RemoteLeaf Logo
Log in Sign up

IRM Analyst

3 weeks ago
United States
Full-time
Mid Level
Program Manager
Cybersecurity
AWS Azure Encryption GCP JIRA MongoDB
Apply Now
MongoDB

MongoDB

MongoDB provides a developer data platform that simplifies data management and accelerates application development, enabling businesses to leverage modern database technology for innovative solutions across various industries.

Internet Software & Services
1K-5K
Founded 2007
View All Jobs 123

Description

  • Execute risk assessments under senior guidance, including scoping, inherent risk scoring, control assessment, and residual risk calculation.
  • Manage risk intake from Jira Service Desk and the Issue Intake Tracker, validate submissions, assign Risk IDs, and maintain the Risk Register.
  • Triage incoming submissions to distinguish strategic risks, operational issues, and duplicates.
  • Develop risk scenarios with asset owners and risk owners by identifying threat communities, threat events, and impact categories.
  • Draft clear Risk Assessment Memos that connect risk statements, ratings, and recommendations.
  • Monitor and escalate emerging risk signals, including AI-related risks, with documented analysis.
  • Identify, document, and assess controls against risk scenarios and relevant frameworks such as NIST SP 800-53, ISO 27001, and SOC 2.
  • Evaluate control design adequacy and operating effectiveness, documenting evidence and findings.
  • Track control gaps and remediation progress, and maintain control-to-framework mappings for audit and certification evidence.
  • Maintain risk taxonomy, risk acceptance workflows, trackers, dashboards, and JIRA/JQL-based assessment pipelines.
  • Support KRI data collection, executive reporting, and governance forum materials.
  • Engage technical stakeholders to gather evidence, translate technical findings into business-relevant risk language, and support ongoing governance hygiene.

Requirements

  • 3–5 years of experience in Information Security, GRC, or Enterprise Risk Management.
  • Experience performing risk assessments, including risk identification, inherent/residual risk scoring, and documentation of findings.
  • Experience identifying, documenting, and evaluating controls, including design adequacy and operating effectiveness.
  • Strong working knowledge of NIST CSF, NIST SP 800-30/39/53, and ISO/IEC 27005.
  • Advanced proficiency in Excel or Google Sheets, including pivot tables, VLOOKUP, and complex formulas.
  • Jira proficiency, including managing projects, creating workflows and dashboards, and using JQL.
  • Ability to write clear, concise, and defensible Risk Assessment Memos.
  • Strong attention to detail for data integrity and documentation quality.
  • Foundational understanding of cloud-native architectures and common technical controls such as IAM, encryption, logging/monitoring, and network segmentation.
  • Awareness of AI risk concepts and willingness to build expertise in emerging AI risk and regulatory topics.
  • Proven ability to collaborate effectively across teams and levels.
  • Bachelor's degree in Cybersecurity, Information Systems, Business Administration, or a related field.
  • One of the following certifications is required: CRISC, CISM, CISSP, or CISA.

Benefits

  • Base salary range of $96,000 to $165,000 USD for U.S.-based candidates.
  • Equity as part of the total compensation package.
  • Employee stock purchase program.
  • Flexible paid time off.
  • 20 weeks of fully paid gender-neutral parental leave.
  • Fertility and adoption assistance.
  • 401(k) plan.
  • Mental health counseling and access to transgender-inclusive health insurance coverage.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Path Robotics

Manager, Governance, Risk and Compliance

Path Robotics 51-250 Automotive

Path Robotics is hiring a Cybersecurity GRC Manager to build and lead its enterprise governance, risk, and compliance program as the company scales into regulated markets.

United States Full-time Senior Penetration Tester Program Manager
AWS Azure Cybersecurity GCP
19 minutes ago
Nice Côte d'Azur

Global Partner Programs Manager

Nice Côte d'Azur Hotels, Restaurants & Leisure

NiCE is hiring a Global Partner Program Manager to evolve and operationalize a global partner program across regions and partner motions with clear governance, measurable performance, and scalable execution.

United States Full-time Lead Partnerships Manager Program Manager
CRM
2 hours, 17 minutes ago
Databricks

Delivery Solutions Architect

Databricks 1K-5K IT Services

Databricks is hiring a Delivery Solutions Architect to lead post-sale technical strategy and customer execution for strategic data and AI use cases across complex accounts.

United Kingdom Full-time Senior Program Manager Solutions Engineer
Apache Spark Databricks MLflow Python
3 hours, 8 minutes ago
Wiz

Proposal Manager

Wiz 251-1K IT Services

Wiz is seeking an experienced Proposal Manager to join its Legal team and lead end-to-end responses to customer RFPs, RFIs, and security questionnaires for enterprise cloud security deals.

United States Full-time Senior Program Manager
$132k-$182k
CRM Cybersecurity Salesforce
3 hours, 35 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers