Governance Risk & Compliance Manager
6 - 10 years
United States
Contract
Remote
1 month ago
About the role
Information Security Analyst
Duration: Contract
Location: 100% Remote (US-based)
Start: 05/26/2026
Position Overview
Seeking an experienced Information Security Manager to design and implement an enterprise risk management framework. The candidate will define end-to-end governance workflows, build a standardized risk register, engage cross-functional stakeholders, and deliver audit-ready documentation. This is a deliverable-based engagement focused on establishing sustainable risk management practices beyond the contract term.
Key Responsibilities
Define end-to-end governance workflows covering risk identification, intake, review, validation, acceptance, mitigation, transfer, ongoing monitoring, and periodic reassessment. Establish roles and responsibilities for risk owners, reviewers, and governance bodies. Design escalation and reporting processes for high-risk and accepted risks. Engage stakeholders across business, technology, security, and governance functions to validate risk requirements and workflows. Facilitate working sessions and workshops to socialize the risk register and governance processes. Support onboarding of initial risks into the enterprise risk register. Provide knowledge transfer to designated security staff to ensure sustainability beyond the contract term.
Deliverables
Enterprise Risk Register Framework — standardized risk register template and taxonomy. Risk Scoring and Prioritization Model — documented likelihood and impact scales, scoring methodology and prioritization logic. Risk Governance Model — defined workflows for risk intake, review, acceptance, and monitoring, plus roles and responsibilities matrix. Initial Population of Risk Register — documented risks reflecting current cybersecurity and technology risk posture. Final Documentation Package — consolidated guidance and operating procedures for ongoing risk management.
Required Skills and Qualifications
8 years required — Risk register design and framework development
8 years required — Risk scoring and prioritization model design
8 years required — Governance processes and workflow design
8 years required — Stakeholder engagement and enablement
8 years required — Documentation and knowledge transfer
Contract Details
Start: May 26, 2026 End: August 31, 2026 Total Hours: Not to exceed 560 hours Schedule: Monday through Friday, 8:00 AM – 5:00 PM (excluding state holidays) Overtime may be required with pre-approval
Work Location
100% Remote — candidates must be located within the United States All travel and living expenses are the candidate's responsibilities.
PriceSenz is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, or disability .
Duration: Contract
Location: 100% Remote (US-based)
Start: 05/26/2026
Position Overview
Seeking an experienced Information Security Manager to design and implement an enterprise risk management framework. The candidate will define end-to-end governance workflows, build a standardized risk register, engage cross-functional stakeholders, and deliver audit-ready documentation. This is a deliverable-based engagement focused on establishing sustainable risk management practices beyond the contract term.
Key Responsibilities
Define end-to-end governance workflows covering risk identification, intake, review, validation, acceptance, mitigation, transfer, ongoing monitoring, and periodic reassessment. Establish roles and responsibilities for risk owners, reviewers, and governance bodies. Design escalation and reporting processes for high-risk and accepted risks. Engage stakeholders across business, technology, security, and governance functions to validate risk requirements and workflows. Facilitate working sessions and workshops to socialize the risk register and governance processes. Support onboarding of initial risks into the enterprise risk register. Provide knowledge transfer to designated security staff to ensure sustainability beyond the contract term.
Deliverables
Enterprise Risk Register Framework — standardized risk register template and taxonomy. Risk Scoring and Prioritization Model — documented likelihood and impact scales, scoring methodology and prioritization logic. Risk Governance Model — defined workflows for risk intake, review, acceptance, and monitoring, plus roles and responsibilities matrix. Initial Population of Risk Register — documented risks reflecting current cybersecurity and technology risk posture. Final Documentation Package — consolidated guidance and operating procedures for ongoing risk management.
Required Skills and Qualifications
8 years required — Risk register design and framework development
8 years required — Risk scoring and prioritization model design
8 years required — Governance processes and workflow design
8 years required — Stakeholder engagement and enablement
8 years required — Documentation and knowledge transfer
Contract Details
Start: May 26, 2026 End: August 31, 2026 Total Hours: Not to exceed 560 hours Schedule: Monday through Friday, 8:00 AM – 5:00 PM (excluding state holidays) Overtime may be required with pre-approval
Work Location
100% Remote — candidates must be located within the United States All travel and living expenses are the candidate's responsibilities.
PriceSenz is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, or disability .
Skills
Information TechnologyIT Services and IT Consulting