... an AI governance policy covering acceptable use of AI tools, agentic system deployments, and ... third-party risk management program, including vendor tiering, security assessments, and ...
... an AI governance policy covering acceptable use of AI tools, agentic system deployments, and ... third-party risk management program, including vendor tiering, security assessments, and ...
Payments Risk Assessment Specialist
San Francisco, CA ยท Remote
$80 - $180/hr
... AI systems . Qualifications Must-Have * 5+ years of experience in payments risk assessment, bank operational risk, risk and control self-assessment (RCSA) , issue management, risk and controls ...
Quick apply
Payments Risk Assessment Specialist
San Francisco, CA ยท Remote
$80 - $180/hr
... AI systems . Qualifications Must-Have * 5+ years of experience in payments risk assessment, bank operational risk, risk and control self-assessment (RCSA) , issue management, risk and controls ...
Drive adoption of AI/ML-driven risk capabilities, including model lifecycle management, explainability, and feedback loops tied to business KPIs. * Champion modern, modular, and extensible ...
Drive adoption of AI/ML-driven risk capabilities, including model lifecycle management, explainability, and feedback loops tied to business KPIs. * Champion modern, modular, and extensible ...
Drive adoption of AI/ML-driven risk capabilities, including model lifecycle management, explainability, and feedback loops tied to business KPIs. * Champion modern, modular, and extensible ...
Drive adoption of AI/ML-driven risk capabilities, including model lifecycle management, explainability, and feedback loops tied to business KPIs. * Champion modern, modular, and extensible ...
Drive adoption of AI/ML-driven risk capabilities, including model lifecycle management, explainability, and feedback loops tied to business KPIs. * Champion modern, modular, and extensible ...
Drive adoption of AI/ML-driven risk capabilities, including model lifecycle management, explainability, and feedback loops tied to business KPIs. * Champion modern, modular, and extensible ...
This role is designed for a hands-on governance leader with deep expertise in AI governance, data governance, risk management, and regulatory compliance within highly regulated industries. The ideal ...
This role is designed for a hands-on governance leader with deep expertise in AI governance, data governance, risk management, and regulatory compliance within highly regulated industries. The ideal ...
AI Governance
Pasadena, CA ยท On-site
$130K/yr
This role is designed for a hands-on governance leader with deep expertise in AI governance, data governance, risk management, and regulatory compliance within highly regulated industries. The ideal ...
AI Governance
Pasadena, CA ยท On-site
$130K/yr
This role is designed for a hands-on governance leader with deep expertise in AI governance, data governance, risk management, and regulatory compliance within highly regulated industries. The ideal ...
This role is designed for a hands-on governance leader with deep expertise in AI governance, data governance, risk management, and regulatory compliance within highly regulated industries. The ideal ...
This role is designed for a hands-on governance leader with deep expertise in AI governance, data governance, risk management, and regulatory compliance within highly regulated industries. The ideal ...
AI Governance
Pasadena, CA ยท On-site
$130K/yr
This role is designed for a hands-on governance leader with deep expertise in AI governance, data governance, risk management, and regulatory compliance within highly regulated industries. The ideal ...
AI Governance
Pasadena, CA ยท On-site
$130K/yr
This role is designed for a hands-on governance leader with deep expertise in AI governance, data governance, risk management, and regulatory compliance within highly regulated industries. The ideal ...
AI Governance
Pasadena, CA ยท On-site
This role is designed for a hands-on governance leader with deep expertise in AI governance, data governance, risk management, and regulatory compliance within highly regulated industries. The ideal ...
AI Governance
Pasadena, CA ยท On-site
This role is designed for a hands-on governance leader with deep expertise in AI governance, data governance, risk management, and regulatory compliance within highly regulated industries. The ideal ...
Manager 2, Fraud and Risk
Mountain View, CA ยท On-site
As AI-assisted fraud continues to evolve, you'll play a critical role in developing and executing short and long-term plans to strengthen our defenses across the consumer finance space - anticipating ...
New
Manager 2, Fraud and Risk
Mountain View, CA ยท On-site
As AI-assisted fraud continues to evolve, you'll play a critical role in developing and executing short and long-term plans to strengthen our defenses across the consumer finance space - anticipating ...
New
Lead fraud analytics and oversee detection systems and AI-driven tools to identify emerging patterns while minimizing false positives and customer friction. * Ensure fraud risk management is embedded ...
Lead fraud analytics and oversee detection systems and AI-driven tools to identify emerging patterns while minimizing false positives and customer friction. * Ensure fraud risk management is embedded ...
Sr. Manager Risk & Governance
San Jose, CA ยท On-site
Manage Adobe's Security Management framework, integrate industry-leading risk measurement models ... Transform the security risk program with qualitative and quantitative insights, using AI, data ...
Sr. Manager Risk & Governance
San Jose, CA ยท On-site
Manage Adobe's Security Management framework, integrate industry-leading risk measurement models ... Transform the security risk program with qualitative and quantitative insights, using AI, data ...
Manager, Third-Party Risk Management (GTM)
San Francisco, CA ยท On-site
$162K - $180K/yr
We're hiring a Third Party Risk Manager (GTM) to help scale customer risk operations, KYC/KYB ... Explore and deploy AI tools to enhance and streamline OpenAI's trade compliance efforts. You might ...
Manager, Third-Party Risk Management (GTM)
San Francisco, CA ยท On-site
$162K - $180K/yr
We're hiring a Third Party Risk Manager (GTM) to help scale customer risk operations, KYC/KYB ... Explore and deploy AI tools to enhance and streamline OpenAI's trade compliance efforts. You might ...
Sr. Manager Risk & Governance
San Jose, CA ยท On-site
Manage Adobe's Security Management framework, integrate industry-leading risk measurement models ... Transform the security risk program with qualitative and quantitative insights, using AI, data ...
Sr. Manager Risk & Governance
San Jose, CA ยท On-site
Manage Adobe's Security Management framework, integrate industry-leading risk measurement models ... Transform the security risk program with qualitative and quantitative insights, using AI, data ...
Incident Response and Risk Management * Together with Privacy Legal lead, manage privacy-related ... AI and Data Governance Development * Design, implement, and manage enterprise AI and data ...
Incident Response and Risk Management * Together with Privacy Legal lead, manage privacy-related ... AI and Data Governance Development * Design, implement, and manage enterprise AI and data ...
Lead fraud analytics and oversee detection systems and AI-driven tools to identify emerging patterns while minimizing false positives and customer friction. * Ensure fraud risk management is embedded ...
Lead fraud analytics and oversee detection systems and AI-driven tools to identify emerging patterns while minimizing false positives and customer friction. * Ensure fraud risk management is embedded ...
Lead fraud analytics and oversee detection systems and AI-driven tools to identify emerging patterns while minimizing false positives and customer friction. * Ensure fraud risk management is embedded ...
Lead fraud analytics and oversee detection systems and AI-driven tools to identify emerging patterns while minimizing false positives and customer friction. * Ensure fraud risk management is embedded ...
Design and implement new features, enhancements, and bug fixes for DTEX's IRM and AI Risk Management products. * Manage and fine-tune large-scale OpenSearch clusters with terabytes of data. * Apply ...
Quick apply
Design and implement new features, enhancements, and bug fixes for DTEX's IRM and AI Risk Management products. * Manage and fine-tune large-scale OpenSearch clusters with terabytes of data. * Apply ...
Lead fraud analytics and oversee detection systems and AI-driven tools to identify emerging patterns while minimizing false positives and customer friction. * Ensure fraud risk management is embedded ...
Lead fraud analytics and oversee detection systems and AI-driven tools to identify emerging patterns while minimizing false positives and customer friction. * Ensure fraud risk management is embedded ...
Ai Risk Manager information
What is the difference between Ai Risk Manager vs Data Scientist?
| Aspect | Ai Risk Manager | Data Scientist |
|---|---|---|
| Required Credentials | Typically requires a degree in risk management, AI, or related fields; certifications in AI or risk management are common | Requires a degree in computer science, statistics, or related fields; certifications in data analysis or machine learning are common |
| Work Environment | Works in financial, insurance, or tech industries focusing on AI risk assessment and mitigation | Works across industries analyzing data, building models, and deriving insights |
| Employer & Industry Usage | Used by organizations managing AI deployment risks, especially in regulated sectors | Used by companies developing AI solutions, data-driven products, and analytics teams |
The main difference is that an Ai Risk Manager focuses on identifying and mitigating risks associated with AI systems, often requiring knowledge of risk management and AI ethics. In contrast, a Data Scientist primarily analyzes data and builds models to extract insights, with less emphasis on risk mitigation. Both roles may overlap in AI projects but serve distinct functions within organizations.
