Sr. Director, BT Risk ManagementWorkday, Inc. • Pleasanton, CA, United States
Sr. Director, BT Risk Management
Workday, Inc. • Pleasanton, CA, United States
23 days ago
Job type
- Full-time
Job descriptionYour work days are brighter here. We’re obsessed with making hard work pay off, for our people, our customers, and the world around us. As a Fortune 500 company and a leading AI platform for managing people, money, and agents, we’re shaping the future of work so teams can reach their potential and focus on what matters most. The minute you join, you’ll feel it. Not just in the products we build, but in how we show up for each other. Our culture is rooted in integrity, empathy, and shared enthusiasm. We’re in this together, tackling big challenges with bold ideas and genuine care. We look for curious minds and courageous collaborators who bring sun-drenched optimism and drive. Whether you're building smarter solutions, supporting customers, or creating a space where everyone belongs, you’ll do meaningful work with Workmates who’ve got your back. In return, we’ll give you the trust to take risks, the tools to grow, the skills to develop and the support of a company invested in you for the long haul. So, if you want to inspire a brighter work day for everyone, including yourself, you’ve found a match in Workday, and we hope to be a match for you too. About the Team Workday’s Business Technology (BT) organization continues its mission to deliver unparalleled value to our business partners and customers. To support this mission, the BT Strategy & Operations team is responsible for developing the long-term vision for BT, setting goals and objectives, and ensuring that we have the right plans in place to move with speed at scale. The team collaborates closely with cross-functional teams, business partners, and executives to understand the needs and priorities of the business, and supports the development of strategies that will help BT meet those needs. About the Role The Sr. Director of BT Risk Management is a critical, new leadership role responsible for establishing and maturing a comprehensive risk management program within Workday's Business Technology (BT) organization. This role is a cornerstone of the larger BT Transformation initiative, aiming to drive consistency, clarity, and efficiency. You will report to the VP, BT Strategy & Operations and be a core member of the leadership team. The primary mission is to evolve BT from a reactive to a proactive and strategic risk-aware organization. This will be achieved by clarifying roles and responsibilities, creating a standardized framework, and improving the visibility of operational risks across the enterprise. Key Responsibilities Program Leadership & Strategic Direction : Formally establish and lead a comprehensive risk management program for the BT organization. This includes the design and implementation of a federated Governance, Risk, and Compliance (GRC) model, establishing an advisory group to define and propagate standards, tools, and practices. Policy and Controls Management : Develop, implement, and monitor adherence to policies, procedures, controls, and training / awareness campaigns to ensure the protection of Workday systems and data, and to improve our overall security posture. Risk Assessment & Mitigation : Lead a standardized, comprehensive framework for identifying, assessing, and mitigating IT risks. This involves conducting security risk assessments, performing root cause analysis, and collaborating with internal teams to identify and evaluate risks and to implement procedures to eliminate, mitigate, or accept them. Compliance & Audit Coordination : Act as the primary liaison for all BT-related compliance and audit activities. You will coordinate and manage information security risk assessments, security compliance audits, cybersecurity and privacy audits, and ensure that processes and controls are operating effectively. You will also coordinate activities during customer, auditor, and regulatory agency inspections. Regulatory Frameworks : Ensure the BT organization's compliance with critical regulatory and industry-specific frameworks, including SOX, HIPPA, PCI DSS, and various international data privacy laws by establishing and monitoring relevant procedures and controls. Cross-Functional Partnership : Work closely with leaders across the BT organization and business functions to embed a culture of proactive risk management. Communication & Reporting : Provide clear, transparent reporting on the BT organization's risk posture to leadership and key stakeholders, ensuring appropriate decisions are made based on the right information. Basic Qualifications : 10+ years of experience in IT risk management, information security, or a related Governance, Risk, and Compliance (GRC) field. 5+ years of experience in Risk Management in leadership and management roles. 