Senior Director, Risk Managment

Company Description

It all started in sunny San Diego, California in 2004 when a visionary engineer, Fred Luddy, saw the potential to transform how we work. Fast forward to today — ServiceNow stands as a global market leader, bringing innovative AI-enhanced technology to over 8,100 customers, including 85% of the Fortune 500®. Our intelligent cloud-based platform seamlessly connects people, systems, and processes to empower organizations to find smarter, faster, and better ways to work. But this is just the beginning of our journey. Join us as we pursue our purpose to make the world work better for everyone.

Job Description

We are seeking a dynamic and experienced Senior Director of Enterprise Risk Management to lead and evolve our global risk strategy across all lines of business. As a key member of the executive leadership team, you will oversee enterprise risk, including operational, strategic, technology, regulatory, and third-party risks, ensuring alignment with business goals in a fast-paced and highly regulated enterprise technology environment.

What you get to do in this role:

Enterprise Risk Leadership

• Lead the design, implementation, and continuous improvement of the Enterprise Risk Management (ERM) framework tailored to the specific needs of a global enterprise tech organization.
• Advise the C-Suite and Board on emerging risks, macro trends, and key enterprise risk indicators.

Technology & Cyber Risk Oversight

• Partner with Security, Engineering, Legal and Product teams to identify, assess, and mitigate risks tied to cybersecurity, AI governance, data privacy, SaaS infrastructure, and third-party integrations.
• Serve as Chair of the Governance, Risk and Compliance Operating Committee driving alignment between compliance, audit, and business unit risk assessments.

Strategic Risk Assessment

• Align risk strategies with the company’s business objectives, product roadmap, and global expansion efforts.
• Deliver scenario planning and stress testing for major initiatives.

Regulatory & Compliance Risk

• Ensure compliance with relevant regulations (e.g., SOX, GDPR, ISO 27001, SOC 2, FedRAMP, AI regulations) and work closely with leaders across all business units to monitor changes in the regulatory landscape.

Operational & Financial Risk

• Collaborate with Finance, IT, Security, HR, Legal, Product and Customer Success to evaluate risks across operations, contracts, security, insurance, people, and supply chain.

Board & Executive Reporting

• Prepare and present risk assessments and mitigation strategies to the Audit Committee and executive team; drive risk awareness at the board level.

Crisis Management & Business Continuity

• Oversee incident response planning, business continuity, and disaster recovery frameworks across global operations.

Third-Party & Vendor Risk

• Develop and maintain processes for assessing and monitoring vendor risks across security, compliance, and operational domains.

Qualifications

To be successful in this role you have:

• Experience in leveraging or critically thinking about how to integrate AI into work processes, decision-making, or problem-solving. This may include using AI-powered tools, automating workflows, analyzing AI-driven insights, or exploring AI’s potential impact on the function or industry.
• 12+ years of experience in risk management, with at least 5 years in a senior leadership role within the technology or SaaS sector.
• Deep understanding of technology-driven risk, including AI, cloud security, and platform reliability.
• Strategic thinking with hands-on experience building scalable global ERM or GRC programs.
• Strong knowledge of risk and compliance frameworks (e.g., NIST, COSO, ISO, SOC, GDPR).
• Executive presence and ability to communicate complex risks in business terms to senior stakeholders.
• Proven track record of leading cross-functional governance committees and driving cultural change.
• Bachelor’s degree required; MB