What are popular job titles related to Ai Risk Manager jobs in California? For Ai Risk Manager jobs in California, the most frequently searched job titles are:
What job categories do people searching Ai Risk Manager jobs in California look for? The top searched job categories for Ai Risk Manager jobs in California are:
What cities in California are hiring for Ai Risk Manager jobs? Cities in California with the most Ai Risk Manager job openings:
Full-time
Posted 6 days ago
Job description
Job Summary:
Andersen is a leading professional services organization specializing in Tax, Valuation, and Business Advisory. The Senior Manager, Governance Risk & Compliance (GRC) will be responsible for building and overseeing the firmโs governance, risk, and compliance program, including leading certification initiatives and developing risk management policies.
Responsibilities:
โข Lead end-to-end certification programs for SOC 2 Type II and ISO 27001 simultaneously, from scoping through audit closure
โข Define control environments, manage evidence collection, and serve as the primary liaison with external auditors and certification bodies
โข Administer the firmโs compliance automation platform and maintain continuous control monitoring and audit readiness
โข Manage both programs through their full lifecycle, including observation periods, annual renewals, surveillance audits, and ISO recertification cycles
โข Develop and maintain a comprehensive information security policy suite aligned to SOC 2, ISO 27001, and applicable regulatory requirements, with defined processes for ownership, annual review, and exception management
โข Build and maintain an enterprise risk register using structured methodology (e.g., ISO 27005, NIST CSF) and lead annual and ad hoc risk assessments
โข Communicate risk posture and policy compliance to the CISO and, where appropriate, to firm leadership and clients
โข Develop and maintain an AI governance policy covering acceptable use of AI tools, agentic system deployments, and citizen developer activity, ensuring alignment with the firmโs risk appetite and applicable regulatory requirements
โข Serve as the firmโs subject matter expert on GDPR, CCPA, and other applicable privacy and data protection requirements
โข Monitor evolving regulatory obligations globally and translate them into actionable compliance programs
โข Partner with Legal and Operations on data subject requests, privacy impact assessments, and breach notification procedures
โข Advise the CISO on emerging compliance obligations relevant to a global professional services firm
โข Design and operate the firmโs third-party risk management program, including vendor tiering, security assessments, and remediation tracking
โข Manage the firmโs response program for client security questionnaires and due diligence requests
โข Maintain a library of certification-aligned response language and track contractual security commitments across vendors and clients
โข Own the firmโs security awareness program, including curriculum design, platform administration, and completion tracking
โข Develop role-specific content for high-risk populations and keep training current against the evolving threat landscape
โข Develop and maintain training content addressing AI-related threats and responsible AI use, including risks from unsanctioned AI tools, citizen developer activity, and AI agents operating with access to firm data and systems
โข Track and report program effectiveness to the CISO on a regular cadence
โข Build collaborative relationships across Legal, IT, Operations, Audit, and client-facing teams to embed security and compliance into firm workflows
โข Represent the information security function in client-facing conversations regarding the firmโs security posture
Qualifications:
Required:
โข 8โ12 years of progressive experience in information security GRC, with a demonstrated record of building programs, not just maintaining them
โข Bachelorโs degree in Information Security, Computer Science, Risk Analysis, or a related field
โข Proven track record achieving and sustaining both SOC 2 Type II and ISO 27001 certifications, including scoping, control design, ISMS development, and auditor relationship management
โข Operational knowledge of GDPR and CCPA, including hands-on implementation of compliance obligations
โข Experience designing and operating third-party risk management programs
โข Experience managing client security due diligence and responding to security questionnaires at scale
โข Ability to build defensible, auditable policy frameworks and maintain structured enterprise risk registers
โข Proficiency with GRC or compliance automation platforms
โข Strong written and verbal communication skills, with the ability to translate technical risk into business language for non-technical audiences
โข Understanding of the security and governance risks introduced by AI systems, including large language models, AI agents, and citizen developer platforms, and the ability to translate those risks into policy, training content, and risk register entries
Preferred:
โข Relevant certification such as CISA, CISM, or CRISC
โข Background in professional services or consulting, where security posture is tied directly to client trust
โข Familiarity with international privacy frameworks such as NDPA or DPDPA
โข Working knowledge of the NIST Cybersecurity Framework as a risk management overlay
โข Familiarity with AI governance frameworks such as NIST AI RMF, the EU AI Act, or ISO 42001, and awareness of emerging regulatory obligations affecting AI use in global professional services environments
โข Experience managing or mentoring junior GRC staff
Company:
Andersen is the founding member of Andersen Global, an international association of legally separate, independent member firms with more than 50,000 professionals worldwide, over 3,000 global partners, and a presence in over 1,000 locations in more than 180 countries worldwide. Founded in , the company is headquartered in San Francisco, CA, US, , with a team of 1001-5000 employees. The company is currently Late Stage.
