We’re obsessed with making hard work pay off, for our people, our customers, and the world around us. As a Fortune 500 company and a leading AI platform for managing people, money, and agents, we’re shaping the future of work so teams can reach their potential and focus on what matters most. The minute you join, you’ll feel it. Not just in the products we build, but in how we show up for each other. Our culture is rooted in integrity, empathy, and shared enthusiasm. We’re in this together, tackling big challenges with bold ideas and genuine care. We look for curious minds and courageous collaborators who bring sun-drenched optimism and drive. Whether you're building smarter solutions, supporting customers, or creating a space where everyone belongs, you’ll do meaningful work with Workmates who’ve got your back. In return, we’ll give you the trust to take risks, the tools to grow, the skills to develop and the support of a company invested in you for the long haul. So, if you want to inspire a brighter work day for everyone, including yourself, you’ve found a match in Workday, and we hope to be a match for you too. About the Team Workday’s Business Technology (BT) organization continues its mission to deliver unparalleled value to our business partners and customers. To support this mission, the BT Strategy & Operations team is responsible for developing the long-term vision for BT, setting goals and objectives, and ensuring that we have the right plans in place to move with speed at scale. The team collaborates closely with cross-functional teams, business partners, and executives to understand the needs and priorities of the business, and supports the development of strategies that will help BT meet those needs. Your work days are brighter here. We’re obsessed with making hard work pay off, for our people, our customers, and the world around us. As a Fortune 500 company and a leading AI platform for managing people, money, and agents, we’re shaping the future of work so teams can reach their potential and focus on what matters most. The minute you join, you’ll feel it. Not just in the products we build, but in how we show up for each other. Our culture is rooted in integrity, empathy, and shared enthusiasm. We’re in this together, tackling big challenges with bold ideas and genuine care. We look for curious minds and courageous collaborators who bring sun-drenched optimism and drive. Whether you're building smarter solutions, supporting customers, or creating a space where everyone belongs, you’ll do meaningful work with Workmates who’ve got your back. In return, we’ll give you the trust to take risks, the tools to grow, the skills to develop and the support of a company invested in you for the long haul. So, if you want to inspire a brighter work day for everyone, including yourself, you’ve found a match in Workday, and we hope to be a match for you too. About the Role The Sr. Director of BT Risk Management is a critical leadership role responsible for establishing and maturing a comprehensive risk management program within Workday's Business Technology (BT) organization. This role is a cornerstone of the BT Transformation initiative, aiming to drive consistency, clarity, and efficiency. You will report to the VP, BT Strategy & Operations and be a core member of the leadership team. The primary mission is to evolve BT from a reactive to a proactive and strategic risk-aware organization by clarifying roles and responsibilities, creating a standardized framework, and improving the visibility of operational risks across the enterprise. Key Responsibilities Program Leadership & Strategic Direction : Formally establish and lead a comprehensive risk management program for the BT organization. This includes the design and implementation of a federated Governance, Risk, and Compliance (GRC) model, establishing an advisory group to define and propagate standards, tools, and practices. Policy and Controls Management : Develop, implement, and monitor adherence to policies, procedures, controls, and training/awareness campaigns to ensure the protection of Workday systems and data, and to improve our overall security posture. Risk Assessment & Mitigation : Lead a standardized, comprehensive framework for identifying, assessing, and mitigating IT risks. This involves conducting security risk assessments, performing root cause analysis, and collaborating with internal teams to identify and evaluate risks and to implement procedures to eliminate, mitigate, or accept them. Compliance & Audit Coordination : Act as the primary liaison for all BT-related compliance and audit activities. Coordinate information security risk assessments, security compliance audits, cybersecurity and privacy audits, and ensure that processes and controls are operating effectively. Coordinate activities during customer, auditor, and regulatory inspections. Regulatory Frameworks : Ensure the BT organization's compliance with critical regulatory and industry-specific frameworks, including SOX, HIPAA, PCI DSS, and various international data privacy laws by establishing and monitoring relevant procedures and controls. Cross-Functional Partnership : Work closely with leaders across the BT organization and business functions to embed a culture of proactive risk management. Communication & Reporting : Provide clear, transparent reporting on the BT organization's risk posture to leadership and key stakeholders, ensuring decisions are made based on accurate information. Basic Qualifications 10+ years of experience in IT risk management, information security, or a related Governance, Risk, and Compliance (GRC) field. 5+ years of experience in Risk Management in leadership roles. 10+ years in design, implementation, and development of comprehensive IT risk management programs. Deep knowledge of cyber security governance frameworks (e.g., NIST, ISO 27001, COBIT) and a track record of implementing effective security policies, procedures, and controls. Demonstrated knowledge of information security principles and the ability to conduct security risk assessments, perform root cause analysis, and ensure compliance with regulatory frameworks such as SOX, HIPAA, and PCI DSS. Other Qualifications Exceptional communication skills with a proven ability to build and nurture relationships with diverse stakeholders, including business leaders and technical teams. Skilled at articulating complex technical risks to both technical and non-technical audiences and influencing change across the organization. Demonstrated ability to translate a strategic vision into a concrete plan, prioritizing tasks and resources based on urgency and business impact to ensure effective and efficient execution. About You Basic Qualifications 10+ years of experience in IT risk management, information security, or a related Governance, Risk, and Compliance (GRC) field. 5+ years of experience in Risk Management in leadership roles. 10+ years in design, implementation, and development of comprehensive IT risk management programs. Deep knowledge of cyber security governance frameworks (e.g., NIST, ISO 27001, COBIT) and a track record of implementing effective security policies, procedures, and controls. Demonstrated knowledge of information security principles and the ability to conduct security risk assessments, perform root cause analysis, and ensure compliance with regulatory frameworks such as SOX, HIPAA, and PCI DSS. Other Qualifications Exceptional communication skills with a proven ability to build and nurture relationships with diverse stakeholders, including business leaders and technical teams. Skilled at articulating complex technical risks to both technical and non-technical audiences and influencing change across the organization. Demonstrated ability to translate a strategic vision into a concrete plan, prioritizing tasks and resources based on urgency and business impact to ensure effective and efficient execution. Track record of thought leadership in technology or security space, including presentations at industry events, publications, or influencing industry trends. Experience in talent development, including mentoring and coaching junior team members and defining skills needed for a future-ready IT workforce. Familiarity with risks and governance challenges related to emerging technologies, particularly Artificial Intelligence and Machine Learning. Relevant certifications such as CISSP, CISM, or CRISC. Workday Pay Transparency Statement The annualized base salary ranges for the primary location and any additional locations are listed below. Workday pay ranges vary based on work location. This role may be eligible for the Workday Bonus Plan or role-specific commission/bonus, as well as annual stock grants. Recruiters can share more detail during the hiring process. Compensation offers are based on factors including geography, experience, skills, job duties, and business need. For more information regarding Workday’s benefits, please click here. Primary Location: USA.CA.Pleasanton Primary Location Base Pay Range: $240,300 USD - $360,500 USD Additional US Location(s) Base Pay Range: $202,900 USD - $360,500 USD Our Approach to Flexible Work With Flex Work, we’re combining in-person time and remote work. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. We allow flexible scheduling to suit business and personal needs, with the expectation to spend at least 50% of time each quarter in the office or in the field with customers, prospects, and partners (depending on role). Those in remote roles also have opportunities to come together in offices for important moments. Pursuant to applicable Fair Chance law, Workday will consider qualified applicants with arrest and conviction records. Workday is an Equal Opportunity Employer including individuals with disabilities and protected veterans. Are you being referred to one of our roles? If so, ask your Workday connection about our Employee Referral process! At Workday, we value candidates’ privacy and data security. Workday will never ask candidates to apply to jobs through non-Workday sites. Be aware of sites that may request data for a Workday posting that is not legitimate. We will never ask candidates to pay a recruiting fee or to pay for consulting or coaching services to apply for a job at Workday. About the company Workday, Inc., is an American on-demand financial management and human capital management software vendor. Notice Talentify is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status. Talentify provides reasonable accommodations to qualified applicants with disabilities, including disabled veterans. Request assistance at accessibility@talentify.io or 407-000-0000. Federal law requires every new hire to complete Form I-9 and present proof of identity and U.S. work eligibility. An Automated Employment Decision Tool (AEDT) will score your job-related skills and responses. Bias-audit & data-use details: www.talentify.io/bias-audit-report. NYC applicants may request an alternative process or accommodation at aedt@talentify.io or 407-000-0000.

#J-18808-Ljbffr