Key Facts

Remote From:

Anywhere

Fixed term

English

Hard Skills

Other Skills

•
Knowledge Transfer
•
Training And Development

Numentica LLC

About Numentica LLC

Numentica LLC, founded in 2008, is a team of software experts who have built enterprise software at fortune 500 companies and helped them achieve success. We have worked across industries such as ECommerce, Finance, Marketing and Supply Chain Automation - each of these industries have unique needs, but they share one particular challenge: They need to manage large amounts of structured and unstructured data. Numentica's team specializes in helping companies wrangle big data and making sense of it. We are a niche consulting firm specializing in software product development, business intelligence, and data management. We believe that our success is built on the success of our clients, and we do what it takes to give our clients a sustained competitive edge through value and innovation. By formalizing our experience into innovative tools and frameworks, we help our customers accelerate time-to-market, improve the quality of products and reduce costs. Our unique culture promotes excellence and drives innovation through trust, pride and teamwork. Some key differentiators that help us build enduring relationships with our clients include Mindshare: Our engagement model, partnership mindset and organization structure ensure that our customers get all the mindshare that they need, and more. Team stability: Our staff retention and longevity provides immense confidence to our customers that the investment they make in their teams with us shows excellent ROI. Service orientation: We never forget that we are in the software services business, an attitude that carries tremendous weight in our recruitment process. Our customers get teams that always go the extra mile to advance their businesses. Partnership mindset: As a company, we take a very long-term view to each and every relationship. We invest time and effort that we know is required for the relationship to mature.

Company type: SME

Founded: 2018

Company size: 201 - 500

Website LinkedIn See all jobs →

Job description

This is a remote position.

Key Responsibilities

Framework & Governance Design

Workflow Engineering: Define end-to-end governance workflows for risk identification, intake, validation, and mitigation.
Governance Structures: Establish clear roles and responsibilities (RACI) for risk owners, reviewers, and oversight bodies.
Escalation Logic: Design formal reporting and escalation processes for high-priority and accepted risks.

Stakeholder Engagement & Enablement

Cross-Functional Collaboration: Partner with Business, Technology, Security, and Audit functions to validate risk requirements.
Facilitation: Lead workshops to socialize the risk register and train stakeholders on new governance processes.
Onboarding: Support the initial migration and population of critical risks into the enterprise register.

Documentation & Sustainability

Audit Readiness: Produce high-quality documentation covering data definitions, scoring logic, and decision authorities.
Knowledge Transfer: Conduct formal training and handovers to internal security staff to ensure long-term framework sustainability.

Professional Deliverables

Enterprise Risk Register Framework: A standardized template and taxonomy.
Risk Scoring & Prioritization Model: Documented likelihood/impact scales and prioritization logic.
Operational Governance Model: Defined intake workflows and a roles/responsibilities matrix.
Initial Risk Population: A baseline register reflecting current cybersecurity and tech risk posture.
Final Operating Procedures: Consolidated guidance for ongoing, business-as-usual risk management.

Candidate Qualifications

Minimum Requirements:

8+ Years of direct experience in Risk Register Design and Framework development.
8+ Years of experience creating Risk Scoring and Prioritization Models.
8+ Years of experience defining Governance Processes and Workflows.
8+ Years of experience in Stakeholder Management and Enablement.
8+ Years of demonstrated expertise in technical writing, audit-ready documentation, and knowledge transfer.

Preferred Skills:

Professional certifications such as CRISC, CISM, CISSP, or CGEIT.
Deep understanding of industry frameworks (e.g., NIST 800-30, ISO 31000, COBIT).
Experience with GRC tool implementation (e.g., ServiceNow, Archer, OneTrust).