GRC Risk Manager

Company Description

Join a multibillion-dollar global company that brings together amazing technology, people, and operational scale to become a powerhouse in the memory industry. Headquartered in Rancho Cordova, California, Solidigm combines elements of an established, successful technology company with the spirit, agility, and entrepreneurial mindset of a start-up. In addition to the U.S. headquarters and other facilities in the U.S., the company has international presence in Asia, Europe, and the Americas. Solidigm will continue to lead the world in innovating new Memory technologies with aspirations to be the #1 NAND memory company in the world. At Solidigm, we view problems as opportunities to define innovative solutions that hold the power to change the world and unleash the potential technological needs that the future holds. At Solidigm, we are One Team that fosters a diverse, equitable, and inclusive culture that embraces individual uniqueness and empowers us to bring our best selves to deliver excellence in support of Solidigm's vision and mission to be the go-to partner for optimized data storage solutions. You can be part of the takeoff of an innovative business that develops cutting-edge products, delivers strong business value for customers, provides an engaging workplace for its employees, and serves a greater impact on the world. This is a golden opportunity for the right applicant to join us and help design, build, and lead Solidigm. We want a diverse team of dedicated professionals who will not just be Solidigm team members but contribute to how we shape the future of the organization. We are seeking applicants who will grow and thrive in our culture; be customer inspired, trusting, innovative, team-oriented, inclusive, results driven, collaborative, passionate, and flexible.

Job Description

Looking for a GRC professional who understands all areas of GRC and privacy with an emphasis on risk to work closely with business leaders. While most of your time will be spent on the ‘R’ of GRC, you will also be expected to assist in other areas as well including Governance and Compliance activities as needed. How You Will Make an Impact

• Risk Management
  • Help to identify and prioritize risks associated with business continuity, cyber security, data protection, facilities protection, business process exposure, and many other areas across the organization.
  • Conduct consistent risk and control assessments to adequately understand the exposure and communicate details effectively
  • Change the conversation on risk from fear, uncertainty, and doubt to meaningful discussions that leverage clear data points
  • Build a scalable, repeatable, consistent processes for managing governance, risk, and compliance needs.  Continuously explore options for automation. (Looking for a builder not just a “do-er”).
  • Record risk and control details in an appropriate tool and link supporting metadata as appropriate.
  • Facilitate discussions with stakeholders across the organization.
  • Ability to work with GRC contractors to support our team’s efforts.

• Strategic Abilities
  • Provide recommendations on improving the overall GRC program.
  • Develop and lead the strategic direction of the Risk Management program, ensuring it aligns with the organization’s objectives and risk appetite.
  • Mentor and develop GRC team members, fostering a culture of continuous improvement and professional growth.
  • Serve as the primary risk liaison with executive leadership, providing strategic insights and recommendations to guide decision-making processes.

• Advanced Risk Analytics and Reporting
  • Build meaningful, actionable reports.
  • Leverage advanced risk analytics to provide deeper insights into potential risks and vulnerabilities within the organization.
  • Develop and implement sophisticated risk modeling techniques, such as predictive analytics, to anticipate future risk scenarios and inform proactive management strategies.
  • Enhance reporting mechanisms to include dynamic risk dashboards and executive summaries that offer real-time visibility into the organization's risk posture.

What Will Make You Stand Out

• Leader with experience in developing/building risk programs not just operating within one.
• Able to thrive in a fast-moving environment.  Priorities change frequently. Projects will start, pause, stop, and restart.
• Strong ability to extract information by questioning, active listening, challenging assumptions, and interviewing.
• Clear, concise communication skills and ability to convey complex topics in a simple manner.
• Experience in truly quantifying risk beyond subjective analysis (i.e. communicating risk in terms like US dollars, probability research, statistics, etc.)
• Data analysis skills including experience with Monte-Carlo, histograms, probability calculations, researching data libraries, etc.
• Familiarity with F.A.I.R. (Factor Analysis Information Risk)

Experience and Qualifications You Will Bring

• BA/BS or equivalent experience
• 10+ years work experience in GRC roles
• Experience with tools like Archer, OneTrust, ServiceNow GRC, Pelican, RiskLens, etc.
• Demonstrated analytical, decision making and problem-solving skills
• Strong written, presentation, and verbal communication