The Risk team is responsible for Upstart's enterprise risk management program and risk governance ... As the Senior Manager, Technology Risk you will lead the second-line technology and information ...
IT Risk and Compliance Analyst
Portland, OR · On-site
$99K - $100K/yr
The ideal candidate will be responsible for ensuring that IT risk management processes are embedded in the enterprise, enabling optimal risk assessments returns. This role involves supporting IT risk ...
Quick apply
IT Risk and Compliance Analyst
Portland, OR · On-site
$99K - $100K/yr
The ideal candidate will be responsible for ensuring that IT risk management processes are embedded in the enterprise, enabling optimal risk assessments returns. This role involves supporting IT risk ...
Develop and implement IT risk management frameworks * Provide actionable recommendations to mitigate risk * Collaborate with clients to align solutions with business goals * Prepare clear reports and ...
Develop and implement IT risk management frameworks * Provide actionable recommendations to mitigate risk * Collaborate with clients to align solutions with business goals * Prepare clear reports and ...
Senior Auditor, Technology - Global Audit & Enterprise Risk Management
Portland, OR · On-site
$85K - $105K/yr
Enterprise Risk Management: Execute deep-dive testing and analysis of cybersecurity and enterprise technology risks, driving mitigation strategies aligned with business objectives. * Evaluate ...
Senior Auditor, Technology - Global Audit & Enterprise Risk Management
Portland, OR · On-site
$85K - $105K/yr
Enterprise Risk Management: Execute deep-dive testing and analysis of cybersecurity and enterprise technology risks, driving mitigation strategies aligned with business objectives. * Evaluate ...
Enterprise Risk Management: Execute deep-dive testing and analysis of cybersecurity and enterprise technology risks, driving mitigation strategies aligned with business objectives. * Evaluate ...
Enterprise Risk Management: Execute deep-dive testing and analysis of cybersecurity and enterprise technology risks, driving mitigation strategies aligned with business objectives. * Evaluate ...
Senior Auditor, Technology - Global Audit & Enterprise Risk Management
Portland, OR · On-site
$85K - $105K/yr
Enterprise Risk Management: Execute deep-dive testing and analysis of cybersecurity and enterprise technology risks, driving mitigation strategies aligned with business objectives. * Evaluate ...
Senior Auditor, Technology - Global Audit & Enterprise Risk Management
Portland, OR · On-site
$85K - $105K/yr
Enterprise Risk Management: Execute deep-dive testing and analysis of cybersecurity and enterprise technology risks, driving mitigation strategies aligned with business objectives. * Evaluate ...
Senior Auditor, Technology - Global Audit & Enterprise Risk Management
Portland, OR · On-site
$85K - $105K/yr
Enterprise Risk Management: Execute deep-dive testing and analysis of cybersecurity and enterprise technology risks, driving mitigation strategies aligned with business objectives. * Evaluate ...
Senior Auditor, Technology - Global Audit & Enterprise Risk Management
Portland, OR · On-site
$85K - $105K/yr
Enterprise Risk Management: Execute deep-dive testing and analysis of cybersecurity and enterprise technology risks, driving mitigation strategies aligned with business objectives. * Evaluate ...
Evaluate IT system configurations, access controls, change management, and segregation of duties ... Minimum of 5-8 years of experience in IT audit, cybersecurity, or technology risk management ...
Evaluate IT system configurations, access controls, change management, and segregation of duties ... Minimum of 5-8 years of experience in IT audit, cybersecurity, or technology risk management ...
Consultant, Risk Management
$75 - $150/hr
We provide data-driven, technology-enabled advisory, implementation, and staffing solutions to the ... Treliant's Risk Management service line is looking for Consultants who will work on client teams ...
Consultant, Risk Management
$75 - $150/hr
We provide data-driven, technology-enabled advisory, implementation, and staffing solutions to the ... Treliant's Risk Management service line is looking for Consultants who will work on client teams ...
Manager, Third Party Risk Management
OR · On-site +1
... technology and information security risk, treasury risk, and compliance risk. The Risk team partners closely with business leaders, executive management, and the Board to ensure material risks are ...
Manager, Third Party Risk Management
OR · On-site +1
... technology and information security risk, treasury risk, and compliance risk. The Risk team partners closely with business leaders, executive management, and the Board to ensure material risks are ...
Cyber and Tech Risk UW SR
Portland, OR · On-site
$104K - $123K/yr
This role builds and manages strong broker relationships, provides market insight in a rapidly evolving cyber risk landscape, and positions the organization as a leader in the primary cyber market.
