Senior Director, Enterprise Risk

General information Job Posting Title Senior Director, Enterprise Risk & Assurance Date Thursday, December 4, 2025 City Remote Country United States Working time Full-time Description & Requirements The Senior Director, Enterprise Risk & Assurance (ERA) is responsible for leading cross-functional Program efforts under the Office of the Chief Digital and Information Officer (OCDIO). The Senior. Director, ERA will drive needed outcomes relating to assurance, compliance, governance, privacy, risk, and security under the ERA department tied directly to Maximus’ growth and pipeline opportunities. Under the leadership of the Sr. Dir, ERA, the ERA will provide continuous monitoring, maintenance, audit, and surveillance.This is a remote position.  Essential Duties and Responsibilities:- Provide strategic oversight and establish governance frameworks for delivery and auditing programs, ensuring compliance with CMMC and related federal standards across all enterprise operations.- Establish and oversee strategic compliance frameworks for contracts and programs; lead enterprise audit and assurance initiatives to influence senior leadership decisions.- Develop and implement enterprise-level governance checkpoints to the capture, bid, and technology readiness review process to ensure strategic alignment with federal standards and corporate objectives (e.g., CMMC, DFARS, HSAR, NIST SP 800 series).- Create and champion an enterprise-wide governance model for data security and contractual compliance, influencing organizational policy and strategic direction.- Lead a cross-functional team that will address current and pending compliance, governance, and risk management requirements to strengthen customer trust.- Direct the development of enterprise risk mitigation strategies and action plans for security, data governance, and legal compliance.- Provide strategic oversight to ensure all proposed solutions meet compliance, security, and functional standards; influence bid strategy at the executive level.- Serve as a key member of the senior leadership steering committee; drive strategic decisions and foster enterprise collaboration across OCDIO, Legal, Finance, Audit, and Federal Operations. Job-Specific Essential Duties and Responsibilities:- Functions as an ERA department leader for programs covering assurance, compliance, governance, privacy, risk, and security addressing concerns that directly impact the organization financially- Establishes and implements tactical and operational plans for the ERA department (functionally & operationally).- Establishes mid - to long-term ERA-related strategies to achieve business results (e.g., organic growth, maintained pipeline access), including substantial development of new processes, standards, and operational plans.- Improves ERA systems and processes leveraging GRC operationalization through professional experience and best practice in the Global/Federal/State/Local marketplace to improve the competitive position of Maximus.- Applies broad consideration of constraints, factors, and variables that impact areas and people across Maximus and its’ partners.- Analyzes and solves complex and multi - dimensional problems and previously unresolved challenges / issues related to ERA.- Breaks down siloes and removes barriers and obstacles within the organization to achieve ERA objectives relating to Maximus’ growth and competitive advantage goals.- Cultivates and maintains relationships with internal and external parties including leadership, customers, and vendors.- Provides ongoing strategic and tactical communications aligned with the Maximus and OCDIO strategic roadmaps.- Ensures consensus on compliant, functional, and secure solutions supporting ongoing growth- Drives ERA operationalized outcomes through negotiation, compromise, and consensus amongst stakeholders.- Leads individuals (both inside & outside of their direct reporting chain) with a representative workforce leveraging their strengths and expertise while driving individual accountability and effort transparency.- Develops and maintains mid to long-term plans assuring, operationalizing, and optimizing resources (both people & process) for assurance, compliance, governance, privacy, risk, and security. Minimum Requirements - Bachelor's degree in relevant field of study and 12+ years of relevant professional experience required. Job-Specific Minimum Requirements:- 12+ years’ leadership experience leading people, teams, programs, and departments.- 12+ years’ experience in assuring and operationalizing compliance: Assurance / Trust, Audits / Assessments, FedSec, Contracts/RFPs, Privacy / Data Protection.- 12+ years’ experience in assuring and operationalizing governance: Artificial Intelligence (AI), Business Continuity and Resiliency (BC&R), Data, and Process.- 12+ years’ experience in assuring and operationalizing risk: DevSecOps / Software Assurance (SwA), Enterprise Risk Management (ERM), Reference Architecture, Supply Chain.- 12+ years’ experience in assuring and operationalizing privacy and security (data protection) requirements across the enterprise.Preferred Skills and Qualifications: Master’s Degree, and/or Ph.D. in related field.Desired Certifications:- Assurance (CMMC): CCP (CAICO)- Auditing: CISA (ISACA)- AI Compliance: AIGP (IAPP)- Compliance: CGRC (ISC2)- Governance (Security): CCISO (EC-Council)- Governance (Process): CSSBB (ASQE)- Governance (IT): CGEIT (ISACA)- Governance (IT Services): ITIL v4 Foundations (Axelos)- Privacy (Healthcare): CIPT (IAPP), HCISPP (ISC2)- Project Management: PMP (PMI)- Risk Management: CRISC (ISACA)- Security (Architecture): ISSAP (ISC2)- Security (Cloud): CCSK (CSA), CCSP (ISC2)- Security (Engineering): ISSEP (ISC2)- Security (Management): CISM (ISACA) or CISSP or ISSMP (ISC2)- Security (Physical): CPP (ASIS)- Security (Software Development): CSSLP (ISC2)- Systems Engineering: CSEP (INCOSE)#techjobs #veteransPage