Senior Director, Enterprise Risk

Description & Requirements

The Senior Director, Enterprise Risk & Assurance (ERA) is responsible for leading cross-functional Program efforts under the Office of the Chief Digital and Information Officer (OCDIO). The Senior. Director, ERA will drive needed outcomes relating to assurance, compliance, governance, privacy, risk, and security under the ERA department tied directly to Maximus' growth and pipeline opportunities. Under the leadership of the Sr. Dir, ERA, the ERA will provide continuous monitoring, maintenance, audit, and surveillance.

This is a remote position.

Essential Duties and Responsibilities:

• Provide strategic oversight and establish governance frameworks for delivery and auditing programs, ensuring compliance with CMMC and related federal standards across all enterprise operations.
• Establish and oversee strategic compliance frameworks for contracts and programs; lead enterprise audit and assurance initiatives to influence senior leadership decisions.
• Develop and implement enterprise-level governance checkpoints to the capture, bid, and technology readiness review process to ensure strategic alignment with federal standards and corporate objectives (e.g., CMMC, DFARS, HSAR, NIST SP 800 series).
• Create and champion an enterprise-wide governance model for data security and contractual compliance, influencing organizational policy and strategic direction.
• Lead a cross-functional team that will address current and pending compliance, governance, and risk management requirements to strengthen customer trust.
• Direct the development of enterprise risk mitigation strategies and action plans for security, data governance, and legal compliance.
• Provide strategic oversight to ensure all proposed solutions meet compliance, security, and functional standards; influence bid strategy at the executive level.
• Serve as a key member of the senior leadership steering committee; drive strategic decisions and foster enterprise collaboration across OCDIO, Legal, Finance, Audit, and Federal Operations.

Job-Specific Essential Duties and Responsibilities:

• Functions as an ERA department leader for programs covering assurance, compliance, governance, privacy, risk, and security addressing concerns that directly impact the organization financially

• Establishes and implements tactical and operational plans for the ERA department (functionally & operationally).

• Establishes mid - to long-term ERA-related strategies to achieve business results (e.g., organic growth, maintained pipeline access), including substantial development of new processes, standards, and operational plans.

• Improves ERA systems and processes leveraging GRC operationalization through professional experience and best practice in the Global/Federal/State/Local marketplace to improve the competitive position of Maximus.

• Applies broad consideration of constraints, factors, and variables that impact areas and people across Maximus and its' partners.

• Analyzes and solves complex and multi - dimensional problems and previously unresolved challenges / issues related to ERA.

• Breaks down siloes and removes barriers and obstacles within the organization to achieve ERA objectives relating to Maximus' growth and competitive advantage goals.

• Cultivates and maintains relationships with internal and external parties including leadership, customers, and vendors.
• Provides ongoing strategic and tactical communications aligned with the Maximus and OCDIO strategic roadmaps.
• Ensures consensus on compliant, functional, and secure solutions supporting ongoing growth
• Drives ERA operationalized outcomes through negotiation, compromise, and consensus amongst stakeholders.
• Leads individuals (both inside & outside of their direct reporting chain) with a representative workforce leveraging their strengths and expertise while driving individual accountability and effort transparency.
• Develops and maintains mid to long-term plans assuring, operationalizing, and optimizing resources (both people & process) for assurance, compliance, governance, privacy, risk, and security.

Minimum Requirements

• Bachelor's degree in relevant field of study and 12+ years of relevant professional experience required.

Job-Specific Minimum Requirements:

- 12+ years' leadership experience leading people, teams, programs, and departments.

• 12 + years' experience in assuring and operationalizing compliance: Assurance / Trust, Audits / Assessments, FedSec, Contracts/RFPs, Privacy / Data Protection.
• 12 + years' experience in assuring and operationalizing governance: Artificial Intelligence (AI), Business Continuity and Resiliency (BC&R), Data, and Process.
• 12 + years' experience in assuring and operationalizing risk: DevSecOps / Software Assurance (SwA), Enterprise Risk Management (ERM), Reference Architecture, Supply Chain.
• 12 + years' experience in assuring and operationalizing privacy and security (data protection) requirements across the enterprise.

Preferred Skills and Qualifications:

Master's Degree, and/or Ph.D. in related field.

Desired Certifications:

• Assurance (CMMC): CCP (CAICO)
• Auditing: CISA (ISACA)
• AI Compliance: AIGP (IAPP)
• Compliance: CGRC (ISC2)
• Governance (Security): CCISO (EC-Council)
• Governance (Process): CSSBB (ASQE)
• Governance (IT): CGEIT (ISACA)
• Governance (IT Services): ITIL v4 Foundations (Axelos)
• Privacy (Healthcare): CIPT (IAPP), HCISPP (ISC2)
• Project Management: PMP (PMI)
• Risk Management: CRISC (ISACA)
• Security (Architecture): ISSAP (ISC2)
• Security (Cloud): CCSK (CSA), CCSP (ISC2)
• Security (Engineering): ISSEP (ISC2)
• Security (Management): CISM (ISACA) or CISSP or ISSMP (ISC2)
• Security (Physical): CPP (ASIS)
• Security (Software Development): CSSLP (ISC2)
• Systems Engineering: CSEP (INCOSE)

EEO Statement

Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics.

Pay Transparency

Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances.

Accommodations

Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at .