1

Intern Technology Risk Management Jobs in Colorado

NISSC 3 Risk Manager

Colorado Springs, CO · On-site

$116K - $194K/yr

Significant experience (senior level) in risk management for complex programs, preferably in DoD, cyber, or systems/IT environments. Demonstrated expertise in proactively identifying, assessing, and ...

NISSC 3 Risk Manager

Colorado Springs, CO · On-site

$116K - $194K/yr

Significant experience (senior level) in risk management for complex programs, preferably in DoD, cyber, or systems/IT environments. Demonstrated expertise in proactively identifying, assessing, and ...

... management playbooks. * Provide strategic executive oversight for global safety, security standards, and the company's macro insurance and risk transfer strategy. * Build a technology-enabled risk ...

... management playbooks. * Provide strategic executive oversight for global safety, security standards, and the company's macro insurance and risk transfer strategy. * Build a technology-enabled risk ...

About Judi Health Judi Health is an enterprise health technology company providing a comprehensive ... Judi Health , which offers full-service health benefit management solutions to employers, TPAs, and ...

Enterprise Risk Management (ERM) and Third-Party Vendor Risk Management (TPVRM). Reporting to the ... Background in startup, aerospace, defense technology, or SaaS companies operating in regulated ...

... technology and governance for financial institutions * Strong project / program management skills ... Credit Risk: Underwriting and portfolio credit risk across products (e.g., PD/LGD/EAD modeling ...

next page

Showing results 1-20

Intern Technology Risk Management information

What does a technology risk intern do?

A technology risk intern supports the identification, assessment, and mitigation of IT and cybersecurity risks within an organization. They assist with risk analysis, audit processes, and compliance efforts, often using tools like risk management software and working under the supervision of experienced professionals. The role provides exposure to risk frameworks and industry standards such as ISO 27001 or NIST.

What are the big 4 internships?

The Big 4 internships typically refer to internship programs at Deloitte, PricewaterhouseCoopers (PwC), Ernst & Young (EY), and KPMG. These firms offer internships in areas such as technology risk management, audit, consulting, and advisory, providing valuable experience and potential pathways to full-time roles in the professional services industry.

What does an Intern in Technology Risk Management do?

An Intern in Technology Risk Management assists teams in identifying, assessing, and mitigating risks related to technology systems and processes within an organization. Their responsibilities often include supporting risk assessments, monitoring compliance with IT policies, helping prepare reports, and participating in audits. This role provides hands-on experience with cybersecurity practices, regulatory requirements, and risk analysis tools, making it an excellent learning opportunity for students and recent graduates interested in IT risk and security.

What types of projects or tasks can an Intern in Technology Risk Management expect to work on?

As an Intern in Technology Risk Management, you can expect to assist with a variety of tasks such as conducting risk assessments, supporting audits of IT systems, and helping to develop or review cybersecurity policies. You may also be involved in monitoring compliance with regulatory standards and collaborating with IT and business teams to identify potential vulnerabilities. This role offers a hands-on introduction to both technical and analytical aspects of managing technology-related risks within an organization.

What are the key skills and qualifications needed to thrive as an Intern in Technology Risk Management, and why are they important?

To thrive as an Intern in Technology Risk Management, you need a foundational understanding of information security, risk assessment, and IT systems, often supported by coursework in computer science or related fields. Familiarity with risk management frameworks (such as ISO 27001), cybersecurity tools, and basic data analysis platforms is highly valued. Strong analytical thinking, attention to detail, and effective communication help interns excel in identifying risks and collaborating with teams. These skills and qualities are critical for ensuring technology risks are properly identified, assessed, and mitigated to protect organizational assets.

How much does a technology risk manager make at Capital One?

A Technology Risk Manager at Capital One typically earns between $90,000 and $130,000 annually, depending on experience and location. The role involves assessing and mitigating technology-related risks, often requiring knowledge of cybersecurity tools and risk management frameworks.

What is the difference between Intern Technology Risk Management vs Intern Cybersecurity?

AspectIntern Technology Risk ManagementIntern Cybersecurity
CertificationsBasic knowledge of risk management frameworksFundamentals of cybersecurity and security protocols
Work EnvironmentRisk assessment, compliance, policy developmentSecurity monitoring, threat analysis, incident response
Industry UsageFinancial, healthcare, technology sectorsIT, finance, government agencies

Intern Technology Risk Management focuses on identifying and mitigating risks related to technology and compliance, while Intern Cybersecurity emphasizes protecting systems from security threats. Both roles often overlap but serve distinct functions within organizations' tech departments.

What does a technology risk manager do?

A technology risk manager identifies, assesses, and mitigates risks related to information technology systems and infrastructure. They develop policies, implement controls, and monitor security measures to protect an organization from cyber threats, data breaches, and operational disruptions. Strong analytical skills and knowledge of cybersecurity tools are essential for this role.
What are the most commonly searched types of Technology Risk Management jobs in Colorado? The most popular types of Technology Risk Management jobs in Colorado are:
What cities in Colorado are hiring for Intern Technology Risk Management jobs? Cities in Colorado with the most Intern Technology Risk Management job openings:
Director of Cybersecurity Governance, Risk, and Compliance

Director of Cybersecurity Governance, Risk, and Compliance

Ball Corporation

Westminster, CO • On-site

$143K - $225K/yr

Other

Posted 23 hours ago


Ball rating

8.0

Company rating: 8.0 out of 10

Based on 23 frontline employees who took The Breakroom Quiz


Job description

At Ball, integrity and trust are the foundation of who we are. Guided by our core values-"We Care. We Work. We Win."-we create a culture where every voice matters and every idea drives progress.  

Together with our global employees, customers, and partners, we're turning bold sustainability goals into reality and shaping a future we can all be proud of. 

Create a new future. Apply Today. 

The Director of Cybersecurity Governance, Risk, and Compliance (GRC) is accountable for designing, building, and leading enterprisewide cyber risk governance, regulatory compliance strategy, and boardlevel risk reporting for Ball Corporation's global manufacturing and supplychaindriven business. This role sets the enterprise cyber risk posture, translates business risk appetite into enforceable governance mechanisms, and ensures cybersecurity risk is measured, reported, and managed as a business risk and not a purely technical concern. The Director serves as Ball's primary authority on cybersecurity risk governance, regulatory compliance and assurance, and acts as a trusted advisor to the CISO, executive leadership, Legal, Internal Audit, and the Board. The role owns and governs all Security GRC subcapabilities: 1) Security Governance & Program Management, 2) Security Risk Management, 3) Security Assessments & Compliance Management, 4) CyberSupply Chain Risk Management, 5) Business Continuity Planning (cyber integration), 6) Security Training & Awareness, 7) Cyber Metrics and Reporting.

Essential Responsible Areas:

  • Establish and maintain the enterprise cybersecurity governance framework, including policies, standards, risk taxonomy, and accountability models, with a focus on building out missing program elements to elevate maturity.
  • Define and operationalize the enterprise cyber risk management program, including risk identification, assessment, prioritization, escalation, and reporting.
  • Own executive and Boardlevel cybersecurity risk & metrics reporting, ensuring alignment to business impact, materiality, and risk tolerance.
  • Lead the global cybersecurity compliance strategy, ensuring alignment with applicable regulatory, legal, and contractual requirements, with an emphasis on establishing rigorous security controls and repeatable compliance processes.
  • Provide senior oversight of cybersecurity audits, assessments, and assurance activities; ensure consistent and defensible outcomes.
  • Govern cyber supplychain and thirdparty risk management, embedding security risk considerations into vendor lifecycle processes.
  • Ensure cybersecurity risk is integrated into business continuity, crisis management, and enterprise resilience planning.
  • Build, lead, develop, and mentor the Security GRC team, establishing clear interfaces with other cybersecurity and business functions.
  • Ensure cybersecurity governance and compliance requirements are appropriately tailored to regional regulatory, legal, and operational realities while maintaining global consistency.
  • Partner with regional business and technology leaders to address localized cyber risk scenarios, including manufacturing, operational technology (OT), and supplychain considerations.
  • Oversee regional regulatory compliance obligations (e.g., data protection, critical infrastructure, export controls) and support regulatory inquiries or audits as required.
  • Enable effective risk communication and escalation between regions and corporate leadership, ensuring timely visibility of material risks.

Required Qualifications:

  • Bachelor's degree in Information Security, Computer Science, Risk Management, Business Administration, or a related field required; Master's degree (e.g., MBA or MS in Information Security/Risk Management) strongly preferred.
  • Minimum of 15 years of progressive experience in cybersecurity, technology risk, or enterprise risk management, including 7+ years leading and building GRC, risk, or compliance functions within complex, preferably global, organizations.
  • Demonstrated experience operating in regulated, assetintensive, or manufacturingcentric environments.
  • Deep knowledge of cybersecurity governance, risk, and compliance frameworks (with experience implementing NIST CSF and ISO 27001), and familiarity with relevant regulations (e.g., SOX ITGC, data protection laws).
  • CISSP or CISM certification required; CRISC, CGEIT, or similar riskfocused certification strongly preferred.

Compensation & Benefits: 

  • Expected Hiring Salary Range:$143,000, - $225,000   (Salary to be determined by the applicant's education, experience, knowledge, skills, and abilities, as well as internal equity and alignment with market data.)  
  • This role will be eligible to participate in the annual incentive compensation plan. 
  • Please visit our "Total Rewards" page to learn more about Ball's comprehensive benefits structure.  
  • Onsite Work Environment:This position is based in [add the location here] and requires regular in-person engagement by working on-site. Travel and local commute between Ball locations and other possible non-Ball locations may be required.  
  • Hybrid On-Site Work Environment: Based in Colorado, this position requires regular in-person engagement by working on-site for four (4) or more days per work week (with core collaboration days of Tuesday, Wednesday, and Thursday). [Travel and local commute between Ball locations and other possible non-Ball locations may be required.] 

When submitting your application to Ball, we encourage you to emphasize your skills, experience, and qualifications that align with the role.  

Ball Corporation is proud to be an Equal Opportunity Employer. We actively encourage applications from everybody. All qualified job applicants will receive consideration without regard to race, color, religion, creed, national origin, aboriginality, genetic information, ancestry, marital status, sex, sexual orientation, gender identity or expression, physical or mental disability, pregnancy, veteran status, age, political affiliation or any other non-merit characteristic. 

Please note the advertised job title might vary from the job title on the contract due to local job title structure and global HR systems. 

  • Under Colorado, California, Connecticut, Minnesota, and Pennsylvania law, you have the right to exclude or redact age-related details-such as your date of birth, school attendance dates, or graduation dates-from your resume, cover letter, CV, or other supporting documents (e.g., transcripts, certificates).  
  • Legal authorization to work in the U.S. We will not sponsor individuals for employment visa, now or in the future, for this job opening. 

* This position will be posted internally for a minimum of 5 days and will remain open until filled or adjusted based on the volume of applicants. 

No agencies please. 

Global Grade 14A


What Ball employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom