×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Data Security IT Consultant

Director of Cyber Risk & Assurance

Remote / Online - Candidates ideally in
Madison, Dane County, Wisconsin, 53774, USA
Listing for: WPS Health Solutions
Remote/Work from Home position
Listed on 2026-06-19
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security, IT Consultant
Salary/Wage Range or Industry Benchmark: 200000 - 250000 USD Yearly USD 200000.00 250000.00 YEAR
Job Description & How to Apply Below

Position Summary

Our Director of Cyber Risk & Assurance within our Enterprise IT Security team leads our enterprise-wide cyber risk and assurance function and is responsible for establishing a modern, risk-based approach to cybersecurity governance, compliance, assurance, and regulatory readiness. The Director transforms traditional Governance, Risk, and Compliance (GRC) activities into a proactive capability that strengthens control effectiveness, clarifies accountability, and improves overall cybersecurity maturity.

They define the cyber risk framework, control ownership model, and assurance practices that support regulatory obligations, business needs, and the Enterprise Cyber Resilience operating model. The Director oversees key domains including issue and Plan of Action & Milestone (POA&M) governance, cybersecurity awareness, automation, AI cyber enablement, and M&A‑related cyber risk support.

Key Responsibilities
  • Lead the Cyber Risk & Assurance function encompassing governance, risk management, compliance coordination, and executive-level cyber risk reporting.
  • Drive a risk-based assurance model that strengthens control effectiveness, remediation accountability, and measurable cybersecurity maturity.
  • Oversee the development and maintenance of an enterprise-aligned cybersecurity risk framework that meets regulatory, contractual, and AI governance expectations.
  • Oversee cybersecurity audits, regulatory readiness, and control assurance activities across all required frameworks and assessments within an enterprise-level environment.
  • Govern cybersecurity policies, awareness programs, and cross‑functional alignment of security requirements to business‑owned outcomes.
  • Establish and enable AI automation procedures, GRC enablement, and M&A/business‑change risk practices that ensure consistent identification, assessment, and remediation of cyber risks.
  • Lead staff development, stakeholder engagement, and executive‑level risk communication to support enterprise cyber resilience and long‑term cybersecurity strategy.
Minimum Qualifications
  • U.S. citizenship is required for this position due to Department of Defense restrictions.
  • Bachelor's degree in Cybersecurity, Information Systems, Computer Science, Risk Management, Business, or related field; equivalent combination of education and relevant experience may be considered.
  • 10 or more years of progressive experience in cybersecurity, technology risk, information security governance, security assurance or related risk functions.
  • 5 or more years in a leadership role in cybersecurity risk, GRC, assurance, technology risk, or cyber governance.
  • Demonstrated experience building or maturing a risk-based cybersecurity governance, risk, compliance, or assurance program.
  • Strong knowledge of cybersecurity control frameworks and regulatory expectations such as NIST CSF, NIST SP 800‑53, NIST SP 800‑171, HIPAA, CMS security requirements, CMMC, SOC 1/SOC 2, ISO 27001, or comparable frameworks.
  • Proven experience using workflow automation, GRC tools, reporting dashboards, or process automation to improve risk, compliance, assurance, evidence collection, and remediation workflows.
  • Working knowledge of AI‑related cybersecurity risk, safe‑use governance, AI policy considerations, or AI‑enabled workflow automation.
  • Demonstrated ability to translate complex technical control gaps into clear business‑risk implications and prioritized remediation strategies, paired with strong executive‑level communication, presentation, and stakeholder‑leadership skills.
Preferred Qualifications
  • Experience in healthcare, insurance, government contracting, Medicare Administrative Contractor (MAC), U.S. Department of Defense (DOD), Tricare, highly regulated, or federally controlled environments.
  • Experience supporting Centers for Medicare & Medicaid Services (CMS), Section 912, CMMC, NIST 800‑53/171, or other regulated audit and assurance environments.
  • Master's degree in Cybersecurity.
  • Certifications such as CISSP, CISM, CRISC, CGRC, HCISPP, ISO 27001 Lead Implementer/Auditor, or similar.
Remote Work Requirements
  • High‑speed cable or fiber.
  • Minimum of 10 Mbps downstream and at least 1 Mbps upstream internet…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search