1

Director Technology Risk Management Jobs in Kentucky

IT Director

Louisville, KY ยท On-site

$130K - $150K/yr

The IT Director will report to the Chief Executive Officer and collaborate closely with executive ... Cybersecurity & Risk Management * Oversee cybersecurity operations, including endpoint protection ...

IT Director

Louisville, KY ยท On-site

$130K - $150K/yr

The IT Director will report to the Chief Executive Officer and collaborate closely with executive ... Cybersecurity & Risk Management * Oversee cybersecurity operations, including endpoint protection ...

... t Management (ITAM) * Integrated Risk Management (IRM) * Security Operations (SecOps) * Third-Party Risk Management (TPRM) * 10+ years of demonstrated deep technical expertise in ServiceNow ...

... k and controls * Fosters relationships with IT and business personnel at appropriate levels and serve as a subject matter expert for IT control design, system access, change management, data ...

Exposure Management & Risk Controls Monitor borrower-level exposure, concentration risk, and ... Direct experience in fix-and-flip or value-add real estate lending Exposure to renovation budgeting ...

next page

Showing results 1-20

Director Technology Risk Management information

What does a Director of Technology Risk Management do?

A Director of Technology Risk Management is responsible for identifying, assessing, and mitigating technology-related risks within an organization. They develop and implement policies, frameworks, and strategies to ensure that IT systems and processes comply with regulatory requirements and best practices. Their work helps protect the company's data, assets, and reputation from threats such as cyberattacks, data breaches, and system failures. They also collaborate with other departments to promote a culture of risk awareness and provide guidance on risk-related matters.

How does a Director of Technology Risk Management typically collaborate with other departments to ensure effective risk mitigation?

A Director of Technology Risk Management works closely with IT, compliance, legal, and business operations teams to identify and address technology risks. This involves leading cross-functional risk assessments, facilitating communication between technical and non-technical stakeholders, and ensuring that risk mitigation strategies align with organizational goals. Regular meetings, workshops, and reporting structures are established to maintain transparency and drive a culture of risk awareness across departments. Effective collaboration is essential for implementing controls and responding proactively to emerging threats.

What are the key skills and qualifications needed to thrive as a Director of Technology Risk Management, and why are they important?

To excel as a Director of Technology Risk Management, a strong background in information security, risk assessment, regulatory compliance, and a relevant degree such as in computer science or information systems is essential. Familiarity with risk management frameworks (such as NIST, ISO 27001), GRC (Governance, Risk, and Compliance) platforms, and certifications like CISSP or CISM are commonly required. Leadership, strategic thinking, and effective communication skills are vital for driving risk initiatives and collaborating across business units. These competencies ensure robust risk mitigation, regulatory adherence, and alignment of technology strategies with organizational goals.

What is the difference between Director Technology Risk Management vs Cybersecurity Manager?

AspectDirector Technology Risk ManagementCybersecurity Manager
Primary FocusOverseeing technology risk strategies and enterprise risk mitigationManaging cybersecurity operations and security measures
CertificationsCRISC, CISSP, CISMCISSP, CISA, CEH
Work EnvironmentStrategic, cross-departmental, executive levelOperational, technical teams, security operations centers
Industry UsageFinancial, healthcare, large enterprisesIT security firms, corporate IT departments

The main difference is that the Director Technology Risk Management focuses on broad technology risk strategies across the organization, while the Cybersecurity Manager concentrates on implementing and managing cybersecurity measures. Both roles require similar certifications but differ in scope and strategic versus operational responsibilities.

What are the most commonly searched types of Technology Risk Management jobs in Kentucky? The most popular types of Technology Risk Management jobs in Kentucky are:
What job categories do people searching Director Technology Risk Management jobs in Kentucky look for? The top searched job categories for Director Technology Risk Management jobs in Kentucky are:
What cities in Kentucky are hiring for Director Technology Risk Management jobs? Cities in Kentucky with the most Director Technology Risk Management job openings:

IT Director

Isaacs & Isaacs PSC

Louisville, KY โ€ข On-site

$130K - $150K/yr

Other

Medical, Dental, Vision, Life, Retirement

Posted 20 days ago


Job description

Description

Job Summary


Isaacs & Isaacs Law Firm is seeking an experienced IT Director to lead the strategic direction, planning, and oversight of the firm's technology infrastructure, cybersecurity program, and information systems.


This leadership role is responsible for ensuring secure, reliable, and modern technology operations that support business operations while aligning with the firm's long-term strategic goals.


The IT Director will report to the Chief Executive Officer and collaborate closely with executive leadership to drive innovation, manage risk, ensure regulatory compliance, and optimize technology investments across the firm. This position will also play a key role in the implementation and ongoing management of Microsoft Intune and Microsoft 365 cloud services, ensuring secure endpoint management, mobility, and data protection in a legal services environment.