10+ years in design, implementation, and development in comprehensive IT risk management programs. Deep knowledge of cyber security governance frameworks (e.g., NIST, ISO 27001, COBIT) and a track record of implementing effective security policies, procedures, and controls. Demonstrated knowledge of information security principles and the ability to conduct security risk assessments, perform root cause analysis, and ensure compliance with regulatory frameworks such as SOX, HIPAA, and PCI DSS. Other Qualifications : Exceptional communication skills with a proven ability to build and nurture relationships with diverse stakeholders, including business leaders and technical teams. Skilled at articulating complex technical risks to both technical and non-technical audiences and influencing change across the organization. Demonstrated ability to translate a strategic vision into a concrete plan, prioritizing tasks and resources based on urgency and business impact to ensure effective and efficient execution. About You Basic Qualifications : 10+ years of experience in IT risk management, information security, or a related Governance, Risk, and Compliance (GRC) field. 5+ years of experience in Risk Management in leadership and management roles. 10+ years in design, implementation, and development in comprehensive IT risk management programs. Deep knowledge of cyber security governance frameworks (e.g., NIST, ISO 27001, COBIT) and a track record of implementing effective security policies, procedures, and controls. Demonstrated knowledge of information security principles and the ability to conduct security risk assessments, perform root cause analysis, and ensure compliance with regulatory frameworks such as SOX, HIPAA, and PCI DSS. Other Qualifications : Exceptional communication skills with a proven ability to build and nurture relationships with diverse stakeholders, including business leaders and technical teams. Skilled at articulating complex technical risks to both technical and non-technical audiences and influencing change across the organization. Demonstrated ability to translate a strategic vision into a concrete plan, prioritizing tasks and resources based on urgency and business impact to ensure effective and efficient execution. Track record of acting as a thought leader in the technology or security space, including presenting at industry events, publishing articles, or influencing key industry trends. Experience in talent development, including mentoring and coaching junior team members and defining the critical skills needed to build a future-ready IT workforce. Familiarity with the unique risks and governance challenges associated with emerging technologies, particularly Artificial Intelligence and Machine Learning. Relevant certifications such as CISSP, CISM, or CRISC. Workday Pay Transparency Statement The annualized base salary ranges for the primary location and any additional locations are listed below. Workday pay ranges vary based on work location. As a part of the total compensation package, this role may be eligible for the Workday Bonus Plan or a role-specific commission / bonus,
#J-18808-Ljbffr
Create a job alert for this search
Director Risk Management • Pleasanton, CA, United States
Related jobs
Senior Director – Risk Engineering.Location : San Jose, California, United States of America.Department : Software Development.
Lead the Risk Engineering team and oversee risk management strategies.De...Show more
Director, Security Product Risk Management.Director, Security Product Risk Management.Docusign brings agreements to life.
With Intelligent Agreement Management, Docusign helps organizations create, ...Show more
Work with the Team Managers to flawlessly deliver (implement) the BAU policies and models on the Decision Infrastructure for multiple Portfolios Oversee the Offshore contract team, key role recruit...Show more
Recology Service Center - San Francisco office.Role of the Director of Risk Management (this position will be in the office 3 days per week).
Plans, coordinates, and directs the Company's insurance ...Show more
Upgrade is seeking a Manager to evaluate and oversee our business-critical vendors, ensuring their controls align with, and properly address, the risks associated with their services.You'll play a ...Show more
Central Garden & Pet is looking for a Director of Risk Management in our Walnut Creek, CA office.This position is a strategic leader responsible for overseeing the companys global corporate ins...Show more
Role of the Director of Risk Management.Plans, coordinates, and directs the Company’s insurance program and other related risk management programs to mitigate the Company’s risk.Carries out supervi...Show more
From the beginning, our goal was to establish an advisory firm that stands apart from the rest – one that is grounded in our Core Values and dedicated to creating a positive experience not just for...Show more
Director Of Enterprise Risk, Safety & Security.Another Source's partner, Samuel Merritt University, is hiring a Director of Enterprise Risk, Safety & Security in Oakland, CA.If you've ever wanted t...Show more
From the beginning, our goal was to establish an advisory firm that stands apart from the rest – one that is grounded in our Core Values and dedicated to creating a positive experience not just for...Show more Partner closely with Business leaders, Technology, Operations, Marketing, and other support areas to design and implement controls that meet regulatory requirements and align with efficient operati...Show more 
Director Of Business Technology Risk Management.Your work days are brighter here.We're obsessed with making hard work pay off, for our people, our customers, and the world around us.As a Fortune 50...Show more
The job description is comprehensive and well-structured, but it can be improved for clarity and readability by refining some sections and ensuring consistent formatting.
