Mature and execute the enterprise risk management framework.
Lead day-to-day execution of Akoya’s cybersecurity program.
Oversee corporate IT governance in partnership with the IT Systems Administrator.
Akoya is building a secure API-driven open finance network. They value diverse experiences and encourage everyone to apply, especially those who will bring something new to the table.
Support security and compliance programs aligned with frameworks such as NIST, ISO, PCI DSS, and HIPAA.
Assist in maintaining alignment with global privacy regulations (GDPR, CCPA, and similar frameworks).
Assist in the development, implementation, and maintenance of security, privacy, and AI governance policies, standards, and procedures.
Hims & Hers is a health and wellness platform with a mission to help the world feel great through the power of better health. They are redefining healthcare by putting the customer first and delivering access to care that is affordable, accessible, and personal.
Responsible for managing and growing a comprehensive third-party risk management program across the organization.
Ensuring that Privia Health's information assets are safeguarded against cyber threats originating from third and fourth parties.
Leading the Third Party Access Committee (TPAC), driving compliance with regulations and implementing industry best practices for vendor risk management.
Privia Health is a technology-driven, national physician enablement company that collaborates with medical groups, health plans, and health systems to optimize physician practices, improve patient experiences, and reward doctors for delivering high-value care. The Privia Platform is led by top industry talent and exceptional physician leadership.
Design Governance Structures, Decision Rights, and Accountability.
Build and Operationalize Governance Artifacts and Routines.
Artemis Connection is a strategic management consultancy working across the for-profit, public, and social sectors. They are passionate about helping innovative and entrepreneurial leaders reach their goals through a customized, project-based approach. The team is made up of seasoned consultants trained at organizations such as McKinsey & Company, BCG, Bain, Big 4 Strategy, and elite educational institutions.
Serve as a trusted advisor to CISOs, translating technical findings into business impact and cyber risk insights.
Own the end-to-end lifecycle of customer relationships and engagements, including onboarding and assessment coordination.
Drive long-term customer retention through consistent value realization and measurable outcomes.
Cye helps security and risk leaders gain a clear, defensible view of their cyber exposure, grounded in financial impact and real-world attack paths. They allow organizations to establish a strong baseline, prioritize decisions with confidence, and track measurable reduction over time.
Lead the organization’s cybersecurity strategy, governance, and operational security programs.
Protect company systems, networks, and data by developing security policies and managing risk.
Oversee security operations and lead incident response efforts.
Lightcast is a global leader in labor market insights with headquarters in Moscow, ID (US) and offices in the United Kingdom, Europe, and India. They drive economic prosperity and mobility by providing insights to build and develop people, institutions, companies, and communities.
Perform all 7 steps of the Risk Management Framework (RMF) per DoDI 8510.01, producing required deliverables at each step
Develop, maintain, and update RMF packages including System Security Plans (SSP), Security Assessment Reports (SAR), Risk Assessment Reports (RAR), and Plans of Action & Milestones (POA&M)
Ensure compliance with federal, DoD, and DLA cybersecurity requirements, policies, and standards
FWI is building a team to provide Program Management Office (PMO) Support Services for the Defense Agencies Initiative (DAI). It has been recognized as a Top Workplace by the Washington Post in 2024 and 2025, offering excellent growth opportunities in a collaborative environment.
Partner with organizations of all sizes and industries
Evaluate IT and security controls for compliance and effectiveness
Advise on security + privacy requirements (state & federal)
Clark Schaefer Hackett provides customized solutions leveraging strategic skills, financial and operational leadership, and technological advances. They are an elite community that includes trusted advisors with Clark Schaefer Hackett, Clark Schaefer Consulting, and Clark Schaefer Strategic HR.
Support CapIntel’s Governance, Risk, and Compliance program
Manage third-party risk and customer security reviews
Support operational security, privacy, and security awareness initiatives
CapIntel is a software platform built for wealth management enterprises to help financial advisors explain complex investment strategies to their clients. Since launching in 2019, CapIntel has seen rapid adoption and industry recognition, earning top placements in Deloitte’s Technology Fast 50 Canada and Fast 500 North America in 2025, ranking us among the fastest -growing technology companies.
Conduct ongoing risk reviews and maintain an up-to-date risk register.
Support risk assessments across critical business processes and systems.
Partner with stakeholders to develop and track risk mitigation plans through resolution.
Radicle Health offers human services software products to foster collaboration and innovation, aiding organizations in better serving communities. They believe technology is crucial for the human services sector's success, housing mission-driven products that support organizations in delivering essential services.
Implement and manage the NIST Risk Management Framework (RMF) to achieve and maintain compliance.
Drive the data privacy program by conducting Privacy Impact Assessments (PIAs) and Data Protection Impact Assessments (DPIAs).
Design and execute a continuous internal audit program to validate the effectiveness of controls.
IonQ delivers solutions to solve the world’s most complex problems with quantum computing. IonQ's newest generation quantum computers, IonQ Tempo and IonQ Forte Enterprise, help customers and partners such as Amazon Web Services, AstraZeneca, and NVIDIA achieve 20x performance results.
Perform GRC functions and maintain the Cyber Security Risk register.
Execute third party risk processes for cyber and perform/execute on awareness programs and phishing processes.
Liaise with the vendor management (VM) team to conduct security assessments of existing and prospective vendors.
Warner Music Group is a global collective of music makers and music lovers, tech innovators and inspired entrepreneurs, game-changing creatives and passionate team members. They turn dreams into stardom and audiences into fans. WMG is committed to creating a work environment that actively values, appreciates, and respects everyone and encourages applications from people with a wide variety of backgrounds and experiences.
Lead end-to-end audit execution across SOC 2, ISO 27001, ISO 42001, ISO 27701, HIPAA, and GDPR and maintain year-round audit readiness.
Build and mature Atlan's risk management program and turn abstract risk conversations into measurable metrics with clear ownership and quarterly leadership reviews.
Integrate our GRC platform with cloud infrastructure, CI/CD pipelines, HR systems, and product engineering tooling to automate evidence collection and continuous control testing.
Atlan is building the missing context layer for data and AI, helping enterprises close the AI value chasm and finally move AI pilots into production. We are backed by world-class investors including GIC, Insight Partners, Meritech, Peak XV, and Salesforce Ventures and trusted by global enterprises like Mastercard, Workday, General Motors, Unilever and others.
Own and operate the end-to-end enterprise cybersecurity program, including strategy, architecture, operations, governance, and compliance.
Establish a multi-year security roadmap aligned with business priorities, technology evolution, and regulatory requirements.
Define and execute a strategy for AI-assisted cybersecurity operations, leveraging machine learning, automation, and advanced analytics to enhance detection and response capabilities.
Natera is a global leader in cell-free DNA (cfDNA) testing, dedicated to oncology, women’s health, and organ health. They aim to make personalized genetic testing and diagnostics part of the standard of care. Their team consists of highly dedicated statisticians, geneticists, doctors, laboratory scientists, business professionals, software engineers and many other professionals from world-class institutions, who care deeply for their work and each other.
Support Business Continuity, Crisis Management, and Disaster Recovery processes.
Conduct Business Impact Analysis, including information gathering, impact assessment, and documentation of results.
Work closely with technical teams to plan, coordinate, and monitor disaster recovery tests, including existing tests and the development of new scenarios.
Pismo, founded in 2016, provides a comprehensive processing platform for banking, card issuing, and financial market infrastructure, helping customers innovate and build next-gen banking and payment solutions. With over 500 employees across 10 countries, Pismo joined Visa in 2024, leveraging Visa’s solutions.
Responsible for assessing, monitoring, and managing risks associated with global third-party relationships to ensure compliance.
Supports the Global Head of Third Party Risk by preparing regular metrics and other risk reports.
Facilitates issue escalation and risk acceptance processes to ensure appropriate stakeholders are involved.
Liberty Mutual is an insurance company. At Liberty Mutual, their goal is to create a workplace where everyone feels valued, supported, and can thrive; they achieve this through comprehensive benefits, workplace flexibility, and professional development opportunities.
Lead and support a variety of security-related initiatives across both technical and business domains.
Apply strong project and program management discipline, including planning, prioritization, reporting, and cross-functional coordination.
Support program budgets, executive reporting, and ongoing program tracking using modern project management platforms and collaboration tools.
Netflix is a streaming service that offers a wide variety of award-winning TV shows, movies, anime, documentaries, and more on thousands of internet-connected devices. They are known for a dynamic and innovative company culture.
Execute healthcare advisory engagements including Governance, Risk, and Compliance (GRC) assessments.
Virginia General delivers specialized governance, risk, compliance, and resilience advisory services within the healthcare sector. They aid healthcare organizations to navigate complex regulatory landscapes and cybersecurity challenges.
Serve as the project manager for overall execution and delivery of cybersecurity requirements.
Coordinate with government leadership and stakeholders to facilitate effective communication.
Develop and maintain project management plans for the contract lifecycle.
Jobgether is a platform that uses AI-powered matching process to ensure candidate applications are reviewed quickly and fairly. They identify the top-fitting candidates for companies.
Manage and develop staff members under Product Compliance.
Oversee and contribute to the vulnerability management lifecycle.
Assess and serve as a subject matter expert for regulatory and compliance requirements.
ExtraHop is a company that focuses on network detection and response (NDR) to help organizations stay ahead of emerging threats. They integrate network threat detection, network performance management, intrusion detection, and packet forensics into a single console.