1

Director Technology Risk Management Jobs in Texas

Being a member of IT FinSight Delivery team, An IT ERM Associate Director has primary ... The incumbent will execute and support day-to-day IT risk management activities (such as risk and ...

Position Summary The Director of Risk Management supports the execution of TCR's risk management and insurance strategy, working closely with the Senior Director of Risk Management to ensure ...

The Director of Risk Management will serve as a trusted advisor to internal business leaders and external partners, translating complex insurance and risk issues into practical business ...

next page

Showing results 1-20

Director Technology Risk Management information

What does a Director of Technology Risk Management do?

A Director of Technology Risk Management is responsible for identifying, assessing, and mitigating technology-related risks within an organization. They develop and implement policies, frameworks, and strategies to ensure that IT systems and processes comply with regulatory requirements and best practices. Their work helps protect the company's data, assets, and reputation from threats such as cyberattacks, data breaches, and system failures. They also collaborate with other departments to promote a culture of risk awareness and provide guidance on risk-related matters.

How does a Director of Technology Risk Management typically collaborate with other departments to ensure effective risk mitigation?

A Director of Technology Risk Management works closely with IT, compliance, legal, and business operations teams to identify and address technology risks. This involves leading cross-functional risk assessments, facilitating communication between technical and non-technical stakeholders, and ensuring that risk mitigation strategies align with organizational goals. Regular meetings, workshops, and reporting structures are established to maintain transparency and drive a culture of risk awareness across departments. Effective collaboration is essential for implementing controls and responding proactively to emerging threats.

What are the key skills and qualifications needed to thrive as a Director of Technology Risk Management, and why are they important?

To excel as a Director of Technology Risk Management, a strong background in information security, risk assessment, regulatory compliance, and a relevant degree such as in computer science or information systems is essential. Familiarity with risk management frameworks (such as NIST, ISO 27001), GRC (Governance, Risk, and Compliance) platforms, and certifications like CISSP or CISM are commonly required. Leadership, strategic thinking, and effective communication skills are vital for driving risk initiatives and collaborating across business units. These competencies ensure robust risk mitigation, regulatory adherence, and alignment of technology strategies with organizational goals.

What is the difference between Director Technology Risk Management vs Cybersecurity Manager?

AspectDirector Technology Risk ManagementCybersecurity Manager
Primary FocusOverseeing technology risk strategies and enterprise risk mitigationManaging cybersecurity operations and security measures
CertificationsCRISC, CISSP, CISMCISSP, CISA, CEH
Work EnvironmentStrategic, cross-departmental, executive levelOperational, technical teams, security operations centers
Industry UsageFinancial, healthcare, large enterprisesIT security firms, corporate IT departments

The main difference is that the Director Technology Risk Management focuses on broad technology risk strategies across the organization, while the Cybersecurity Manager concentrates on implementing and managing cybersecurity measures. Both roles require similar certifications but differ in scope and strategic versus operational responsibilities.

What are the most commonly searched types of Technology Risk Management jobs in Texas? The most popular types of Technology Risk Management jobs in Texas are:
What are popular job titles related to Director Technology Risk Management jobs in Texas? For Director Technology Risk Management jobs in Texas, the most frequently searched job titles are:
What job categories do people searching Director Technology Risk Management jobs in Texas look for? The top searched job categories for Director Technology Risk Management jobs in Texas are:
What cities in Texas are hiring for Director Technology Risk Management jobs? Cities in Texas with the most Director Technology Risk Management job openings:
Director, Technology Risk

Director, Technology Risk

Fidelity Investments

Westlake, TX • On-site

Full-time

Posted 14 days ago


Fidelity Investments rating

8.7

Company rating: 8.7 out of 10

Based on 266 frontline employees who took The Breakroom Quiz

16th of 146 rated financial services


Job description

Job Description:

Position Description:

Develops and implements IT controls (including IT Audit and IT security controls) and strategies to further the protection of customer data. Ensures adequate IT control coverage using Public Accounting (IT Audit) and Controls expertise. Develops an understanding of the IT landscape using IT system, control, and process owners. Manages and develops a team of analysts and ensures comprehensive responses to client technology audits and security assessments. Regularly meets with executives and senior representatives from clients, across all market segments, to discuss the IT control environment, and how the enterprise protects data and retirement plan participant accounts. Discusses and promotes enterprise technology and security capabilities with stakeholders.

Primary Responsibilities:

  • Supports the development, enhancement, and implementation of Governance, Risk, and Compliance (GRC) tools.

  • Develops and maintains risk and control assurance methodologies, policies and control frameworks, and risk register in GRC platform tools.

  • Executes and manages certifications in relation to information security standards for the Information Security Management System (ISMS).

  • Coordinates and manages the activities of a cross-functional governance forum for the oversight and management of key deliverables for the ISMS.

  • Maintains the centralized controls inventory and manages the periodic controls verification/certification process with Control Owners.

  • Performs controls normalization to develop a standard set of controls across audits and programs.

  • Designs and implements ongoing risk and controls trainings to Control Owners and Managers.

  • Provides support for the management of annual enterprise audits.

  • Oversees internal and external audit engagements.

  • Oversees the IT controls program and identifies control deficiencies and workarounds.

  • Supports the development and integration of a centralized platform for risk and controls management.

  • Designs, develops, and maintains processes for modules and functionalities.

  • Diagnoses, troubleshoots, and resolves hardware, software, or other network and system problems.

  • Replaces defective components when necessary.

Education and Experience:

Bachelor's degree in Computer Science, Engineering, Information Technology, Information Systems, or a closely related field (or foreign education equivalent) and six (6) years of experience as a Director, Technology Risk (or closely related occupation) evaluating Information Produced by the Entity (IPE) in a financial auditing environment, using IT general controls, IT application controls, and IT dependent manual controls.

Or, alternatively, Master's degree in Computer Science, Engineering, Information Technology, Information Systems, or a closely related field (or foreign education equivalent) and four (4) years of experience as a Director, Technology Risk (or closely related occupation) evaluating Information Produced by the Entity (IPE) in a financial auditing environment, using IT general controls, IT application controls, and IT dependent manual controls.

Skills and Knowledge:

Candidate must also possess:

  • Demonstrated Expertise ("DE") executing risk assessment audits of large-scale IT systems (including Enterprise Resource Planning (ERP) systems, cybersecurity, and Cloud computing systems); and developing reports and presentations for senior management with recommended mediation and corrective actions, using Archer to mitigate security and financial risk.

  • DE performing IT risk assessments and audits to ensure compliance with General Data Protection Regulation (GDPR), SOX 404, and Accounting Standard 606 regulatory requirements; and drafting reports for senior executives on audit results and corrective actions (Security Policy, Access Control, and Change Controls), using access management tools (Access Hub and SailPoint), configuration management tools (ServiceNow), and data analytic tools (PowerBI and Alteryx).

  • DE performing application audits, vendor system assessments, and pre and post system implementation assessments according to auditing software development methodologies -- Agile, Scrum, Scaled Agile Framework, and DevOps; and performing technology audits using industry frameworks -- Payment Card Industry (PCI), Control Objectives for Information and Related Technologies (COBIT), National Institute of Standards and Technology (NIST), and ISO 27001.

  • DE performing information security audits of data, programs, and source code, using Audit Command Language (ACL) data analytics tool within UNIX/Linux, Windows, and Relational Database Management Systems (Oracle, Sybase and SQL Server) environments.

#PE1M2

#LI-DNI

Certifications:Category:Information Technology

Please be advised that Fidelity's business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.


What Fidelity Investments employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom