Sr. Security Risk Management Consultant
Conexess Group
Purpose The Senior Security Risk Management Consultant serves as a strategic advisor, liaison, and subject matter expert, driving enterprise-wide security risk management strategies that support our mission and operational excellence. This role partners with senior leadership, security, IT, and business stakeholders to identify, assess, and mitigate cybersecurity risks while ensuring alignment with organizational priorities and regulatory requirements. Responsibilities include leading complex risk assessments, guiding risk treatment strategies, influencing enterprise decision-making, and strengthening overall risk posture through governance, metrics, and continuous improvement. Program and Regulatory Compliance Supports the development and execution of our Information Security Third Party Risk and Integrated Risk Management Program, contributing to definition of team goals, scope of work, and deliverables aligned to Enterprise Information Security (EIS) priorities. Serves as a trusted advisor and liaison to stakeholders, ensuring initiatives align with organizational mission, values, operational goals, and applicable regulatory, legal, and contractual requirements. Leads and coordinates team participation in regulatory audits and investigations, including the preparation, validation, and delivery of required evidence, while supporting overall audit readiness and response efforts. People Leadership (Mentorship/Advisory) Contributes to a high-performing team of security risk professionals by providing guidance and support in third-party and integrated risk management, risk-based prioritization, and enterprise risk remediation coordination. Serves as a mentor and trusted resource to team members, offering subject matter expertise and helping to drive consistency, accountability, and quality in work delivery. Supports the development and refinement of team practices, including role clarity, competencies, and growth pathways aligned to organizational expectations. Provides ongoing coaching, knowledge sharing, and development support to colleagues, fostering professional growth and preparing team members for expanded responsibilities. Promotes a collaborative and inclusive team environment, encouraging open communication, psychological safety, and data-informed decision-making. Demonstrates authentic and professional influence, building trust through clear communication, partnership, and effective engagement with peers, leadership, and stakeholders. Information Security Governance, Risk & Compliance (GRC) Supports and contributes to third‑party and integrated risk management activities within our GRC platforms, identifying opportunities for process improvement and adapting to evolving control frameworks and risk requirements. Performs and reviews vendor tiering and risk assessments, partnering with team members and providing guidance on complex or higher-risk cases as needed. Contributes to the execution and ongoing refinement of the third‑party cyber risk lifecycle, including intake, due diligence, control assessment, remediation tracking, and ongoing monitoring. Evaluates vendor security controls across multiple domains (e.g., identity and access management, network and cloud security, data protection, incident response, and business continuity), applying risk-based judgment. Reviews and provides input on security-related contractual requirements, supporting alignment with organizational standards and regulatory expectations. Participates in coordination of offshore security risk compliance activities, helping to ensure consistency, quality, and timeliness of deliverables. Translates technical findings into clear business risk insights to support decision-making by stakeholders and business partners. Prepares and supports materials for audits, regulatory inquiries, and internal governance reviews. Documents and tracks risks, supports remediation efforts, and facilitates security policy exception (risk acceptance) processes in alignment with established standards. Identifies security risks and manages issues by working with stakeholders to develop corrective action plans, including cost and timeline analysis, and partners with leadership to present temporary risk acceptance plans in accordance with organizational security policies, procedures, and standards. Provides guidance on governance processes and collaborates with stakeholders to embed security and compliance into operational and strategic initiatives. Maintains active involvement in day-to-day assessments to ensure quality, consistency, and timely delivery. Escalates risks and concerns through appropriate channels to support effective resolution and visibility. Metrics and Reporting Partners with Strategy and Planning and Enterprise Information Security leadership to develop and report on key risk indicators (KRIs) and key performance indicators (KPIs), delivering clear, actionable insights that support informed decision-making and effective governance. Design, develop, and monitor robust data analysis and reporting systems, along with communication tools, to ensure accurate and timely insights. Information Security Risk Management (Advisory & Enablement) Coordinates and supports assignment of assessment work, partnering with team members and stakeholders to ensure alignment with established standards and effective intake processes. Reviews and provides guidance on risk assessments to promote consistency, quality, and alignment with our information security requirements. Contributes to workload balancing through collaboration and knowledge sharing, supporting team readiness and capability to deliver departmental services effectively. Executive & Stakeholder Engagement Cultivates and maintains effective relationships with executives and key stakeholders through clear, authentic, and risk-informed communication; supports alignment, enables informed decision-making, and promotes shared accountability for managing security risk. Enterprise Risk Communication & Decision Support Synthesizes and communicates enterprise security risk insights to executives and stakeholders in a clear, actionable manner, operating within established leadership direction and communication protocols; translates complex risk data into meaningful narratives that support informed decision-making, drive prioritization, and strengthen governance in alignment with organizational objectives. Information Security Leadership Support Serves as a representative of the Manager and/or Director as directed. Supports Information Security leadership by providing risk-informed insights, actionable recommendations, and clear communication to enable strategic decision-making, program prioritization, and alignment with organizational objectives. Security Leadership & Coordination Partners with Enterprise Information Security leadership to support aligned execution of security and risk management activities, including policy and standards development, control assessments, and risk management education; promotes collaboration, consistency, and integration of security practices across the organization. Regulatory & Standards Monitoring Maintains a working knowledge of applicable Federal, State, and local laws and regulations, our Integrity and Compliance Program and Code of Conduct, and relevant policies and procedures, while staying current with industry developments and regulatory changes to ensure updates are reflected and adherence is upheld with honest, ethical, and professional behavior. Project Management Leads and supports security risk initiatives and annual program activities, ensuring successful delivery aligned with organizational standards and risk management objectives. Provides guidance and mentorship to team members managing projects, promoting consistency, accountability, and high-quality outcomes without direct supervisory responsibility. Partners with stakeholders and leadership to align priorities, communicate status, and support achievement of strategic outcomes. Proactively identifies risks and supports mitigation efforts to keep initiatives on track and aligned with organizational expectations. Relationship Management Builds and maintains effective relationships to support stakeholder engagement throughout the project, program, or initiative lifecycle. Partners with stakeholders to support development and alignment of business process workflows, as well as training and communication plans. Provides guidance, tools, and resources to help stakeholders address challenges, mitigate risks, and sustain engagement, promoting risk‑aware decision‑making and adoption of information security best practices across the organization. Minimum Qualifications Bachelor's degree or an equivalent combination of education and experience. One or more security certifications: Certified Information Systems Security Professional (CISSP), International Social Security Association (ISSA), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC) Certified in Governance, Risk and Compliance (GRCP) or equivalent. Minimum of seven (7) years of progressive experience in information services including three (3) years working in cybersecurity governance, risk, and compliance (GRC). Minimum of three (3) years of progressively responsible experience in healthcare and/or other regulated industries. Strong knowledge of the HIPAA Security Rule and applicable industry security regulations, with the ability to rapidly build and sustain expertise; working understanding of broader HIPAA requirements, including Privacy and Breach Notification Rules. Proven knowledge of enterprise security principles and practices, with hands‑on experience or demonstrated capability in implementing, integrating, and managing security solutions across enterprise environments. Working knowledge of one or more information security regulations and/or frameworks - HIPAA, ISO 27001/2, FISMA, FIPS, HITRUST and NIST security. Experience with GRC platforms (e.g., ServiceNow GRC, RSA Archer, OneTrust, or similar) supporting risk and compliance programs. Demonstrated ability to leverage tooling to improve process efficiency, enable reporting, and support scalable risk management practices. Ability to serve as a leadership representative of the Manager and/or Director, interfacing with a variety of Health Ministry and System Office Executive leaders, team members and end users, exercising effective facilitation skills, judgment, and decision‑making in providing problem resolution and in meeting established goals and expectations. Ability to shape results, garner support and successfully manage complex relationships. Actively building skills in courageous, authentic leadership through clear, human‑centered communication with senior leaders and stakeholders; builds trust through empathy and vulnerability while skillfully navigating complex conversations, influencing decisions, and delivering compelling, accessible messages in both formal and informal settings. Excellent oral and written communication skills. Facilitates meetings between diverse groups and interests and prepares communications that includes independent advisory recommendations. Ability to communicate with non‑technical leaders and business owners providing a clear understanding of appropriate technology solutions to support and enhance business needs. Proficiency in performing third‑party risk assessments and negotiating contractual security language. Proven ability to apply appropriate project management methodology. Excellent project leadership, organization, integration, and execution skills required. Knowledge of and experience with change control, risk management, project planning, relationship management, budgeting, and scheduling. Ability to operate in an ambiguous and highly matrix organizational structure. Ability to manage multiple and ever‑changing priorities in a highly autonomous self‑directed manner. Some knowledge of and experience with clinical application systems (i.e., hospital work environment, technical terminology, etc.). Considerable knowledge of multiple technologies and experience with enterprise‑wide applications and systems in an integrated work environment. Proven ability to operate with speed and focus, driving measurable value through high‑quality delivery of time‑sensitive initiatives. Must demonstrate a strong commitment to continuous personal and professional growth, maintain a proactive mindset, and consistently go above and beyond to deliver exceptional value with acceptable security controls. Ability to work independently, manage multiple priorities, and effectively adapt to rapidly changing technology and business needs with demonstrated ability to prioritize projects and workload. Preferred Qualifications Master's degree from an accredited college/university One or more enterprise technology vendor certifications (e.g. PMP, Six Sigma, ITIL) Experience with risk quantification models (e.g. FAIR) or building custom risk scoring approaches. Familiarity with data visualization tools (e.g., Tableau, Power BI) for building risk dashboards Experience working cross-functionally to evaluate security controls and business processes, translating findings into meaningful risk insights Experience in managing risk in a healthcare environment Experience with Artificial Intelligence (AI) as a strategic tool to enhance efficiency in day-to-day business processes and strengthen risk assessment capabilities through automation, predictive analytics, and intelligent decision support. Demonstrated proficiency in executive-level communication and presence, including emotional intelligence, negotiation skills, and the ability to deliver compelling presentations to senior leadership and stakeholders. #J-18808-Ljbffr Conexess Group
- Conexess Group is seeking a Senior Security Risk Management Consultant to enhance our cybersecurity posture by driving enterprise security strategies. This role involves extensive collaboration with senior leadership and stakeholders to assess and mitigate cybersecurity...Senior
- ...Role As a member of the Information Security team, the IS GRC Senior Analyst - Risk & Compliance will be responsible... ...compliance requirements. You will manage and maintain the risk register, analyze... ...audit activities. This role will consult and interface with IT leadership,...SeniorFull timeContract workWork experience placementWork at officeRemote workRelocation packageMonday to Friday
- ...loanDepot is hiring for an Enterprise Risk Management position located in Southfield, Michigan. This role is essential for executing fair lending risk management initiatives, including analytical reporting and compliance monitoring. The ideal candidate has over five years...Senior
- Zeal Credit Union is seeking a Risk Management Specialist to help protect its members and assets by identifying, investigating, and documenting potential fraud and BSA/AML risks. You’ll ensure timely reporting and coordination with internal teams to minimize loss exposure...Suggested
- ...Southfield, MI is seeking an IS GRC Senior Analyst - Risk & Compliance. This role involves managing risk assessments, ensuring compliance with regulations... ...-time and requires prior experience in Information Security. The ideal candidate will have a Bachelor's degree, a...SeniorFull timeContract work
- ...Southfield, MI is looking for an IS GRC Senior Analyst - Risk & Compliance responsible for understanding security risks and compliance requirements. This position... .... Join us in fostering an inclusive workplace and managing critical security assessments. #J-18808-Ljbffr...SeniorWork at officeRemote work
- ...during their hardest times, not wealth management instruments (more details on this during... ...needs, including usability, performance, security, portability, reporting, and service-level... ...potential scope changes, conflicts, risks, and delivery issues to the product owner...Interim roleH1bWork at officeImmediate startRelocation
$99.6k - $192.9k
...SAP Extended Warehouse Management Functional Consultant At Ford Motor Company, we believe freedom of movement drives human progress. With our incredible... .... Demonstrate clear understanding of application security standards. Utilize Jira to manage backlogs, user...Work experience placementImmediate startFlexible hours$161k - $201.2k
...Summary We are seeking a Senior Manager, Public Fleet Sales & State... ...will lead the charge in securing public fleet contracts of all... ...Roadmap - You act as a strategic consultant for municipal agencies at... ...refresh cycles. Monitoring & Risk Management Identify and...SeniorFull timeContract workTemporary workPart timeWork at officeLocal areaShift work- ...support for required processing applications. Provide training/support for resources. Process invoices and resolve discrepancies. Manage account to ensure all invoices are within terms. Oversee matches, approvals, and agings performed by team members. Provide guidance...SeniorWork at office
- WorkForce Software Management Consultant (Only W2 role - No C2C accepted) 1 day ago Be among the first 25 applicants STG is a SEI CMMi Level... ...Project Management - Own end‑to‑end delivery planning, including risk, issue, and change management for modernized workforce...Hourly payPermanent employmentFull timeShift work
- ...This role offers ownership and the opportunity to contribute to various organizational initiatives, working collaboratively to support risk assessments and compliance requirements. If you enjoy a pet-friendly workplace that values flexibility and growth, this position is...Senior
$65.9k - $103.4k
...Lead cross‑functional, complex sourcing projects independently, managing timelines, deliverables, collaborator alignment, and issue... ...an Internet based system operated by the Department of Homeland Security (DHS) in partnership with the Social Security Administration (SSA...SeniorFull timeLocal area- ...Sr. Analyst, Accounts Payable This role provides senior-level strategic and analytical leadership across Accounts Payable and... ...& Expense, with expanded ownership for enterprise insight, risk management, and cross-functional influence. The Senior Analyst independently...SeniorContract workWork at officeWeekend workAfternoon shift
$84.48k - $162.12k
...Job Title SAP SD Functional Consultant Job Description We made history and now we... ...transformation, and our Service Parts Order Management domain is at the forefront of this... ...template standards. Proactively identify risks, process gaps, integration issues, and...Immediate startFlexible hours- ...“Canadian‑Owned” IT staffing/consulting company. Procom’s areas of staffing... ...Development Project Management Quality Assurance Business/... ...Infrastructure & Network Services Risk Management & Compliance... ...Continuity & Disaster Recovery Security & Privacy Specialties:...SeniorPermanent employmentContract workFor contractorsImmediate start
- ...Sr Phlebotomist - Livonia, MI This is NOT a remote position, it will be onsite Monday... ...needed changes. Maintains safe, secure, and healthy work environment by following... ...Natera training requirements Logistical management/printing of patient reports for that area...SeniorWork at officeLocal areaImmediate startWorldwideMonday to Friday
$67.5k - $110k
Responsibilities Initiate and facilitate regular assessments with managers to discuss upcoming assignments, scheduling needs, or capacity, including evaluation of budgets in comparison of scheduling needs and historical actuals Manage the staffing/scheduling process for...SeniorWork at office- ...experiences. Candidates should possess a Bachelor's degree and display strong customer service skills, including proactive sales and risk management. PNC offers comprehensive benefits, such as medical coverage, 401(k) match, and generous leave policies. This position provides...
- ...banking experiences. The role involves proactive lead generation and managing banking relationships under $2MM in sales revenue to ensure... ...emphasizes teamwork, with a focus on client experience and adherence to risk management policies. Comprehensive benefits and a supportive...
$120.32k
Your Role Key responsibilities in your new role: Manage and support the enablement of select distribution partners for successful promotions, enablement, and business wins. Lead the engagement with select accounts to support key account development and business growth...SeniorLocal areaShift work- ...Job Description The Business Development Manager (BDM) is responsible for new business development and client relationship management. The BDM's focus is on prospecting for and securing new client relationships. They work to better understand their clients’ international...Work at office
- ...experienced IT Operations Leader based in Livonia, Michigan. You will manage IT infrastructure across multiple sites, support critical... ...as you will work closely with both internal teams and vendors to ensure system reliability and security. #J-18808-Ljbffr ConexessSenior
- ...responsible for completing Vendor Assessments for the Vendor Risk Management team. This role will primarily focus on the following specific... ...of responsibility: Day-to-day management of Information Security risk identification, mitigation and acceptance processes in coordination...
$84.48k - $141.36k
The Transformation Management Organization Analyst is a pivotal role dedicated to revolutionizing Ford's Industrial Systems. You will be... ...data to identify milestone execution gaps, emerging issues, and risks to on‑time delivery, ensuring the transformation management organization...Immediate startFlexible hours- ...you will lead analytics efforts, investigate complex fraud patterns, and collaborate across departments to strengthen our fraud risk management initiatives. The ideal candidate will have experience in the life insurance sector, strong data analytics skills, and a...Senior
- United Road is seeking a Claims Analyst to support our Risk Management/Quality Department. The role involves analyzing cargo claims, managing resolution processes, and collaborating with various stakeholders to mitigate losses effectively. The ideal candidate will have...
$56.9k - $89.32k
...steward of the Masco Strategic Sourcing Process.* Act as the Project Manager for assigned sourcing initiatives, supporting execution from... ...Internet based system operated by the Department of Homeland Security (DHS) in partnership with the Social Security Administration (...Local area$141.7k - $268.3k
...perform integrated launch planning, digital risk assessment, value stream mapping, and... ...weekly launch plan, status, and risk management Partner with the functional and IT leaders... ...Manage a small team including external consultants to integrate various cross functional transformational...Immediate startFlexible hours$50 per hour
...Enterprise Risk Management Analyst/Senior/Lead JOB-10046879 Anticipated Start Date July 13, 2026 Location Taylor, TX Type of Employment Contract Hire Employer Info Our client is a membership-based, nonprofit corporation dedicated...Hourly payFull timeContract workInternship
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Sr. Security Risk Management Consultant. Be the first to apply!
- senior manager pmo Livonia, MI
- senior accountant part time Livonia, MI
- senior analyst Livonia, MI
- senior manager legal Livonia, MI
- senior human factors engineer Livonia, MI
- senior brand strategist Livonia, MI
- remote senior project manager Livonia, MI
- senior tableau developer Livonia, MI
- senior project manager contract Livonia, MI
- senior manager m&a tax Livonia, MI