Director, Product Managemen...Show more
Director Of Business Technology Risk Management.Your work days are brighter here.We're obsessed with making hard work pay off, for our people, our customers, and the world around us.As a Fortune 50...Show more
Since 2012, we’ve been empowering organizations to take back control and stay ahead of threat actors by uniting the collective ingenuity and expertise of our customers and trusted alliance of elite...Show more
Since 2012, we’ve been empowering organizations to take back control and stay ahead of threat actors by uniting the collective ingenuity and expertise of our customers and trusted alliance of elite...Show more
Reporting to the Senior Associate Chancellor and Chief Financial Officer, the Executive Director of Risk Advisory & Insurance Services (RAIS) oversees the Enterprise Risk Management (ERM) activitie...Show more
Today, through BHN’s single global platform, businesses of all kinds can tap into the world’s largest network of branded payment solutions.
BHN helps businesses grow revenue, increase loyalty, motiv...Show more
Senior Director – Risk Engineering
PayPal • San Jose, CA, United States
Full-time
Last updated: 30+ days ago • Promoted
Director, Security Product Risk Management
Docusign • San Francisco, CA, United States
Full-time
Last updated: 17 days ago • Promoted
Director, Decision Risk Infrastructure
LendingClub • San Francisco, CA, United States
Full-time
Last updated: 18 days ago • Promoted
Director, Risk Management
Recology • San Francisco, CA, United States
Full-time
Last updated: 30+ days ago • Promoted
Manager, Vendor Risk Management
Upgrade, Inc. • San Francisco, CA, United States
Full-time
Last updated: 30+ days ago • Promoted
Director, Risk Management
Central Garden & Pet • Walnut Creek, CA, US
Full-time
Last updated: 2 days ago • Promoted
Director, Risk Management
International Executive Service Corps • San Francisco, CA, United States
Full-time
Last updated: 30+ days ago • Promoted
Managing Director - Risk Advisory
Cross Country Consulting • San Francisco, CA, United States
Full-time
Last updated: 30+ days ago • Promoted
Director Enterprise Risk - Samuel Merritt University
Another Source • Oakland, CA, US
Full-time
Last updated: 23 days ago • Promoted
Managing Director - Risk Advisory
CrossCountry • San Francisco, CA, United States
Full-time
Last updated: 30+ days ago • Promoted
Sr Director, Business Risk & Controls
LendingClub • San Francisco, CA, United States
Full-time
Last updated: 30+ days ago • Promoted
Sr. Director, BT Risk Management
Clearance Jobs • Pleasanton, CA, US
Full-time
Last updated: 23 days ago • Promoted
Director, Product Management, VMDR - Risk-Based Vulnerability Management
Qualys • Foster City, CA, United States
Full-time
Last updated: 30+ days ago • Promoted
Sr. Director, BT Risk Management
Workday • Pleasanton, CA, US
Full-time
Last updated: 23 days ago • Promoted
Sr. Director, Cybersecurity
Bugcrowd • San Francisco, CA, United States
Full-time
Last updated: 24 days ago • Promoted
Sr. Director, Cybersecurity
Bugcrowd Inc. • San Francisco, CA, United States
Full-time
Last updated: 23 days ago • Promoted
Executive Director of Risk Advisory & Insurance Services
ISACA • San Francisco, CA, United States
Full-time
Last updated: 30+ days ago • Promoted
Sr. Director, Risk Management
FyrFly Venture Partners • Pleasanton, CA, United States
Full-time
Last updated: 30+ days ago • Promoted