Chief Risk Officer jobs
Boston Scientific Senior Product Risk Specialist United States, Minnesota
Share
Your responsibilities will include:
- Produce and maintain Clinical Evaluation Reports (CERs) for the global product portfolio in accordance with company SOPs and applicable regional regulations (e.g., FDA 510(k)/PMA, EU MDR, Health Canada, PMDA, etc.)
- Collaborate with cross-functional partners to support clinical risk analysis and enhance documentation quality
- Conduct and analyze literature searches to interpret and summarize harms, hazards, alternative therapies, and device-specific benefits for risk assessment
- Identify the need for and generate clinical risk-related documents for commercial or in-development products to meet both internal and external regulatory requirements
- Act as a liaison between the Clinical Product Risk function and cross-functional project teams, ensuring effective communication of relevant information
- Collaborate with Clinical and R&D functions to develop consistent clinical deliverable criteria and rationalize the need (or absence) of clinical trials
- Serve as a mentor and subject matter expert in clinical product risk activities; provide consulting support on complex projects and product grouping strategies
- Represent the function as a product SME during audits (FDA, Notified Body, and internal), including preparation of documentation and CAPA responses
Required qualifications:
- A bachelor’s degree and minimum of 3 years' experience in life sciences, engineering, or a related field
- Or minimum of 7 years' experience in the respective field without a degree
- Medical and/or technical writing experience
Preferred qualifications:
- Experience in the medical device industry
- Knowledge of therapeutic areas and device classifications
- Strong ability to collaborate cross-functionally and at all organizational levels
- Proven skills in interpreting and synthesizing clinical and commercial data
- Excellent attention to detail and strong organizational skills
- Solid understanding of business procedures, quality systems, and regulatory compliance
Maximum Salary: $ 164500
Compensation fornon-exempt (hourly), non-sales rolesmay also include variable compensation from time to time (e.g., any overtime and shift differential) and annual bonus target (subject to plan eligibility and other requirements).
Compensation forexempt, non-sales rolesmay also include variable compensation, i.e., annual bonus target and long-term incentives (subject to plan eligibility and other requirements).
For MA positions: It is unlawful to require or administer a lie detector test for employment. Violators are subject to criminal penalties and civil liability.
Please be advised that certain US based positions, including without limitation field sales and service positions that call on hospitals and/or health care centers, require acceptable proof of COVID-19 vaccination status. Candidates will be notified during the interview and selection process if the role(s) for which they have applied require proof of vaccination as a condition of employment. Boston Scientific continues to evaluate its policies and protocols regarding the COVID-19 vaccine and will comply with all applicable state and federal law and healthcare credentialing requirements. As employees of the Company, you will be expected to meet the ongoing requirements for your roles, including any new requirements, should the Company’s policies or protocols change with regard to COVID-19 vaccination.
Among other requirements, Boston Scientific maintains specific prohibited substance test requirements for safety-sensitive positions. This role is deemed safety-sensitive and, as such, candidates will be subject to a prohibited substance test as a requirement. The goal of the prohibited substance testing is to increase workplace safety in compliance with the applicable law.
These jobs might be a good fit
West Pharma Director Enterprise Risk Management United States, Pennsylvania, West Whiteland Township
Share
- Direct and maintain the ERM program and strategy, ensuring alignment with Committee of Sponsoring Organizations' (COSO) ERM Framework and the latest professional standards, and publish/update ERM policies and procedures.
- Establish and lead an Enterprise Risk Governance Council and promote ERM activities and visibility within the Executive Leadership Team and across departments, operating units, and business functions.
- Provide expert risk consulting and advice to all levels of management and business units to ensure comprehensive, high-quality risk reporting and early identification of risk trends.
- Facilitate and coordinate requests for information from auditors, regulators, and collaborate with Financial, Legal, Compliance, Information Technology, Internal Audit, and Operations teams.
- Lead scheduled enterprise risk reporting and presentations for Executive Management, the Audit Committee, and the Board of Directors.
- Review key risk and performance indicators/metrics to assist in early risk trend identification and manage risk self-assessments with business unit management.
- Build strong internal and external alliances to positively influence risk identification and resolution.
- Provide risk support for major initiatives, including M&A activities, related integrations, vendor management projects, and large system/process improvements.