Andersen is a leading professional services organization specializing in Tax, Valuation, and Business Advisory. The Senior Manager, Governance Risk & Compliance (GRC) will be responsible for building and overseeing the firmโs governance, risk, and compliance program, including leading certification initiatives and developing risk management policies.
Responsibilities:
โข Lead end-to-end certification programs for SOC 2 Type II and ISO 27001 simultaneously, from scoping through audit closure
โข Define control environments, manage evidence collection, and serve as the primary liaison with external auditors and certification bodies
โข Administer the firmโs compliance automation platform and maintain continuous control monitoring and audit readiness
โข Manage both programs through their full lifecycle, including observation periods, annual renewals, surveillance audits, and ISO recertification cycles
โข Develop and maintain a comprehensive information security policy suite aligned to SOC 2, ISO 27001, and applicable regulatory requirements, with defined processes for ownership, annual review, and exception management
โข Build and maintain an enterprise risk register using structured methodology (e.g., ISO 27005, NIST CSF) and lead annual and ad hoc risk assessments
โข Communicate risk posture and policy compliance to the CISO and, where appropriate, to firm leadership and clients
โข Develop and maintain an AI governance policy covering acceptable use of AI tools, agentic system deployments, and citizen developer activity, ensuring alignment with the firmโs risk appetite and applicable regulatory requirements
โข Serve as the firmโs subject matter expert on GDPR, CCPA, and other applicable privacy and data protection requirements
โข Monitor evolving regulatory obligations globally and translate them into actionable compliance programs
โข Partner with Legal and Operations on data subject requests, privacy impact assessments, and breach notification procedures
โข Advise the CISO on emerging compliance obligations relevant to a global professional services firm
โข Design and operate the firmโs third-party risk management program, including vendor tiering, security assessments, and remediation tracking
โข Manage the firmโs response program for client security questionnaires and due diligence requests
โข Maintain a library of certification-aligned response language and track contractual security commitments across vendors and clients
โข Own the firmโs security awareness program, including curriculum design, platform administration, and completion tracking
โข Develop role-specific content for high-risk populations and keep training current against the evolving threat landscape
โข Develop and maintain training content addressing AI-related threats and responsible AI use, including risks from unsanctioned AI tools, citizen developer activity, and AI agents operating with access to firm data and systems
โข Track and report program effectiveness to the CISO on a regular cadence
โข Build collaborative relationships across Legal, IT, Operations, Audit, and client-facing teams to embed security and compliance into firm workflows
โข Represent the information security function in client-facing conversations regarding the firmโs security posture
Qualifications:
Required:
โข 8โ12 years of progressive experience in information security GRC, with a demonstrated record of building programs, not just maintaining them
โข Bachelorโs degree in Information Security, Computer Science, Risk Analysis, or a related field
โข Proven track record achieving and sustaining both SOC 2 Type II and ISO 27001 certifications, including scoping, control design, ISMS development, and auditor relationship management
โข Operational knowledge of GDPR and CCPA, including hands-on implementation of compliance obligations
โข Experience designing and operating third-party risk management programs
โข Experience managing client security due diligence and responding to security questionnaires at scale
โข Ability to build defensible, auditable policy frameworks and maintain structured enterprise risk registers
โข Proficiency with GRC or compliance automation platforms
โข Strong written and verbal communication skills, with the ability to translate technical risk into business language for non-technical audiences
โข Understanding of the security and governance risks introduced by AI systems, including large language models, AI agents, and citizen developer platforms, and the ability to translate those risks into policy, training content, and risk register entries
Preferred:
โข Relevant certification such as CISA, CISM, or CRISC
โข Background in professional services or consulting, where security posture is tied directly to client trust
โข Familiarity with international privacy frameworks such as NDPA or DPDPA
โข Working knowledge of the NIST Cybersecurity Framework as a risk management overlay
โข Familiarity with AI governance frameworks such as NIST AI RMF, the EU AI Act, or ISO 42001, and awareness of emerging regulatory obligations affecting AI use in global professional services environments
โข Experience managing or mentoring junior GRC staff
Company:
Andersen is the founding member of Andersen Global, an international association of legally separate, independent member firms with more than 50,000 professionals worldwide, over 3,000 global partners, and a presence in over 1,000 locations in more than 180 countries worldwide. Founded in , the company is headquartered in San Francisco, CA, US, , with a team of 1001-5000 employees. The company is currently Late Stage.