Workday · 4 hours ago
IT Risk Principal, BT Risk Management
USA, GA, Atlanta
Full-time
Hybrid
Senior Level, Lead/Staff
$155K/yr - $233K/yr
12+ years expWorkday is a Fortune 500 company and a leading AI platform focused on managing people, money, and agents. They are seeking an IT Risk Principal to lead the establishment and maturation of a comprehensive BT Risk Management Function, ensuring technology security, compliance, and resilience across the organization.
Artificial Intelligence (AI)Cloud ComputingEnterprise SoftwareHuman ResourcesSaaSSoftware
Responsibilities
Design and Formalize the BT Risk Management Framework: Lead the design and development of the new, formal, and comprehensive BT Risk Management Program, clarifying roles, responsibilities, and a standardized framework for risk buy down prioritization
Establish the BT GRC Center of Excellence (CoE): Collaborate cross-functionally to build the foundation of a federated GRC model, establishing a BT Center of Excellence (CoE) that promotes risk awareness, standardizes methodologies, and supports proactive risk management across BT
Drive Compliance and Policy Enhancement: Review and enhance the BT compliance strategy, including controls and procedures, with regard to industry trends and upcoming regulatory activity, ensuring BT maintains its commitment to running secure and reliable systems
Lead Risk & Control Analysis: Work with business units and stakeholders, including Security, Internal Audit, BT, and Compliance, to formally assess security issues/gaps and identify potential operational risks
Manage Remediation & Follow-Up: Clearly communicate the impact of security issues and gaps to business management and agree on precise remediation actions and timelines. Manage follow-up programs to ensure timely completion of all Management Action Plans
Project Leadership: Lead a project to establish and perform a risk assessment process for BT technology. Lead ongoing projects to address GRC-related findings, demonstrating immediate value and embedding a culture of proactive risk management
Cultivate Strategic Partnerships: Build and maintain strong, effective partnerships with BT leaders and cross-functional partners to foster a collaborative and supportive environment. This is essential to drive the collective objective of "Doing Things Right"
Lead Change Management: Lead change management efforts to overcome resistance and drive adoption of new security behaviors and risk processes across the organization, simplifying the path to compliance
Establish Outcome-Driven Metrics (ODMs): Define, implement, and track ODMs to measure the effectiveness of risk management, compliance, and control activities
Refine Program via Data-Driven Insights: Continuously refine initiatives based on organizational feedback and data-driven insights from metrics to ensure the BT Risk Management program maintains alignment with strategic objectives
Qualification
Required
12+ years of experience in Technology Risk Management, or Governance and Compliance roles, preferably within a large, global enterprise or technology company
12+ years experience in GRC, leading GRC initiatives, developing and maintaining GRC frameworks, and ensuring organizational compliance with applicable laws and regulations
Established track record of designing, developing, and successfully launching GRC programs
Deep technical understanding of cloud security, IT operations, and modern development practices (DevSecOps)
Exceptional leadership, program management, and communication skills, with the ability to influence senior leaders across technical and non-technical domains
Expert-level understanding of Audits Compliance, organizational audit strategies and compliance programs
Deep and strategic knowledge of Cyber Security Governance frameworks and enterprise-wide cyber security governance programs
Bachelor's degree in a relevant discipline such as Business Administration, Information Security
Preferred
A track record of acting as a thought leader in the technology or security space, including presenting at industry events, publishing articles, or influencing key industry trends
AI/ML Knowledge: Familiarity with the unique risks and governance challenges associated with emerging technologies, particularly Artificial Intelligence and Machine Learning
Relevant certifications (e.g., CRISC, CISM, CISA, CISSP) are a plus
Master's degree preferred
Benefits
Workday Bonus Plan
Annual refresh stock grants
Company
Workday
Workday provides SaaS-based enterprise solutions for a company's human resources and financial management activities.
10001+ employees
H1B Sponsorship
Workday has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (331)
2024 (388)
2023 (262)
2022 (503)
2021 (290)
2020 (229)
Funding
Current Stage
Public CompanyTotal Funding
$2.23BKey Investors
Elliott Management Corp.New Enterprise AssociatesGreylock
2025-09-16Post Ipo Equity· $2B
2012-10-12IPO
2011-10-24Series F· $85M
Leadership Team
Aneel Bhusri
CEO and Co-Founder
Peter Bailis
Chief Technology Officer
Recent News
Morningstar.com
2026-01-20
2026-01-20
Company data provided by crunchbase