MongoDB

MongoDB

MongoDB provides a developer data platform that simplifies data management and accelerates application development, enabling businesses to leverage modern database technology for innovative solutions across various industries.

Internet Software & Services
1K-5K
Founded 2007

Description

  • Execute risk assessments under senior guidance, including scoping, inherent risk scoring, control assessment, and residual risk calculation.
  • Manage risk intake from Jira Service Desk and the Issue Intake Tracker, validate submissions, assign Risk IDs, and maintain the Risk Register.
  • Triage incoming submissions to distinguish strategic risks, operational issues, and duplicates.
  • Develop risk scenarios with asset owners and risk owners by identifying threat communities, threat events, and impact categories.
  • Draft clear Risk Assessment Memos that connect risk statements, ratings, and recommendations.
  • Monitor and escalate emerging risk signals, including AI-related risks, with documented analysis.
  • Identify, document, and assess controls against risk scenarios and relevant frameworks such as NIST SP 800-53, ISO 27001, and SOC 2.
  • Evaluate control design adequacy and operating effectiveness, documenting evidence and findings.
  • Track control gaps and remediation progress, and maintain control-to-framework mappings for audit and certification evidence.
  • Maintain risk taxonomy, risk acceptance workflows, trackers, dashboards, and JIRA/JQL-based assessment pipelines.
  • Support KRI data collection, executive reporting, and governance forum materials.
  • Engage technical stakeholders to gather evidence, translate technical findings into business-relevant risk language, and support ongoing governance hygiene.

Requirements

  • 3–5 years of experience in Information Security, GRC, or Enterprise Risk Management.
  • Experience performing risk assessments, including risk identification, inherent/residual risk scoring, and documentation of findings.
  • Experience identifying, documenting, and evaluating controls, including design adequacy and operating effectiveness.
  • Strong working knowledge of NIST CSF, NIST SP 800-30/39/53, and ISO/IEC 27005.
  • Advanced proficiency in Excel or Google Sheets, including pivot tables, VLOOKUP, and complex formulas.
  • Jira proficiency, including managing projects, creating workflows and dashboards, and using JQL.
  • Ability to write clear, concise, and defensible Risk Assessment Memos.
  • Strong attention to detail for data integrity and documentation quality.
  • Foundational understanding of cloud-native architectures and common technical controls such as IAM, encryption, logging/monitoring, and network segmentation.
  • Awareness of AI risk concepts and willingness to build expertise in emerging AI risk and regulatory topics.
  • Proven ability to collaborate effectively across teams and levels.
  • Bachelor's degree in Cybersecurity, Information Systems, Business Administration, or a related field.
  • One of the following certifications is required: CRISC, CISM, CISSP, or CISA.

Benefits

  • Base salary range of $96,000 to $165,000 USD for U.S.-based candidates.
  • Equity as part of the total compensation package.
  • Employee stock purchase program.
  • Flexible paid time off.
  • 20 weeks of fully paid gender-neutral parental leave.
  • Fertility and adoption assistance.
  • 401(k) plan.
  • Mental health counseling and access to transgender-inclusive health insurance coverage.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Manager, Governance, Risk and Compliance

Path Robotics 51-250 Automotive

Path Robotics is hiring a Cybersecurity GRC Manager to build and lead its enterprise governance, risk, and compliance program as the company scales into regulated markets.

AWS Azure Cybersecurity GCP
19 minutes ago

Global Partner Programs Manager

Nice Côte d'Azur Hotels, Restaurants & Leisure

NiCE is hiring a Global Partner Program Manager to evolve and operationalize a global partner program across regions and partner motions with clear governance, measurable performance, and scalable execution.

CRM
2 hours, 17 minutes ago

Delivery Solutions Architect

Databricks 1K-5K IT Services

Databricks is hiring a Delivery Solutions Architect to lead post-sale technical strategy and customer execution for strategic data and AI use cases across complex accounts.

Apache Spark Databricks MLflow Python
3 hours, 8 minutes ago

Proposal Manager

Wiz 251-1K IT Services

Wiz is seeking an experienced Proposal Manager to join its Legal team and lead end-to-end responses to customer RFPs, RFIs, and security questionnaires for enterprise cloud security deals.

CRM Cybersecurity Salesforce
3 hours, 35 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers