Senior Risk Expert in Bentonville, Arkansas
Listed on 2026-07-18
-
IT/Tech
Cybersecurity, Information Security
Senior Risk Expert
The Senior Risk Expert designs and operates scalable, engineering-driven risk management by translating security policy and control intent into automated, testable controls. This role leads continuous risk and compliance assessments across cloud, hybrid, and SaaS environments, balancing policy-as-code, AI-assisted evidence automation, and expert judgment. Leveraging strong GRC and audit foundations, the expert partners with engineers to embed compliance into platforms, pipelines, and architectures, evaluates emerging threats, and drives measurable risk reduction while meeting regulatory and assurance expectations across the enterprise.
About the team:
The team is dedicated to enforcing compliance with security policies and standards, ensuring alignment with corporate risk and security frameworks. It connects solution owners to corporate products and services while managing cyber risk assessments and mitigation strategies. The group conducts thorough evaluations of network security, vulnerability assessments, and risk management activities. Collaborating closely with stakeholders, the team provides expert guidance to enhance security posture and supports the implementation of effective controls.
This team plays a critical role in safeguarding organizational assets by proactively identifying risks and recommending solutions to maintain robust cybersecurity compliance.
What you'll do:
- Engineer policy-as-code and automated controls aligned to risk, compliance, and audit requirements
- Perform continuous cyber risk assessments across cloud, SaaS, hybrid, and network environments
- Build automation using Python, APIs, and AI tooling for control testing, evidence, and remediation
- Analyze threats, penetration-testing results, and telemetry to harden architectures and defenses
- Lead audit, assurance, and remediation efforts with high-quality, defensible evidence
- Partner with engineering and business teams to embed risk controls into delivery pipelines
What you'll bring:
- Deep experience in cyber risk, GRC, and compliance within large engineering organizations
- Hands-on automation skills (Python, APIs, scripting) for continuous control evaluation
- Strong background in audit or assurance (Big 4 or equivalent) and evidence quality
- Expertise across cloud platforms, containers, CI/CD, APIs, and enterprise data systems
- Ability to translate control intent into scalable technical implementations
- Comfort applying AI/LLM tooling to risk, evidence, and findings automation
- Certifications such as CISA, CISSP, or similar are a plus
Primary
Location:
805 Se Moberly Ln., Bentonville, AR 72712, United States of America
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).