The Benefits Experience and Technology Risk team (BXT Risk) is responsible for managing employee benefits risk activities in countries where we do business. As a Senior Security Risk Specialist on the BXT Risk team, you will serve as a subject matter expert and strategic contributor to our benefits third-party risk ecosystem, working across the organization with US benefits policy, process, and system owners to define strategies, evaluate complex risks, and drive scalable solutions that mitigate risks introduced by third-party vendors and service providers supporting the organization"s US health and financial employee benefit programs.
This role requires both tactical execution and strategic thinking. You will independently lead complex third-party risk assessments, influence vendor security and compliance strategies across the organization, shape how the team scales its risk management capabilities, and drive alignment across diverse stakeholders with potentially conflicting priorities. You will create predictable process paths and repeatable mechanisms that multiple teams utilize, mentor junior team members, and advise managers and directors on third-party risk matters affecting employee benefits programs.
Key job responsibilities
Third-Party Risk Strategy and Assessment:
Program Leadership and Scalable Solutions:
Vendor Systems, Process, and Compliance Oversight:
Stakeholder Engagement, Influence, and Communication:
About the team
The BXT Risk team is made up of lawyers, risk specialists, data security specialists, automation experts, and privacy specialists with global HR and benefits backgrounds. We are a dedicated collective committed to creating supportive, comprehensive benefits solutions. We provide our benefits stakeholders guidance to help them identify and manage potential risks and improve their team"s risk management strategies and compliance posture. The team proactively scans the horizon for new and emerging risks not yet fully developed or understood, and performs inspections to identify compliance gaps and control weaknesses before they materialize into risk events. We provide end-to-end risk management oversight, including risk identification, risk assessments, risk quantification, compliance advisory services, inspection services, control design and testing, compliance solutions, risk monitoring and reporting, issue management, and risk training.
We cultivate an environment where every team member feels valued, empowered, and equipped to thrive both professionally and personally. Our work goes beyond benefits operations - we"re building experiences that genuinely care for our employees.