- Direct enterprise risk communication to stakeholders through targeted correspondence and internal networks and oversee the development and delivery of ongoing ERM training programs.
- Assure quality control of enterprise risk-related databases and risk registers and facilitate development and maintenance of department-level risk registers and dashboards in company databases.
- Master's Degree Business Administration, Finance, Accounting, or related field. preferred
- Bachelor's Degree Business Administration, Finance, Accounting, or related field. required
- Minimum 10 years of experience in enterprise risk management, audit, project management, or related field, including 5-7+ years in ERM process development and operation required
- Strong knowledge of COSO ERM framework and other internal control standards.
- Proficiency in risk quantification methods and systems.
- Ability to maintain ERM training and certifications to leverage current experience and enhance the ERM program.
- Strong interpersonal skills with the ability to build relationships across all levels of the organization, including the Board of Directors.
- Consistently demonstrate high standards, professional ethics, integrity, and trust.
- Positive and resourceful with an inquisitive nature, proactively seeking out information to drive successful ERM initiatives.
- Must be able to operate across different geographic time zones.
- Excellent communication and influence skills, including report writing, presentations, and group facilitation.
- Demonstrated executive presence and ability to work independently in a dynamic environment.
These jobs might be a good fit
Nvidia Cybersecurity Engineer - Third Party Risk Management United States, Texas
Share
- US, CA, Santa Clara
- US, TX, Austin
- US, NC, Remote
- US, NC, Durham
- US, CA, Remote
- time type
- Full time
- posted on
- Posted 4 Days Ago
- job requisition id
What you’ll be doing:
Agentic Workflow Design: Build autonomous agents that handle the full TPRM lifecycle.
Employ Generative AI Technology like embeddings, RAG, or LLM agents for summarizing vendor responses.
Continuous Monitoring Automation: Build event-driven integrations (webhooks, serverless functions) to react to vendor risk score changes or asset discovery events.
NLP and ETL Automation: Use Natural Language Processing (NLP) for extracting structured data from vendor documents and maintain pipelines for ingesting and correlating vendor risk data, findings, and compliance metrics.
Integration Architecture: Design modular, API-based pipelines connecting TPRM tooling (LogicGate/OneTrust) with Databricks, Jira, and data warehouses.
Domain Alignment: Apply deep understanding of the TPRM Lifecycle (onboarding, risk tiering, assessment, remediation) and ensure security relevance based on frameworks such as NIST CSF 2.0, ISO 27001, SOC 2, and CMMC mappings.
Risk Modeling: Integrate knowledge of Risk Scoring Models (e.g., BitSight scores) into inherent and residual risk calculations.
What we need to see:
API Engineering: Experience integrating data from security and GRC systems such as BitSight, LogicGate, ServiceNow, or Jira.
Workflow Automation Tools: Understanding of orchestration and automation systems such as Tines, n8n, Cortex XSOAR for prototypes).
Data Modeling & Pipelines: Ability to design and maintain data models for vendor metadata, risk scores, and control test results.
Proficient in using tools like Cursor, Claude, Gemini, or similar frameworks to develop agentic automations for data analysis and workflow execution.
Observability & Metrics: Ability to implement logging, monitoring, and metrics dashboards (e.g., PowerBI) for TPRM automation health.
8+ years of proven experience in cybersecurity with a focus on automation, security engineering, or architecture.
Communication & System Thinking: Strong cross-functional communication. System thinking to translate policy/compliance goals into technical automation design.
Leadership: Innovation mindset: Ability to propose and prototype emerging AI approaches responsibly; Excellent Documentation & Knowledge-sharing skills of automation architecture, runbooks, and control mappings.
Minimum bachelor’s degree or equivalent experience in a technology or relevant scientific field required.
Ways to stand out from the crowd:
Certifications in one or more of the following areas: CIPP, CISSP, CISA, CISM, CRISC.
Proficiency in using third-party risk management platforms such as OneTrust, RSA Archer, or similar tools.
Hands-on experience with developing and maintaining metrics dashboards for Cybersecurity programs.
Demonstrated ability to manage and mitigate risks associated with a large and diverse portfolio of third-party vendors.
You will also be eligible for equity and .
These jobs might be a good fit
Boston Scientific Sr Quality Systems Engineer- Global Risk Management United States, Massachusetts, Marlborough
Share
Spencer Gregory Hale
Serves as a Global Risk Management process owner to drive and support Global Risk Management initiatives and quality goals and priorities. Develops, establishes, and maintains global processes, systems, and practices that meet BSC, customer, and regulatory requirements. Partners with design teams across all divisions and leads global communities of practice (CoP) to drive and improve BSC’s Global Risk Management process, in collaboration with the global risk management sub-process stewards.
Your responsibilities include:
- Demonstrating competence in drafting, editing, and implementing effective Global Risk Management procedures with input from all divisions to support the development and maintenance of products to meet or exceed internal and external requirements.
- Acting on feedback trends identified through QS audit, product submissions, and QMR metrics by driving process improvement projects across the Risk Management Sub-Process.
- Influencing key stakeholders through collaborative community engagement. Helping connect the key SMEs across divisions and capitalizing on networking skills to promote best practice sharing and efficient problem solving.
- Partnering with all upstream and downstream process owners to ensure the right linkages with the Global Risk management Process are maintained (i.e., production and process controls, material controls, post-market support)
- Supporting internal and external audits and audit responses for existing products.
- Monitoring compliance with company policies and procedures.
- Owning Global CAPAs, including proven experience with complex, multi-site/multi-division problem-solving.
- Acting as an effective leader or team member in supporting quality disciplines, decisions, and practices.
- Applying sound, systematic problem-solving methodologies in identifying, prioritizing, communicating, and resolving quality issues.
- Ensuring the development and execution of streamlined business processes which help achieve VIP/Continuous Improvement goals.
Require Qualifications:
- Bachelor's degree in Science, Health, or Engineering.
- Minimum of 5 years of Medical Device Design Controls and Risk Management experience required.
- Understanding of US and International regulations including 21 CFR Part 820, ISO 13485, and EN ISO 14971 is required, as well as knowledge of the Medical Device Directive and EU MDR.
Preferred Qualifications:
- Excellent oral and written communication skills (e.g., giving presentations to peer groups and various levels of management, sharing clear and concise information, managing change effectively using a variety of communication methods and tools, etc.).
- Advanced project management skills (e.g., breaking projects into smaller tasks, coordinating work with other impacted process or document owners, balancing competing priorities, managing expectations on project timelines, etc.).
- Expertise in Microsoft Office Suite programs including, Teams, Excel, PowerPoint, and Word.
Maximum Salary: $ 164500
Compensation fornon-exempt (hourly), non-sales rolesmay also include variable compensation from time to time (e.g., any overtime and shift differential) and annual bonus target (subject to plan eligibility and other requirements).
Compensation forexempt, non-sales rolesmay also include variable compensation, i.e., annual bonus target and long-term incentives (subject to plan eligibility and other requirements).
For MA positions: It is unlawful to require or administer a lie detector test for employment. Violators are subject to criminal penalties and civil liability.
Among other requirements, Boston Scientific maintains specific prohibited substance test requirements for safety-sensitive positions. This role is deemed safety-sensitive and, as such, candidates will be subject to a prohibited substance test as a requirement. The goal of the prohibited substance testing is to increase workplace safety in compliance with the applicable law.
These jobs might be a good fit
Forter Chief Merchant United States, Oregon
Share
What you’ll be doing:
- Be the Authentic Voice of the Merchant: Serve as Forter’s chief ambassador and thought leader in the commerce community. Participate in market events, including conferences, trade shows, and regional activations, as a credible, respected peer to our customers and prospects.
- Influence and Educate the Market: Play a critical role in delivering thought leadership and education to target audiences and the market at large in partnership with the VP of Growth and VP of Market Strategy.
- Cultivate C-Suite Relationships: Leverage your network and expertise to open doors and build trusted relationships with C-suite executives and senior leaders within our customer and prospect organizations.
- Build a Thriving Customer Community: Architect and lead our market community development strategy, creating forums and programs that foster engagement, knowledge-sharing, and loyalty among our customer base.
- Drive Our Referral and Reference Engine: Partner with your team to identify and nurture reference-ready customers, and build a scalable program that generates a significant volume of high-quality, referral-based pipeline.
- Lead the Customer Advocacy & Engagement Team: Manage and mentor the Senior Director of Customer Advocacy and Engagement, guiding the team's execution of world-class Voice of the Customer (VoC) and advocacy programs.
- Partner to Accelerate Growth:
- Collaborate with the VP of Growth to strategically infuse the customer voice into demand generation, growth, and partner marketing activations.
- Work alongside the VP of Market Strategy to bring powerful customer stories and proof points into our product marketing, PR initiatives, and brand campaigns.
- Serve as an essential partner to the Sales organization , helping to integrate customers and the merchant perspective directly into our sales motion to build credibility and accelerate deals.
- Champion the Merchant Perspective Internally: Partner with the VP of Market Strategy to bring critical "outside-in" thinking to our Product and Engineering teams, ensuring they understand the buyer perspective and are building solutions that create unique value for merchants.
What you’ll need:
- 15+ years of senior leadership experience working directly for an enterprise apparel, accessories, beauty, or retail organization in a digital, e-commerce, or product leadership role.
- No prior SaaS or enterprise software experience is required
- Active engagement in commerce and retail industry communities and networks
- A natural connector and storyteller with executive presence and public speaking skills.
- A commercially-minded leader who understands how to translate customer relationships and community engagement into measurable business outcomes, specifically pipeline and revenue.
- Proven ability to operate strategically and cross-functionally in a fast-paced environment.
- A passion for mentoring and leading teams, fostering a culture of excellence and customer-centricity.
Trust is backed by data – Forter is a recipient of over 10 workplace and innovation awards, including:
- Great Place to Work Certification (2021, 2022, 2023)
- Fortune’s Best Workplaces in NYC (2022, 2023 and )
- Forbes Cloud 100 (2021, 2022, 2023 and )
- #3 on of “Most Innovative Finance Companies” (2022)
- Anti-Fraud Solution of the Year at the Payments Awards (2024)
- SAP Pinnacle Awards “ ” (2023)
- Fintech Breakthrough Awards – Best Fraud Prevention Platform (2023)
Benefits:
- Competitive salary
- Restricted Stock Units (RSUs)
- Matching 401K Plan
- Comprehensive and generous health insurance, including vision and dental coverage
- Home office allowance
- Generous PTO policy
- Half day Fridays
Salary Range:+ bonus + equity + benefits
These jobs might be a good fit
Couchbase Chief Information Security Officer CISO United States
Share
Governance, Risk & Compliance
- Develop, implement, and maintain an enterprise-wide information security strategy and governance framework aligned with organizational goals.
- Establish and maintain information security policies, standards, and procedures that support business continuity and risk management. This includes continuing to build and enhance governance, privacy, and security frameworks to encompass AI/ML workloads and data pipelines, ensuring responsible, compliant, and secure adoption of AI technologies across the enterprise.
- Oversee enterprise-wide security risk management, including assessments, and mitigation plans.
- Ensure compliance with relevant information security frameworks and standards including but not limited to SOC 2, HIPAA, PCI DSS, ISO.
- Collaborate with Legal and Compliance on evolving data privacy regulations (GDPR, CCPA, etc.) and integrate privacy by design across systems and products.
Security Operations
- Direct day-to-day security operations, including monitoring, detection, and response to threats.
- Lead security incident response planning and execution, acting as the senior point of escalation during security incidents.
- Serve as the primary advisor to the executive team and Board on cybersecurity strategy, risk posture, and incident readiness.
- Drive the identification and remediation of security vulnerabilities within defined SLAs.
- Manage key performance metrics for security maturity, leveraging automation, analytics, and AI to drive continuous improvement across detection, response, and compliance.
- Review, refine and mature existing security processes and tools, including but not limited to SIEM, DLP, vulnerability management, email security, end point security, penetration testing, threat hunting, threat analysis, security monitoring, and security incident response.
- Oversee business continuity and disaster recovery planning, ensuring resilience across cloud and data center operations.
Product Security
- Perform security software architecture review and integrate threat modeling and abuse cases into the SDLC; Advise and implement secure software architecture patterns.
- Assess and architect security for SaaS/Cloud applications across AWS, GCP and Azure.
- Drive the development and implementation of standard security review processes across the company that result in effective methods for reducing security risks before product releases.
- Integrate application security tools within existing development, build, and deployment processes.
- Oversee the execution of dynamic & static code scan reviews and run-time tests.
- Own and manage the bug bounty program.
- Assist with the planning and execution of application penetration tests.
- Interface and collaborate with Engineering, Cloud, and SOC teams during security incidents.
- Work with customers as needed, to explain or enhance any security policies or product related engineering.
- Drive the remediation of security vulnerabilities in the products within defined SLAs.
- Assist in completing RFP security questionnaires
Qualifications:
- 15+ years of progressive experience in information security, risk management, or IT leadership, including at least 5 years in a senior security leadership role.
- Proven track record leading enterprise-wide cybersecurity strategy and operations in a global, cloud-first technology company.
- Solid understanding of secure coding principles (e.g., OWASP Top10, OWASP SAMM) and Agile software development practices.
- Demonstrated experience with security in public cloud platforms (AWS, Azure, GCP), CNAPP (Sysdig, Wiz, etc), SAST, DAST, SCA, Networking (Firewalls, Switches, Access Points, etc.), Operating Systems (Linux, Mac, Windows), Secure Software Development, IAM, Key Management, Encryption, SIEM (Splunk, Rapid 7, Alienvault, etc.), DLP (Netskope, Checkpoint, Proofpoint, Symantec, etc), Email Security (Abnormal Security, Mimecast, etc.), and Endpoint Security (SentinelOne, CrowdStrike, etc.)
- Strong background in application and product security, including secure software design, code analysis, penetration testing, and bug bounty management.
- Must have strong collaborative skills, a growth mindset, and a willingness to make tomorrow better than today.
- Industry Certifications such as CISSP, CISM, CCISO are preferred
- Bachelor’s or Master’s degree in Computer Science, Information Security, or related field.
Base Pay Range
$217,000 - $255,000 USD
If you require reasonable accommodations during the recruitment process, please let your recruiter know—we’re happy to support you.
We value diverse educational and career backgrounds. If your experience aligns with the role’s goals—even if it doesn’t follow a traditional path—we’d love to hear from you.
- Generous Time Off Program - Flexibility to care for you and your family
- Wellness Benefits - A variety of world class medical plans to choose from, along with dental, vision, life insurance, and employee assistance programs*
- Financial Planning - Retirement program* and Business Travel Insurance
- Career Growth - Be valued, Create value approach
- Fun Perks - An ergonomic and comfortable in-office / WFH setup. Food & Snacks for in-office employees.
- And much more!
These jobs might be a good fit
Boston Scientific Principal Product Risk Specialist United States, Massachusetts, Marlborough
Share
Your responsibilities will include:
- Produce and maintain Clinical Evaluation Reports (CERs) for the global product portfolio in accordance with company SOPs and applicable regional regulations (e.g., FDA 510(k)/PMA, EU MDR, Health Canada, PMDA, etc.). Collaborate with cross-functional partners to obtain additional input to aid in clinical risk analysis
- Analyze literature searches on products/product families to interpret and summarize harms, hazards, alternate therapies and device specific benefits from literature to support risk assessment.
- Identifies the need for and/or generates clinical risk related documents on BSC products (commercial or under development) to support internal BSC and external regulatory agency requirements
- Serves as a liaison between Clinical Product Risk function and project team. Clearly communicates pertinent project/function information.
- Collaborate with Clinical and R&D to develop common Clinical deliverable criteria and strategize justification for no clinical trial or aid in development of clinical trial rationalization plan.
- Mentors and serves as subject matter expert in key clinical product risk activities; participates as a risk management consultant for complex projects and for grouping similar products into logical and sustainable structure.
- Serve as product SME during FDA, Notified Body, and internal audits; prepare back‑room documentation and CAPA responses.
- A bachelor’s degree and 5+ years of professional experience in life sciences, engineering, or related field.
- Or 10+ years of professional experience in the respective field.
- Medical and/or technical writing experience required
- Medical Device industry experience preferred
- Therapeutic area knowledge desired
- Ability to work cross-functionally at all levels of organization
- Proven ability to analyze, interpret and synthesize clinical and commercial data
- Attention to detail and strong organizational skills.
- Understanding and application of business concepts, procedures and practices. Will perform this job in a quality system environment and failure to adequately perform tasks can result in noncompliance with governmental regulations.
Compensation fornon-exempt (hourly), non-sales rolesmay also include variable compensation from time to time (e.g., any overtime and shift differential) and annual bonus target (subject to plan eligibility and other requirements).
Compensation forexempt, non-sales rolesmay also include variable compensation, i.e., annual bonus target and long-term incentives (subject to plan eligibility and other requirements).
For MA positions:It is unlawful to require or administer a lie detector test for employment. Violators are subject to criminal penalties and civil liability.
Please be advised that certain US based positions, including without limitation field sales and service positions that call on hospitals and/or health care centers, require acceptable proof of COVID-19 vaccination status. Candidates will be notified during the interview and selection process if the role(s) for which they have applied require proof of vaccination as a condition of employment. Boston Scientific continues to evaluate its policies and protocols regarding the COVID-19 vaccine and will comply with all applicable state and federal law and healthcare credentialing requirements. As employees of the Company, you will be expected to meet the ongoing requirements for your roles, including any new requirements, should the Company’s policies or protocols change with regard to COVID-19 vaccination.
These jobs might be a good fit
Share
Your responsibilities will include:
- Produce and maintain Clinical Evaluation Reports (CERs) for the global product portfolio in accordance with company SOPs and applicable regional regulations (e.g., FDA 510(k)/PMA, EU MDR, Health Canada, PMDA, etc.)
- Collaborate with cross-functional partners to support clinical risk analysis and enhance documentation quality
- Conduct and analyze literature searches to interpret and summarize harms, hazards, alternative therapies, and device-specific benefits for risk assessment
- Identify the need for and generate clinical risk-related documents for commercial or in-development products to meet both internal and external regulatory requirements
- Act as a liaison between the Clinical Product Risk function and cross-functional project teams, ensuring effective communication of relevant information
- Collaborate with Clinical and R&D functions to develop consistent clinical deliverable criteria and rationalize the need (or absence) of clinical trials
- Serve as a mentor and subject matter expert in clinical product risk activities; provide consulting support on complex projects and product grouping strategies
- Represent the function as a product SME during audits (FDA, Notified Body, and internal), including preparation of documentation and CAPA responses
Required qualifications:
- A bachelor’s degree and minimum of 3 years' experience in life sciences, engineering, or a related field
- Or minimum of 7 years' experience in the respective field without a degree
- Medical and/or technical writing experience
Preferred qualifications:
- Experience in the medical device industry
- Knowledge of therapeutic areas and device classifications
- Strong ability to collaborate cross-functionally and at all organizational levels
- Proven skills in interpreting and synthesizing clinical and commercial data
- Excellent attention to detail and strong organizational skills
- Solid understanding of business procedures, quality systems, and regulatory compliance
Maximum Salary: $ 164500
Compensation fornon-exempt (hourly), non-sales rolesmay also include variable compensation from time to time (e.g., any overtime and shift differential) and annual bonus target (subject to plan eligibility and other requirements).
Compensation forexempt, non-sales rolesmay also include variable compensation, i.e., annual bonus target and long-term incentives (subject to plan eligibility and other requirements).
For MA positions: It is unlawful to require or administer a lie detector test for employment. Violators are subject to criminal penalties and civil liability.
Please be advised that certain US based positions, including without limitation field sales and service positions that call on hospitals and/or health care centers, require acceptable proof of COVID-19 vaccination status. Candidates will be notified during the interview and selection process if the role(s) for which they have applied require proof of vaccination as a condition of employment. Boston Scientific continues to evaluate its policies and protocols regarding the COVID-19 vaccine and will comply with all applicable state and federal law and healthcare credentialing requirements. As employees of the Company, you will be expected to meet the ongoing requirements for your roles, including any new requirements, should the Company’s policies or protocols change with regard to COVID-19 vaccination.
Among other requirements, Boston Scientific maintains specific prohibited substance test requirements for safety-sensitive positions. This role is deemed safety-sensitive and, as such, candidates will be subject to a prohibited substance test as a requirement. The goal of the prohibited substance testing is to increase workplace safety in compliance with the applicable law.
These jobs might be a good fit