Key Responsibilities


Strategic Leadership & Governance

  • Develop and execute a comprehensive IT strategy aligned with the goals and operational needs of Isaacs & Isaacs Law Firm.
  • Advise executive leadership on technology investments, cybersecurity risk management, and emerging technologies.
  • Establish and enforce IT governance policies, cybersecurity standards, and best practices appropriate for a law firm environment.
  • Support technology initiatives that improve efficiency, security, collaboration, and client service across the firm.

Infrastructure & Systems Management

  • Oversee administration of Microsoft 365, including Exchange Online, SharePoint, OneDrive, and Teams.
  • Oversee Azure Active Directory / Microsoft Entra ID administration, identity management, and access controls.
  • Implement and manage Microsoft Intune for device enrollment, endpoint security, patch management, conditional access, and mobile device management.
  • Manage cloud and on-premises infrastructure, including servers, networking equipment, firewalls, and security appliances.
  • Ensure the reliability, scalability, and security of systems that support legal case management, document management, ย ย ย ย ย communications, and daily firm operations.

Cybersecurity & Risk Management

  • Oversee cybersecurity operations, including endpoint protection, firewall management, intrusion detection, vulnerability scanning, and incident response.
  • Coordinate security audits, penetration testing, and risk assessments.
  • Ensure protection of confidential client, case, employee, and firm data.
  • Support compliance with applicable legal, regulatory, privacy, and industry security standards.
  • Manage ongoing security awareness training for employees.
  • Develop and maintain incident response, disaster recovery, and business continuity plans.

IT Operations & Support

  • Lead IT support services to ensure high system availability, responsiveness, and performance across the firm.
  • Oversee hardware lifecycle management, procurement, and software licensing compliance.
  • Monitor system performance and reliability, implementing continuous improvement initiatives.
  • Manage relationships with IT vendors, technology partners, software providers, and service providers.
  • Supervise, mentor, and manage members of the IT department.
  • Ensure timely support for employees in a fast-paced legal environment in an in-office, remote and international setting.

Financial & Administrative Oversight

  • Manage the IT budget, ensuring cost-effective allocation of technology resources.
  • Evaluate technology purchases, renewals, and vendor contracts.
  • Maintain documentation of systems architecture, policies, procedures, and security protocols.
  • Support firm leadership with reporting, planning, and recommendations related to technology operations.

Benefits:

  • Medical Insurance
  • Dental Insurance
  • Vision Insurance
  • Flexible schedule
  • Flexible spending account
  • Health savings account with bi-weekly employer contributions
  • Group Life and AD&D insurance (employee, spouse, child(ren) employer paid)
  • Voluntary Life (employee, spouse, child(ren) employee paid)
  • STD & LTD (employer paid)
  • Referral Bonus Program
  • 401(k)
  • 401(k) matching

Work Location


This is an in-office position based in Louisville, KY.

Requirements

Qualifications


Education & Experience

  • Bachelor's degree in Information Technology, Computer Science, or related field required; Master's degree preferred.
  • 7-10 years of progressive IT experience, including leadership or management responsibilities.
  • Experience managing IT operations in a legal, professional services, or similarly regulated environment preferred.
  • Experience supporting multi-user environments with a high degree of confidentiality, urgency, and operational reliability.

Technical Expertise

  • Strong knowledge of Microsoft 365, Azure / Microsoft Entra ID, Microsoft Intune, endpoint security, and identity management.
  • Experience with firewalls, VPNs, network infrastructure, LAN/WAN, TCP/IP, and cloud-based security solutions.
  • Familiarity with cybersecurity best practices, compliance frameworks, data protection standards, and risk management.
  • Experience with legal technology platforms, case management systems, document management systems, or eDiscovery tools preferred.
  • Strong understanding of backup, disaster recovery, business continuity, and incident response practices.

Leadership & Communication Skills

  • Strong strategic thinking and problem-solving abilities.
  • Ability to communicate complex technical concepts to non-technical stakeholders, including attorneys, legal staff, and executive leadership.
  • Proven experience managing teams, vendors, and cross-functional technology initiatives.
  • High level of professionalism, discretion, and integrity when handling confidential client and firm information.
  • Ability to prioritize competing needs in a fast-paced law firm environment.ย 

We are an Equal Opportunity Employer. It is the policy of the Firm to assure equal employment opportunity to all employees, candidates for employment, and other covered persons without regard to unlawful considerations of race, color, religion or creed, gender sex (including pregnancy), national origin or ancestry, ethnicity, citizenship status, genetic information, military or veteran status, age, physical or mental disability, status as a smoker, or any other classification protected by applicable local, state, or federal laws. This applies to all aspects of employment, including, but not limited to, hiring, job assignment, compensation, promotion, benefits, training, discipline, and termination. Reasonable accommodation is available for qualified individuals with disabilities in accordance with applicable federal, state, and local law.


This employer participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S. If E-Verify cannot confirm that you are authorized to work, this employer is required to give you written instructions and an opportunity to contact Department of Homeland Security (DHS) or Social Security Administration (SSA) so you can begin to resolve the issue before the employer can take any action against you, including terminating your employment. Employers can only use E-Verify once you have accepted a job offer and completed the Form I-9.