1

Director Technology Risk Management Jobs in Iowa

Director of Quality/Risk

Ottumwa, IA · On-site

$110K - $150K/yr

Director of Quality/Risk Senior Leadership | Acute Care Hospital | Southeast Iowa The Opportunity A ... On the risk side, you will manage the full risk lifecycle -- incident tracking and trending, root ...

RN Director of Quality & Risk

Ottumwa, IA · On-site

$110K - $149K/yr

Job Title: RN Director of Quality & Risk Location: Ottumwa, Iowa Salary: $110,000 - $150,000 per ... Active RN license * 5+ years of leadership/management experience in healthcare (quality, risk, or ...

WEALTH MANAGEMENT COMPLIANCE DIRECTOR At Security National Bank, we believe that everything matters ... This position sits at the intersection of compliance, risk management, and client service. You'll ...

IAS is hiring a Information Technology Director. This is a key role and essential to the success of ... Maintain a secure, resilient, and well-documented IT environment Security & Risk Management * Lead ...

IAS is hiring a Information Technology Director. This is a key role and essential to the success of ... Maintain a secure, resilient, and well-documented IT environment Security & Risk Management * Lead ...

next page

Showing results 1-20

Director Technology Risk Management information

What does a Director of Technology Risk Management do?

A Director of Technology Risk Management is responsible for identifying, assessing, and mitigating technology-related risks within an organization. They develop and implement policies, frameworks, and strategies to ensure that IT systems and processes comply with regulatory requirements and best practices. Their work helps protect the company's data, assets, and reputation from threats such as cyberattacks, data breaches, and system failures. They also collaborate with other departments to promote a culture of risk awareness and provide guidance on risk-related matters.

How does a Director of Technology Risk Management typically collaborate with other departments to ensure effective risk mitigation?

A Director of Technology Risk Management works closely with IT, compliance, legal, and business operations teams to identify and address technology risks. This involves leading cross-functional risk assessments, facilitating communication between technical and non-technical stakeholders, and ensuring that risk mitigation strategies align with organizational goals. Regular meetings, workshops, and reporting structures are established to maintain transparency and drive a culture of risk awareness across departments. Effective collaboration is essential for implementing controls and responding proactively to emerging threats.

What are the key skills and qualifications needed to thrive as a Director of Technology Risk Management, and why are they important?

To excel as a Director of Technology Risk Management, a strong background in information security, risk assessment, regulatory compliance, and a relevant degree such as in computer science or information systems is essential. Familiarity with risk management frameworks (such as NIST, ISO 27001), GRC (Governance, Risk, and Compliance) platforms, and certifications like CISSP or CISM are commonly required. Leadership, strategic thinking, and effective communication skills are vital for driving risk initiatives and collaborating across business units. These competencies ensure robust risk mitigation, regulatory adherence, and alignment of technology strategies with organizational goals.

What is the difference between Director Technology Risk Management vs Cybersecurity Manager?

AspectDirector Technology Risk ManagementCybersecurity Manager
Primary FocusOverseeing technology risk strategies and enterprise risk mitigationManaging cybersecurity operations and security measures
CertificationsCRISC, CISSP, CISMCISSP, CISA, CEH
Work EnvironmentStrategic, cross-departmental, executive levelOperational, technical teams, security operations centers
Industry UsageFinancial, healthcare, large enterprisesIT security firms, corporate IT departments

The main difference is that the Director Technology Risk Management focuses on broad technology risk strategies across the organization, while the Cybersecurity Manager concentrates on implementing and managing cybersecurity measures. Both roles require similar certifications but differ in scope and strategic versus operational responsibilities.

What are the most commonly searched types of Technology Risk Management jobs in Iowa? The most popular types of Technology Risk Management jobs in Iowa are:
What are popular job titles related to Director Technology Risk Management jobs in Iowa? For Director Technology Risk Management jobs in Iowa, the most frequently searched job titles are:
What job categories do people searching Director Technology Risk Management jobs in Iowa look for? The top searched job categories for Director Technology Risk Management jobs in Iowa are:
What cities in Iowa are hiring for Director Technology Risk Management jobs? Cities in Iowa with the most Director Technology Risk Management job openings:
Cybersecurity Operations Director

Cybersecurity Operations Director

Pearl Technology

Davenport, IA • On-site

Full-time

Re-posted yesterday


Job description

The Cybersecurity Operations Director role combines a comprehensive understanding of information security with the management and coordination skills required to analyze and implement best security practices and proper risk management across the corporate landscape. 

  • Also responsible for monitoring, detecting, analyzing, mitigating, and responding to cyber threats against IT assets, networks, and information. 
  • The environment includes local area networks/wide area networks (LAN/WAN), commercial Internet connections, public facing websites, wireless, mobile/cellular, cloud, security devices, servers and workstations.
  • Take lead in performing security testing of applications, networks and infrastructures, including vulnerability assessments, penetration testing and manual testing techniques.

ESSENTIAL DUTIES AND RESPONSIBILITIES 

  • Lead and manage a 24x7x365 Security Operations Center providing technical oversight.
  • Lead staff to proactively identify, prevent and respond to security incidents.
  • Ensure incident identification, assessment, quantification, reporting, communication, mitigation and monitoring.
  • Ensure compliance to Service Level Agreements (SLA), process adherence and process improvisation to achieve operational objectives and mitigate threats.
  • Revise and develop processes to strengthen the current operational activities; review policies and recommend changes to improve governance.
  • Responsible for team management, personnel scheduling, overall use of resources and initiation of corrective action where required for Security Operations Center.
  • Perform threat management, threat modeling, identify threat vectors and develop use cases for security monitoring.
  • Creation of reports, dashboards, metrics for SOC operations and presentation to client.
  • Operate a hands-on role involving penetration testing and vulnerability assessment activities of complex applications, operating systems, wired and wireless networks, and mobile applications/devices.
  • Manage consulting engagements, with a focus on incident response and forensics. Provide both subject matter expertise and project management experience to serve as the “point person” for engagements.
  • Communicate security issues to a wide variety of internal and external “customers” to include technical teams, executives, risk groups, vendors and regulators.
  • Ensures that disaster recovery and business continuity plans are in place and tested on a regular basis.

SUPERVISORY RESPONSIBILITIES

Direct supervision of the Security Services department. Carries out supervisory responsibilities in accordance with Company policies, procedures, and applicable laws. Responsibilities include interviewing, hiring, promoting and training employees; planning, assigning, directing and approving work; appraising performance; rewarding and disciplining employees; addressing complaints and resolving problems; and recommending salary adjustments.

QUALIFICATIONS

Education and Experience:

  • Bachelor’s degree in information technology or related field and combination of experience in the following areas:
    • 10+ years in security and/or risk assessment/management related field
    • Hands on experience with testing frameworks such as the PTES and OWASP
    • Applicable knowledge of Windows client/server, Unix/Linux systems, Mac OS X, VMware/Xen, and cloud technologies such as AWS, Azure, or Google Cloud
    • In-depth knowledge of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
  • Excellent organizational and time management skills.
  • Critical thinker and problem solver.
  • Experience in performing vendor management.
  • Detailed orientated with effective written and communication skills.

Certifications and Licenses:

  • CISSP, GIAC, CISSP, CEH, OSCP, or equivalent certifications a plus