Position Overview The Director, Cyber Risk leads Asurion's cyber and technology risk management discipline and is accountable for a consistent, outcome-driven program the business can rely on for ...
Position Overview The Director, Cyber Risk leads Asurion's cyber and technology risk management discipline and is accountable for a consistent, outcome-driven program the business can rely on for ...
Enterprise Risk Management Specialist
Denver, CO · On-site
$100K/yr
With our significant investment in technology and infrastructure, we strive to maximize the value ... Overview We are seeking an Enterprise Risk Management Specialist to join the Decision Support ...
Enterprise Risk Management Specialist
Denver, CO · On-site
$100K/yr
With our significant investment in technology and infrastructure, we strive to maximize the value ... Overview We are seeking an Enterprise Risk Management Specialist to join the Decision Support ...
Enterprise Risk Management Specialist
Aurora, CO · On-site
$100K/yr
With our significant investment in technology and infrastructure, we strive to maximize the value ... Overview We are seeking an Enterprise Risk Management Specialist to join the Decision Support ...
Enterprise Risk Management Specialist
Aurora, CO · On-site
$100K/yr
With our significant investment in technology and infrastructure, we strive to maximize the value ... Overview We are seeking an Enterprise Risk Management Specialist to join the Decision Support ...
Risk Management Specialist
Denver, CO · On-site
Hydrostor, a leading energy storage, technology and infrastructure company dedicated to developing utility-scale, long-duration energy storage solutions, is seeking a Risk Management Specialist ...
Risk Management Specialist
Denver, CO · On-site
Hydrostor, a leading energy storage, technology and infrastructure company dedicated to developing utility-scale, long-duration energy storage solutions, is seeking a Risk Management Specialist ...
Risk Management Analyst
Denver, CO · On-site
Research emerging laws, regulations, technologies, risks, and trends that may impact the organization * Serve as the primary liaison between the Risk department and asset managers, property managers ...
Risk Management Analyst
Denver, CO · On-site
Research emerging laws, regulations, technologies, risks, and trends that may impact the organization * Serve as the primary liaison between the Risk department and asset managers, property managers ...
Risk Management Analyst
Denver, CO · On-site
Research emerging laws, regulations, technologies, risks, and trends that may impact the organization * Serve as the primary liaison between the Risk department and asset managers, property managers ...
Quick apply
Risk Management Analyst
Denver, CO · On-site
Research emerging laws, regulations, technologies, risks, and trends that may impact the organization * Serve as the primary liaison between the Risk department and asset managers, property managers ...
... Party Risk Management leads Asurion's enterprise vendor and supply-chain risk program as a second ... technology suppliers. The leader partners closely with Procurement, Legal, Privacy, business ...
... Party Risk Management leads Asurion's enterprise vendor and supply-chain risk program as a second ... technology suppliers. The leader partners closely with Procurement, Legal, Privacy, business ...
... T audit, regulatory compliance, privacy, data protection, third-party risk management, cloud security, incident readiness, and managed risk services. * Identify and qualify high-value expansion ...
... T audit, regulatory compliance, privacy, data protection, third-party risk management, cloud security, incident readiness, and managed risk services. * Identify and qualify high-value expansion ...
Risk Management Professional - Insurance Risk
Westminster, CO · On-site
$99K - $137K/yr
Are you a highly capable insurance expert ready to take end-to-end ownership of a major technology pioneer's global risk portfolio? Trimble is seeking a Global Insurance Risk Manager to lead our ...
Risk Management Professional - Insurance Risk
Westminster, CO · On-site
$99K - $137K/yr
Are you a highly capable insurance expert ready to take end-to-end ownership of a major technology pioneer's global risk portfolio? Trimble is seeking a Global Insurance Risk Manager to lead our ...
Risk Management Professional - Insurance Risk
$99K - $137K/yr
Are you a highly capable insurance expert ready to take end-to-end ownership of a major technology pioneer's global risk portfolio? Trimble is seeking a Global Insurance Risk Manager to lead our ...
Risk Management Professional - Insurance Risk
$99K - $137K/yr
Are you a highly capable insurance expert ready to take end-to-end ownership of a major technology pioneer's global risk portfolio? Trimble is seeking a Global Insurance Risk Manager to lead our ...
Review risks, controls and, conduct assessments to support effective oversight and compliance with risk management requirements. * Oversee the technology portfolio, assessing projects and initiatives ...
Review risks, controls and, conduct assessments to support effective oversight and compliance with risk management requirements. * Oversee the technology portfolio, assessing projects and initiatives ...
... technology risk, GRC, security assurance, audit, third-party risk, or related disciplines. * 12+ years leading teams, managers, or cross-functional cybersecurity programs in complex enterprise ...
... technology risk, GRC, security assurance, audit, third-party risk, or related disciplines. * 12+ years leading teams, managers, or cross-functional cybersecurity programs in complex enterprise ...
Cyber and Tech Risk UW SR
Denver, CO · On-site
$101K - $119K/yr
This role builds and manages strong broker relationships, provides market insight in a rapidly evolving cyber risk landscape, and positions the organization as a leader in the primary cyber market.
Cyber and Tech Risk UW SR
Denver, CO · On-site
$101K - $119K/yr
This role builds and manages strong broker relationships, provides market insight in a rapidly evolving cyber risk landscape, and positions the organization as a leader in the primary cyber market.
Cyber and Tech Risk UW SR
Arvada, CO · On-site +1
$100K - $119K/yr
... and technology risk. We combine underwriting expertise, cyber risk intelligence, and advanced ... Our cyber offerings are supported by proactive risk management services and data driven insights ...
Cyber and Tech Risk UW SR
Arvada, CO · On-site +1
$100K - $119K/yr
... and technology risk. We combine underwriting expertise, cyber risk intelligence, and advanced ... Our cyber offerings are supported by proactive risk management services and data driven insights ...
Execute global IT risk management across cybersecurity, technology, and vendor risks * Support and scale the IT Third-Party Risk Management (TPRM) framework, including due diligence, onboarding ...
Execute global IT risk management across cybersecurity, technology, and vendor risks * Support and scale the IT Third-Party Risk Management (TPRM) framework, including due diligence, onboarding ...
Lead enterprise vulnerability management initiatives and partner with technical owners to ensure ... Technology risk management This role requires working from a U.S. Bank location three (3) or more ...
New
Lead enterprise vulnerability management initiatives and partner with technical owners to ensure ... Technology risk management This role requires working from a U.S. Bank location three (3) or more ...
New
Governance Risk and Compliance Analyst
Grand Junction, CO · On-site
$21.50 - $29.30/hr
General Purpose The Governance, Risk, and Compliance (GRC) Analyst performs day to day management of information technology risk and regulations, including Business Continuity Management and Vendor ...
Governance Risk and Compliance Analyst
Grand Junction, CO · On-site
$21.50 - $29.30/hr
General Purpose The Governance, Risk, and Compliance (GRC) Analyst performs day to day management of information technology risk and regulations, including Business Continuity Management and Vendor ...
Governance Risk and Compliance Analyst
Denver, CO · Hybrid
$21.50 - $29.30/hr
General Purpose The Governance, Risk, and Compliance (GRC) Analyst performs day to day management of information technology risk and regulations, including Business Continuity Management and Vendor ...
Governance Risk and Compliance Analyst
Denver, CO · Hybrid
$21.50 - $29.30/hr
General Purpose The Governance, Risk, and Compliance (GRC) Analyst performs day to day management of information technology risk and regulations, including Business Continuity Management and Vendor ...
Governance Risk and Compliance Analyst
Grand Junction, CO · Hybrid
$21.50 - $29.30/hr
General Purpose The Governance, Risk, and Compliance (GRC) Analyst performs day to day management of information technology risk and regulations, including Business Continuity Management and Vendor ...
Governance Risk and Compliance Analyst
Grand Junction, CO · Hybrid
$21.50 - $29.30/hr
General Purpose The Governance, Risk, and Compliance (GRC) Analyst performs day to day management of information technology risk and regulations, including Business Continuity Management and Vendor ...
Governance Risk and Compliance Analyst
Rifle, CO · Hybrid
$21.50 - $29.30/hr
General Purpose The Governance, Risk, and Compliance (GRC) Analyst performs day to day management of information technology risk and regulations, including Business Continuity Management and Vendor ...
Governance Risk and Compliance Analyst
Rifle, CO · Hybrid
$21.50 - $29.30/hr
General Purpose The Governance, Risk, and Compliance (GRC) Analyst performs day to day management of information technology risk and regulations, including Business Continuity Management and Vendor ...
Intern Technology Risk Management information
What does a technology risk intern do?
What are the big 4 internships?
What does an Intern in Technology Risk Management do?
What types of projects or tasks can an Intern in Technology Risk Management expect to work on?
What are the key skills and qualifications needed to thrive as an Intern in Technology Risk Management, and why are they important?
How much does a technology risk manager make at Capital One?
What is the difference between Intern Technology Risk Management vs Intern Cybersecurity?
| Aspect | Intern Technology Risk Management | Intern Cybersecurity |
|---|---|---|
| Certifications | Basic knowledge of risk management frameworks | Fundamentals of cybersecurity and security protocols |
| Work Environment | Risk assessment, compliance, policy development | Security monitoring, threat analysis, incident response |
| Industry Usage | Financial, healthcare, technology sectors | IT, finance, government agencies |
Intern Technology Risk Management focuses on identifying and mitigating risks related to technology and compliance, while Intern Cybersecurity emphasizes protecting systems from security threats. Both roles often overlap but serve distinct functions within organizations' tech departments.
What does a technology risk manager do?