Cyber and Tech Risk UW SR
Portland, OR · On-site
$104K - $123K/yr
This role builds and manages strong broker relationships, provides market insight in a rapidly evolving cyber risk landscape, and positions the organization as a leader in the primary cyber market.
Cyber and Tech Risk UW SR
Portland, OR · On-site +1
$103K - $122K/yr
... and technology risk. We combine underwriting expertise, cyber risk intelligence, and advanced ... Our cyber offerings are supported by proactive risk management services and data driven insights ...
Cyber and Tech Risk UW SR
Portland, OR · On-site +1
$103K - $122K/yr
... and technology risk. We combine underwriting expertise, cyber risk intelligence, and advanced ... Our cyber offerings are supported by proactive risk management services and data driven insights ...
$20/hr
This position has the responsibility for supporting risk management activities related to risk assessments and practices. This includes non-financial risk assessments, risk reviews, and supporting ...
$20/hr
This position has the responsibility for supporting risk management activities related to risk assessments and practices. This includes non-financial risk assessments, risk reviews, and supporting ...
SUMMARY The IT Risk Analyst II is responsible for measuring and identifying technical risks within ... Capable of managing varied assignments and working independently. * Ability to define problems ...
SUMMARY The IT Risk Analyst II is responsible for measuring and identifying technical risks within ... Capable of managing varied assignments and working independently. * Ability to define problems ...
Senior Third-Party Risk Management Analyst
Hillsboro, OR · On-site
$93K - $111K/yr
Description The Senior Third-Party Risk Management (TPRM) Analyst is responsible for performing ... First Tech is not currently offering Visa transfer or sponsorship for this position
Quick apply
Senior Third-Party Risk Management Analyst
Hillsboro, OR · On-site
$93K - $111K/yr
Description The Senior Third-Party Risk Management (TPRM) Analyst is responsible for performing ... First Tech is not currently offering Visa transfer or sponsorship for this position
Principal Program Manager, Tech Risk (BC/DR)
OR · On-site +1
... technology services can effectively respond to and recover from disruptive events ... This role sits in the first line of defense and partners closely with Enterprise Risk Management ...
Principal Program Manager, Tech Risk (BC/DR)
OR · On-site +1
... technology services can effectively respond to and recover from disruptive events ... This role sits in the first line of defense and partners closely with Enterprise Risk Management ...
Lead enterprise vulnerability management initiatives and partner with technical owners to ensure ... Technology risk management This role requires working from a U.S. Bank location three (3) or more ...
Lead enterprise vulnerability management initiatives and partner with technical owners to ensure ... Technology risk management This role requires working from a U.S. Bank location three (3) or more ...
Senior Third-Party Risk Management Analyst
Hillsboro, OR · On-site
$93K - $111K/yr
Description The Senior Third-Party Risk Management (TPRM) Analyst is responsible for performing ... First Tech is not currently offering Visa transfer or sponsorship for this position
Senior Third-Party Risk Management Analyst
Hillsboro, OR · On-site
$93K - $111K/yr
Description The Senior Third-Party Risk Management (TPRM) Analyst is responsible for performing ... First Tech is not currently offering Visa transfer or sponsorship for this position
Senior Third-Party Risk Management Analyst
Hillsboro, OR · On-site
$93K - $111K/yr
Description The Senior Third-Party Risk Management (TPRM) Analyst is responsible for performing ... First Tech is not currently offering Visa transfer or sponsorship for this position
Senior Third-Party Risk Management Analyst
Hillsboro, OR · On-site
$93K - $111K/yr
Description The Senior Third-Party Risk Management (TPRM) Analyst is responsible for performing ... First Tech is not currently offering Visa transfer or sponsorship for this position
OR · On-site
Because crypto, stablecoins and blockchain aren't just technologies. They're tools for global ... Own and build the end-to-end enterprise risk management framework for MoonPay, including policies ...
Intern Technology Risk Management information
What does a technology risk intern do?
What are the big 4 internships?
What does an Intern in Technology Risk Management do?
What types of projects or tasks can an Intern in Technology Risk Management expect to work on?
What are the key skills and qualifications needed to thrive as an Intern in Technology Risk Management, and why are they important?
How much does a technology risk manager make at Capital One?
What is the difference between Intern Technology Risk Management vs Intern Cybersecurity?
| Aspect | Intern Technology Risk Management | Intern Cybersecurity |
|---|---|---|
| Certifications | Basic knowledge of risk management frameworks | Fundamentals of cybersecurity and security protocols |
| Work Environment | Risk assessment, compliance, policy development | Security monitoring, threat analysis, incident response |
| Industry Usage | Financial, healthcare, technology sectors | IT, finance, government agencies |
Intern Technology Risk Management focuses on identifying and mitigating risks related to technology and compliance, while Intern Cybersecurity emphasizes protecting systems from security threats. Both roles often overlap but serve distinct functions within organizations' tech departments.
What does a technology risk manager do?
Job description
The Team:Â
Upstart's Risk team is enhancing its second line of defense function in support of our application to establish Upstart Bank, N.A., a de novo national bank. The Risk team is responsible for Upstart's enterprise risk management program and risk governance, and for providing independent oversight and credible challenge across all core risk categories- including operational risk, third party risk, technology and information security risk, and treasury risk. We partner with first-line business functions, senior and executive leadership, and the board of directors to ensure effective identification, assessment, monitoring, reporting, and control of material risks, in alignment with OCC, FDIC, and FFIEC regulatory expectations.
As the Senior Manager, Technology Risk you will lead the second-line technology and information security risk oversight program for Upstart Bank. You will establish the bank's 2LOD technology risk framework- leveraging and enhancing Upstart's existing technology and information security risk infrastructure to meet bank regulatory standards- and will provide independent oversight and credible challenge of the first-line technology and information security functions across all technology domains, including IT operations, cybersecurity, cloud infrastructure, affiliate-provided technology, and core banking systems. This role reports to the head of third party and technology risk and manages a team of two technology and security risk professionals.Â
How you'll make an impact
- Provide independent second-line review and credible challenge of first-line technology and information security activities, including but not limited to: cybersecurity controls, software development lifecycle (SDLC) and incident response programs, technology resiliency and third-party arrangements
- Oversee completion of the FFIEC Cybersecurity Assessment Tool (CAT) or equivalent framework; conduct technology and security risk assessments; and provide independent oversight of technology and security risks in alignment with OCC guidance on cloud computing
- Serve as a primary second-line point of contact for OCC examiners, internal audit, and other external stakeholders on technology risk and information security program topics and inquiries; prepare and deliver technology risk reporting to risk committees, the CRO, and the board.Â
- Build and lead a growing Technology Risk team, shaping how the bank identifies, prioritizes, and responds to its most important technology and security risks in alignment with applicable industry regulations
- Partner with first-line IT and cybersecurity teams, TPRM, ERM, Legal, and Compliance to ensure technology and information security risk is integrated into enterprise risk programs, cross-functional risk assessments, and the bank's overall 2LOD reporting and governance structure
Minimum QualificationsÂ
- Bachelor's degree or equivalent practical experience in information technology, cybersecurity, or a related field
- 8+ years of experience in technology risk, information security risk management, IT audit, or GRC in a banking or financial services environment
- 3+ years of direct people management experience leading technology risk, information security governance, risk, and compliance, or information technology audit professionals
- Demonstrated experience applying FFIEC IT Examination Handbook standards and OCC guidance on technology risk and information security in a bank or federally regulated institution
- Experience engaging banking regulators (OCC, FDIC, or Federal Reserve) on technology risk, cybersecurity, or IT controls examination matters
Preferred Qualifications
- Experience building or significantly enhancing a technology risk or information security GRC program in a de novo bank, early-stage bank, or similar environment where the program required meaningful design and build-out
- Knowledge of cloud risk management and OCC/FFIEC guidance on cloud computing (OCC Bulletin 2020-46), particularly in cloud-native or fintech-adjacent technology environments
- Familiarity with affiliate technology risk oversight, including independent oversight of bank-affiliate technology service arrangements, associated data segregation requirements, and Regulation W implications
- Experience with GRC tool implementation or administration in a bank regulatory context
- Current professional certification in information security or technology risk management (CISSP, CISA, CRISC, CISM, or comparable)
- Knowledge of AI/ML technology risk and related governance considerations in a fintech, lending, or model-intensive operating environment
Position location This role is available in the following locations: RemoteÂ
Travel requirements As a digital first company, the majority of your work can be accomplished remotely. The majority of our employees can live and work anywhere in the U.S but are encouraged to to still spend high quality time in-person collaborating via regular onsites. The in-person sessions' cadence varies depending on the team and role; most teams meet once or twice per quarter for 2-4 consecutive days at a time.
#LI-REMOTE
#LI-MidSeniorