such requests, please report it immediately to Western Digital Ethics Helpline ( or email .

Bring your expertise to JPMorgan Chase. As part of Risk Management and Compliance, you are at the center of keeping JPMorgan Chase strong and resilient. You help the firm grow its business responsibly by anticipating new and emerging risks, and using your expert judgment to solve real-world challenges that impact our company, customers, and communities.
As a Credit Officer in the Credit Risk team, you will be conducting the essential credit analysis, performing due diligence, and reviewing documentation for new commercial real estate transactions with an emphasis on multifamily lending. You will operate in a dynamic, high-volume, and fast-paced environment, analyzing loans ranging from $1MM to $5MM+. You will be part of a highly collaborative team that prioritizes learning, professional development, inclusivity, and mentorship.
**Job Responsibilities**
+ Implement all facets of credit analysis on commercial real estate/multifamily loans.
+ Identify issues/concerns, evaluate results, and formulate effective recommendations in a timely manner.
+ Build and maintain strong relationships with internal business stakeholders including sales, processing, closing, and legal.
+ Gain a thorough understanding of relevant policies, standards, procedures, and regulatory requirements.
+ Apply data analysis techniques to interpret results and provide insights and recommendations to management.
+ Keep up with industry trends and best practices in credit risk management to enhance decision-making and maintain a competitive edge.
**Required qualifications, capabilities, and skills:**
+ Minimum 2+ years of experience in commercial real estate lending or 3+ years in other banking/finance experience.
+ Good understanding of multifamily real estate property valuations and cash flow analysis.
+ Strong financial analysis skills, including evaluating property cash flows, property valuation, and personal financial statements.
+ Demonstrated success in thriving within a fast-paced, collaborative environment while maintaining a high level of attention to detail.
+ Excellent verbal/written communication and problem-solving skills.
+ Ability to prioritize, plan, and manage processes to complete credit analysis and other assignments as needed.
+ Proficiency in Microsoft Word, Excel, and PowerPoint, with the ability to quickly adapt to proprietary systems.
**Preferred qualifications, capabilities, and skills:**
+ Bachelor's degree in accounting, finance, economics, or real estate is preferred.
+ Experience as a loan underwriter in commercial real estate lending is highly desirable.
+ Familiarity with regional markets and municipal regulations.
+ Experience with proprietary credit risk management tools.
JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.
JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans
**Base Pay/Salary**
Chicago,IL 77,900.00 - 115,000.00 / year; Seattle,WA 85,500.00 - 120,000.00 / year

Bring your expertise to JPMorgan Chase. As part of Risk Management and Compliance, you are at the center of keeping JPMorgan Chase strong and resilient. You help the firm grow its business responsibly by anticipating new and emerging risks, and using your expert judgment to solve real-world challenges that impact our company, customers, and communities.

As a Credit Officer in the Credit Risk team, you will be conducting the essential credit analysis, performing due diligence, and reviewing documentation for new commercial real estate transactions with an emphasis on multifamily lending. You will operate in a dynamic, high-volume, and fast-paced environment, analyzing loans ranging from $1MM to $5MM+. You will be part of a highly collaborative team that prioritizes learning, professional development, inclusivity, and mentorship.

Job Responsibilities

• Implement all facets of credit analysis on commercial real estate/multifamily loans.
• Identify issues/concerns, evaluate results, and formulate effective recommendations in a timely manner.
• Build and maintain strong relationships with internal business stakeholders including sales, processing, closing, and legal.
• Gain a thorough understanding of relevant policies, standards, procedures, and regulatory requirements.
• Apply data analysis techniques to interpret results and provide insights and recommendations to management.
• Keep up with industry trends and best practices in credit risk management to enhance decision-making and maintain a competitive edge.

Required qualifications, capabilities, and skills:

• Minimum 2+ years of experience in commercial real estate lending or 3+ years in other banking/finance experience.
• Good understanding of multifamily real estate property valuations and cash flow analysis.
• Strong financial analysis skills, including evaluating property cash flows, property valuation, and personal financial statements.
• Demonstrated success in thriving within a fast-paced, collaborative environment while maintaining a high level of attention to detail.
• Excellent verbal/written communication and problem-solving skills.
• Ability to prioritize, plan, and manage processes to complete credit analysis and other assignments as needed.
• Proficiency in Microsoft Word, Excel, and PowerPoint, with the ability to quickly adapt to proprietary systems.

Preferred qualifications, capabilities, and skills:

• Bachelor's degree in accounting, finance, economics, or real estate is preferred.
• Experience as a loan underwriter in commercial real estate lending is highly desirable.
• Familiarity with regional markets and municipal regulations.
• Experience with proprietary credit risk management tools.

JPMorganChase, one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world's most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

We offer a competitive total rewards package including base salary determined based on the role, experience, skill set and location. Those in eligible roles may receive commission-based pay and/or discretionary incentive compensation, paid in the form of cash and/or forfeitable equity, awarded in recognition of individual achievements and contributions. We also offer a range of benefits and programs to meet employee needs, based on eligibility. These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and more. Additional details about total compensation and benefits will be provided during the hiring process.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. We also make reasonable accommodations for applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. Visit our FAQs for more information about requesting an accommodation.

JPMorgan Chase & Co. is an Equal Opportunity Employer, including Disability/Veterans

Base Pay/Salary
Chicago,IL 77,900.00 - 115,000.00 / year; Seattle,WA 85,500.00 - 120,000.00 / year

**About Us**
SolomonEdwardsGroup, LLC ("SolomonEdwards") is a full-service professional services firm offering financial, operational, and technology consulting and operations support. We work with some of the world's most prominent companies to help them envision and achieve a better future. We know that our consulting services are only as meaningful as the people and talent behind them, and we are committed to recruiting incredibly talented, committed, and collaborative individuals who can help us deliver exceptional client service. For more information, visit SolomonEdwards
**Position Summary:**
We are seeking an Audit Manager - Model Risk Management to join a leading North American financial institution with a global footprint. This highly specialized role focuses on the auditing and validation of complex models in credit, market, liquidity, interest rate risk, AML, and financial crimes. The ideal candidate will bring deep technical expertise, regulatory awareness, and strong leadership capabilities.
**Essential Duties:**
· Lead audits related to model risk management and associated controls.
· Plan and execute audits across credit, market, and compliance risk domains.
· Collaborate with internal stakeholders to report findings and recommend improvements.
· Guide teams through audit cycles, ensuring thorough documentation and issue resolution.
· Monitor regulatory trends and integrate into risk management audits.
· Develop programs supporting audit strategy and operational efficiency.
· Support cross-functional initiatives and coach junior team members.
**Qualifications:**
· Bachelor's degree in Finance, Economics, Statistics, Mathematics, or related field.
· 7+ years of relevant experience in audit or model risk validation.
· CFA and/or FRM certifications preferred.
· Prior experience with credit adjudication models is essential.
· Exposure to AI-driven model environments is a plus.
**Skills and Job-Specific Competencies:**
· Proficiency in SAS and Python for data analytics and model validation.
· Strong understanding of risk modeling frameworks (credit, market, liquidity, AML, etc.).
· Excellent written and verbal communication skills.
· Ability to lead teams and engage with senior stakeholders.
· Proficient in Microsoft Office (Excel, Word, PowerPoint, Access, Outlook).
**Travel Requirements:** No travel will be required, unless at the client's discretion.
**Physical Requirements:** The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be provided to qualified applicants or candidates with disabilities upon request to enable them to perform essential functions. This role may require mobility to attend in-person meetings, sitting or standing for extended periods, and the use of telephone, computer, or other electronic communication devices.
**Salary Range:** SolomonEdwards values your unique and individual experience and background. As such, we take a comprehensive approach when determining compensation for our roles. The compensation for this specific role is based on a wide range of factors, including but not limited to education, licensure and certifications, location, experience, and training. A reasonable estimate for the current hourly range for this role is $45 - 60.
**Benefits:** We are committed to providing health and financial stability by offering a comprehensive suite of benefits. Benefits include access to top-tier employers and job opportunities, health insurance, sick leave, and 401(k).
**Inclusion and Diversity Statement:** SolomonEdwards is an Equal Opportunity/Affirmative Action employer. We firmly believe in fostering an inclusive and diverse workplace environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability, gender identity, sexual orientation, veteran status, or any other characteristic protected by applicable laws. All employees, including managers and supervisors, are responsible for upholding our EEO and diversity principles. Discrimination or harassment of any kind will not be tolerated.
We value the contribution and wisdom of the team. At SolomonEdwards, we have built a vibrant and inclusive community. Our team members are curious, committed, and diverse. In keeping with our mission to build value through people, we cultivate a culture where differences are celebrated, and all members are treated fairly and equitably. Employees, business partners, and our extended stakeholder family are empowered to share their experiences, ideas, and perspectives and to be their whole selves.
**Privacy:** We adhere to the California Consumer Privacy Act (CCPA). Your privacy is important to us, and we never sell your data to third parties. Personal information is only collected to match applicants with job opportunities. Copy/paste this URL to learn more about your rights: SolomonEdwards' Privacy Policy.
**Our Recruiter Promise:** Our talent acquisition team prioritizes integrity, professionalism, and transparency in every interaction. When you engage with SolomonEdwards, you can trust a respectful, secure experience from verified contacts. Copy/paste this URL to learn more about how we protect your candidate experience: Recruiter Promise.
# Place of Work
Remote
# Requisition ID
1
# Job Type
Contract
# Application Email