Risk Management Specialist / only W2

Job Title: Risk Management Specialist
Location: Austin , Texas ( 3 Days onsite 2 days remote)

Responsibilities include (but are not limited to):

• Evaluate, implement, and enhance enterprise and third-party risk management programs to align with organizational goals and standards.
• Configure risk tools, integrate with existing systems, and apply governance standards including TAC 202, TX-RAMP, and TCF.
• Prepare reports, define metrics, and communicate risk reduction strategies to assess and improve program effectiveness.

Minimum Candidate Characteristics:

• 6+ years of experience designing and deploying security platforms, analytics, and risk programs across federated governance environments.
• Skilled in coordinating interagency efforts and program reviews across diverse operational settings.
• Experience simplifying regulatory requirements and risk strategies for executive audiences and converting mandates (e.g., TAC 202, TX-RAMP) into actionable assessments.
• Perform advanced (senior-level) risk management work. Works under minimal supervision, with extensive latitude for the use of initiative and independent judgement. Resources at this level may independently perform the most complex risk management work and may:
• Evaluate and optimize risk prevention, reduction, retention, transfer, and control measures through program reviews and coordinated interagency risk management programs to ensure alignment with organizational goals.
• Lead in implementation and configuration of information security risk platform, integration with existing platforms, development of reporting and analytics capabilities, and alignment with governance standards and frameworks.
• Directly support the design, development, and evaluation of enterprise risk management and third-party risk programs and guidelines.
• Adapt Texas specific controls and frameworks (TCF, TAC 202, and TXRAMP) into standardized, established risk assessment ranking and prioritization rubrics.
• Apply expertise in information security risk reduction, measurement, and communication in support of procedures and milestones to measure the effectiveness and performance of risk management programs.
• Prepare technical and comprehensive reports, plans, and procedures for developing risk management programs, reviews, and inspections.
• Other Requirements:
• The individual s experience must be related to information security or cyber risk. We are not considering individuals with experience mostly or wholly in physical security.

Qualifications:
Minimum Requirements:
Candidates that do not meet or exceed the minimumstated requirements (skills/experience) will be displayed to customers but may not be chosen for this opportunity.