Asurion rating
7.2
Based on 84 frontline employees who took The Breakroom Quiz
120th of 208 rated it services
Job description
The Director, Cyber Risk leads Asurion's cyber and technology risk management discipline and is accountable for a consistent, outcome-driven program the business can rely on for decision-making. This strategic, cross-functional leader owns the end-to-end cyber risk lifecycle-identification, assessment, quantification, treatment, acceptance, monitoring, and reporting-along with the cyber risk register, risk appetite and tolerance framework, control assurance, and issues management. The Director partners closely with first-line control owners across security and technology, Portfolio Information Security Officers (PISOs), and key stakeholders in Enterprise Risk Management, Internal Audit, Legal, and Privacy. This role sets the standard for sound risk judgment, develops a high-performing team, and translates complex cyber risk into clear, defensible narratives for senior leadership and the board. This is a salaried, leadership role with enterprise impact, guiding a multi-year maturity uplift from ad hoc practices to scalable, evidence-based risk management.
Key Responsibilities- Own and continuously improve the cyber and technology risk management framework, methodology, taxonomy, and lifecycle aligned to NIST CSF 2.0, ISO 27001/27005, and applicable regulatory obligations.
- Define standards, procedures, and rating scales for consistent enterprise-wide risk identification, assessment, and reporting; partner with the PISO model to ensure common language and practices across portfolios.
- Lead enterprise cyber risk assessments across technology, business, regulatory, and emerging-risk domains to produce consistent, defensible determinations.
- Establish and operate a cyber risk quantification capability (e.g., FAIR-based) to express risk in business and financial terms and inform prioritization and investment decisions.
- Maintain the enterprise cyber risk register; ensure risks are well-described, owned, rated, and tracked to acceptable residual levels; develop and manage KRI/KCI programs for forward-looking posture.
- Operationalize the risk appetite and tolerance framework with the CISO and senior leadership; own risk acceptance and exception governance with clear, auditable documentation and time-bound approvals.
- Govern cyber risk policy structure, ownership, review cadence, and exception handling; chair or support cyber risk forums and escalate decisions to appropriate authority levels.
- Lead second-line, risk-based assurance over design and operating effectiveness of key cyber controls in coordination with first-line and Internal Audit; identify thematic weaknesses and drive structural remediation.
- Own issues and remediation management-intake, prioritization, owner assignment, tracking to closure, and escalation of aging items.
- Define and report outcome-focused metrics (e.g., residual risk trends, out-of-appetite reduction, early-versus-late finding ratios, incidents tied to accepted risk) in executive- and board-ready formats.
- Serve as primary point of contact for cyber risk in regulatory exams, audits, and carrier-partner due diligence.
- Integrate cyber risk into Enterprise Risk Management to ensure consistency in enterprise risk reporting and governance; partner with Legal, Privacy, Procurement, and technology leaders to embed risk-informed decisions.
- Oversee vendor/third-party risk within the cyber risk portfolio to ensure supply-chain risk is governed in line with enterprise practices.
- Build, lead, and develop a team of senior managers and analysts; set objectives, manage performance, and scale capacity through process improvement, tooling, and appropriate AI-assisted workflows.
- Bachelor's degree in a related field or equivalent professional experience.
- 10+ years in cybersecurity, IT/technology risk, or GRC, including 5+ years leading managers or multiple teams/domains.
- Proven experience designing, leading, or substantially maturing an end-to-end enterprise cyber/IT risk management program.
- Deep knowledge of NIST CSF 2.0, ISO 27001/27005, relevant regulatory regimes, and the three-lines-of-defense model.
- Experience operating a risk register, risk appetite/tolerance framework, and risk acceptance/exception governance.
- Hands-on experience with GRC/IRM platforms (e.g., ServiceNow IRM, Archer, OneTrust, or comparable).
- Excellent executive communication skills with a track record of briefing senior leadership and boards.
- Strong cross-functional influence partnering across security, technology, legal, privacy, and business teams.
- Preferred: CRISC, CISSP, CISM, or CISA; FAIR-based quantification experience; background in regulated or consumer-facing environments; experience with ERM integration and executive/board risk committees; Master's degree in a related field.
- Strategic risk leadership with the ability to connect cyber risk to business outcomes and investment decisions.
- Sound, defensible judgment under uncertainty; skilled in risk trade-offs and acceptance decisions.
- Expertise in risk quantification, KRI/KCI design, and outcome-based program metrics.
- Strong governance and policy acumen, including appetite/tolerance, exceptions, and escalation pathways.
- Proficiency in second-line control assurance and issues management, driving thematic remediation.
- Exceptional written and verbal communication; translates complex risk into clear, actionable narratives for executives and the board.
- Team leadership and talent development; builds high-performance teams and next-level leaders.
- Change agent mindset with process improvement, tooling, and automation competencies, including appropriate use of AI-assisted workflows.
- Collaboration and influence across ERM, Internal Audit, Legal, Privacy, Procurement, and technology organizations.
N/A
Physical Demands- Stationary Position: Frequently
- Vision: 20/20 corrected vision
- Hearing: Receive detailed information if spoken to