Your work days are brighter here.

We’re obsessed with making hard work pay off, for our people, our customers, and the world around us. As a Fortune 500 company and a leading AI platform for managing people, money, and agents, we’re shaping the future of work so teams can reach their potential and focus on what matters most. The minute you join, you’ll feel it. Not just in the products we build, but in how we show up for each other. Our culture is rooted in integrity, empathy, and shared enthusiasm. We’re in this together, tackling big challenges with bold ideas and genuine care. We look for curious minds and courageous collaborators who bring sun-drenched optimism and drive. Whether you're building smarter solutions, supporting customers, or creating a space where everyone belongs, you’ll do meaningful work with Workmates who’ve got your back. In return, we’ll give you the trust to take risks, the tools to grow, the skills to develop and the support of a company invested in you for the long haul. So, if you want to inspire a brighter work day for everyone, including yourself, you’ve found a match in Workday, and we hope to be a match for you too.

About the Team

The Cybersecurity Risk Team serves as the strategic compass for our organization’s cyber safety. We focus on the "big picture"—identifying, analyzing, and prioritizing the threats that could impact our mission and our customers.
Our mission is to translate complex technical vulnerabilities into clear business logic. We collaborate across every department to ensure that as we innovate and grow, we are making informed, data-driven decisions about how to protect our most critical assets.
What we actually do:
Risk Assessment: We evaluate new technologies and vendors to ensure they meet our high security standards.
Strategic Guidance: We help leadership understand where to invest resources to get the highest security ROI.
Continuous Monitoring: We keep a pulse on the evolving threat landscape to keep the organization two steps ahead of potential risks.

About the Role

Ensures that IS and cyber security plans, controls, policies and processes are aligned with IS standards. Responds to security breaches, identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents and improve security. Researches and evaluates cybersecurity threats and performs root cause analysis. Develops and executes security controls, defenses and countermeasures to intercept and prevent internal or external attacks or attempts to infiltrate Workday systems and data.

Responsibilities:

• Promote and implement security processes and tools that support ongoing deliveries and promote a shift left Security mentality;
• Collaborate multi-functionally with Workday development, operations, and product teams to understand their requirements and priorities while influencing security culture;
• Internal customer engagement and assisting them through the Security Engagement Process
• Develop expertise on our security architecture frameworks and standards.
• Stay ahead of industry technology and business trends by actively drive product technology and engineering process innovation to help Workday be a leader in Security.

About You

Basic Qualifications:

5 years experience leading and developing cyber security teams, including 2 years experience managing other security managers.
10 years experience in cyber security, defining and implementing security strategy, establishing security policies, and ensuring compliance with relevant regulations.
Bachelor’s degree in a relevant discipline such as Computer Science, Cybersecurity, Information Security, or a related discipline; a Master's degree preferred or equivalent practical experience.

• Other Qualifications
• Experience researching, developing, and enhancing tools, techniques, and process improvements for security detection and response in accordance with current and emerging threat and attack vectors.
• Experience with cloud security architectures (e.g., AWS/Google Cloud) and infrastructure at enterprise scale.
• Ability to provide strategic and tactical leadership within Security Operations.
• Excellent communication and collaboration skills, with the ability to influence senior leadership and drive security initiatives.
• Ability to resolve known and unknown threats and understand new adversary Tactics, Techniques, and Procedures (TTPs).
• Demonstrated experience managing budgets and optimizing resources for efficiency and performance.
• Deep understanding of security regulations and compliance frameworks (ISO, SOC2, NIST, etc.) and experience implementing these standards in large organizations.
• Ability to balance strategic vision with hands-on technical guidance, ensuring that security goals are achieved through innovative and scalable solutions.

Our Approach to Flexible Work

With Flex Work, we’re combining the best of both worlds: in-person time and remote. Our approach enables our teams to deepen connections, maintain a strong community, and do their best work. We know that flexibility can take shape in many ways, so rather than a number of required days in-office each week, we simply spend at least half (50%) of our time each quarter in the office or in the field with our customers, prospects, and partners (depending on role). This means you'll have the freedom to create a flexible schedule that caters to your business, team, and personal needs, while being intentional to make the most of time spent together. Those in our remote home office roles also have the opportunity to come together in our offices for important moments that matter.

At Workday, we are committed to providing an accessible and inclusive hiring experience where all candidates can fully demonstrate their skills. If you require assistance or an accommodation at any point, please email accommodationsworkday.com.

Are you being referred to one of our roles? If so, ask your connection at Workday about our Employee Referral process!

At Workday, we value our candidates’ privacy and data security.  Workday will never ask candidates to apply to jobs through websites that are not Workday Careers.

Please be aware of sites that may ask for you to input your data in connection with a job posting that appears to be from Workday but is not.

In addition, Workday will never ask candidates to pay a recruiting fee, or pay for consulting or coaching services, in order to apply for a job at Workday.