Senior Principal, Cybersecurity Governance

Your work days are brighter here.

At Workday, it all began with a conversation over breakfast. When our founders met at a sunny California diner, they came up with an idea to revolutionize the enterprise software market. And when we began to rise, one thing that really set us apart was our culture. A culture which was driven by our value of putting our people first. And ever since, the happiness, development, and contribution of every Workmate is central to who we are. Our Workmates believe a healthy employee-centric, collaborative culture is the essential mix of ingredients for success in business. That’s why we look after our people, communities and the planet while still being profitable. Feel encouraged to shine, however that manifests: you don’t need to hide who you are. You can feel the energy and the passion, it's what makes us unique. Inspired to make a brighter work day for all and transform with us to the next stage of our growth journey? Bring your brightest version of you and have a brighter work day here.

At Workday, we value our candidates’ privacy and data security.  Workday will never ask candidates to apply to jobs through websites that are not Workday Careers.

Please be aware of sites that may ask for you to input your data in connection with a job posting that appears to be from Workday but is not.

In addition, Workday will never ask candidates to pay a recruiting fee, or pay for consulting or coaching services, in order to apply for a job at Workday.

About the Team

The Workday Cybersecurity Governance, Risk, Compliance & Trust (cGRC&T) team enables business agility while maintaining a strong security posture via intelligent risk-taking, optimized controls management, and iterative security governance. The cGRC&T Governance team mission is to define an overarching framework that guides and advises the organization's approach to risk and compliance through clear policies & standards. We are a collaborative and dynamic team dedicated to both protecting and continually improving Workday's security posture.

About the Role

The Senior Principal, Cybersecurity Governance, is responsible for overseeing the development, implementation, and continuous governance of all Workday cybersecurity policies and standards. This role requires a seamless interface between Cybersecurity Governance and our internal stakeholders, ensuring a balanced integration of business requirements, industry best practices, and forward-thinking revisions to Workday's Cybersecurity policies and standards. Success in this position hinges on proactive problem-solving, a passion for cybersecurity, and a dedication to enabling all Workmates to deliver secure and compliant solutions to customers.

About You

Basic Qualifications

• 10+ years of experience in cybersecurity and compliance, with demonstrated experience in the following certifications and associated frameworks: SOC 1, SOC 2, ISO 27001, NIST 800-171
• 10+ years of experience in program management
• 6+ years experience owning the development, implementation and ongoing governance of cybersecurity policies and standards

Other Qualifications

• Strong technical aptitude in areas such as cloud technologies, application security, and technical administration.
• Excellent analytical, communication, and technical writing skills with the ability to translate technical concepts into actionable recommendations
• Exceptional attention to detail and accuracy in all documentation and analysis
• Ability to work effectively with cross-functional teams and manage multiple tasks in a fast-paced environment
• Strong problem solving and critical thinking skills
• CISSP, CISA, PMP or other relevant certifications a strong plus

Our Approach to Flexible Work

With Flex Work, we’re combining the best of both worlds: in-person time and remote. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. We know that flexibility can take shape in many ways, so rather than a number of required days in-office each week, we simply spend at least half (50%) of our time each quarter in the office or in the field with our customers, prospects, and partners (depending on role). This means you'll have the freedom to create a flexible schedule that caters to your business, team, and personal needs, while being intentional to make the most of time spent together. Those in our remote "home office" roles also have the opportunity to come together in our offices for important moments that matter.

Are you being referred to one of our roles? If so, ask your connection at Workday about our Employee Referral process!