Sr Manager Cybersecurity Risk Job at Dayforce in Minneapolis

Join to apply for the Sr Manager Cybersecurity Risk role at Dayforce . Dayforce is a global human capital management (HCM) company headquartered in Toronto, Ontario, and Minneapolis, Minnesota, with operations across North America, Europe, Middle East, Africa (EMEA), and the Asia Pacific Japan (APJ) region. Our award‑winning Cloud HCM platform offers a unified solution database and continuous calculation engine, driving efficiency, productivity and compliance for the global workforce. Our brand promise – Makes Work Life Better™ – reflects our commitment to employees, customers, partners and communities globally. Position Description Focus on identifying and addressing quantifiable technical cybersecurity risk across the product & technology ecosystem. Responsible for design and implementation of a comprehensive risk elimination plan for global technology systems. Establish a well‑defined inventory of product and technology risks; develop key performance indicators that demonstrate progress. Lead an enterprise‑wide program that aims to aggressively update legacy ecosystems. Develop, implement, and oversee a comprehensive risk improvement program for Dayforce product and technology. Apply advanced knowledge of the entire product and application ecosystems, including SDLC, programming languages such as JAVA, Python; data‑management tools and processes including ServiceNow, database technologies such as SQL, Oracle and DB2; underpinning server and network infrastructure including cloud exposure on AWS and Azure; and associated cybersecurity defenses including firewalls, IPS, WAF, SIEM, CASB. Lead a globally dispersed team of 5‑10 professionals. Manage penetration testing, vulnerability identification program, and third‑party risk analysis process. Manage cross‑functional relationships across the enterprise (e.g., Product team executives, Legal, HR). Lead remediation programs for government customers (e.g., ConMon); address critical processes to ensure new risks are not introduced as the program evolves. Ensure the infrastructure build process continually meets CIS standards; reduce product and technology risk in a quantifiable way. Establish quarterly reporting metrics and maintain constant reporting cycles with executive leadership. Act as the subject‑matter expert for the program and spokesperson on new developments or significant advancements. Develop, implement, and lead cross‑functional initiatives to address product and technology risk in an expedited fashion. Lead the organization through discovery and change in real‑time on regular house‑cleaning conference bridges. Establish a program to create and maintain the enterprise’s product and technology architecture designs; includes current‑state and future‑state architectures that serve as baselines for mitigating risk. Perform independent audit and/or cybersecurity assessments to balance the risk of change with the risk of no change; make judgment calls to direct teams to move forward with aggressive change when required. Prioritize the need for stronger cybersecurity over system stability at times (e.g., resolving issues at the risk of outages). Implement product and technology solutions that underpin the requirements outlined in these programs. Work to support organizational compliance with applicable policies and standards including NIST CSF, NIST 800‑53, FAIR model, ISO, CIS, OWASP. Position permits telecommuting from anywhere in the U.S. Requirements Bachelor’s degree in Information Technology, Computer Science or related technical field and 7 years of experience in cybersecurity or related OR Master’s degree with 5 years of industry experience in cybersecurity. Must possess at least 7 years’ experience with a Bachelor’s degree or 5 years’ experience with a Master’s degree in each of the following: performing cybersecurity audits and/or assessments; security technologies including firewalls, IPS, WAF, SIEM, CASB; operating systems including Microsoft, Unix/Linux, and Mac OS; database technologies including SQL, Oracle and DB2; security vulnerability management tools; cloud knowledge and experience in Azure and AWS; DevSecOps pipelines – Jenkins, Git; software development lifecycle; governance, risk and compliance (GRC) concepts, processes and tools including ServiceNow, MetricStream; programming experience – JAVA, Python; data analytics tools and concepts – PowerBI. Must possess 3 years of experience with a Bachelor’s degree or 2 years of experience with a Master’s degree leading large global teams; managing relationships with business partners (e.g., HR, Legal) and executives (e.g., CISO, CTO). Salary Range $206,398 – $220,000 USD annually. The posted salary range represents the total compensation for this role. What’s In It For You Dayforce is fueled by the diversity of our talented employees. We are an equal‑opportunity employer and consider and embrace all individuals and what makes them unique. We believe our employees should be happy and healthy, with peace of mind and a sense of fulfillment. We encourage individuals to apply based on their passions. Dayforce encourages personal and professional growth. We offer excellent time‑away programs, comprehensive wellness initiatives and recognition through competitive pay and benefits. With a commitment to community impact, including volunteer days and our charity, Dayforce Cares, we provide opportunities for you to thrive both in your career and personal life. Our focus is not just on your job but on supporting you to be the best version of yourself. About the Salary Ranges Please note that the salary range mentioned in this job description should serve simply as a guide. The final compensation offered may vary based on a variety of factors, including bonuses and/or incentives, or a candidate’s experience, skills, budget and location. Our company is committed to providing a fair, equitable, and competitive package that reflects the value an individual brings to the organization. Fraudulent Recruiting Beware of fraudulent recruiting. Legitimate Dayforce contacts will use an @dayforce.com email address. We do not request money, checks, equipment orders, or sensitive personal data during the recruitment process. If you have been asked for any of the above, or believe you have been contacted by someone posing as a Dayforce employee, please refer to our fraudulent recruiting statement found at https://www.dayforce.com/be-aware-of-recruiting-fraud. Dayforce actively monitors all job applications to ensure authenticity. Submissions determined to be fraudulent or misleading will be declined from the recruitment process. Seniority Level Mid‑Senior level Employment Type Full‑time Job Function Information Technology Industries: Software Development Dayforce encourages personal and professional growth. Referrals increase your chances of interviewing at Dayforce by 2x. #J-18808-Ljbffr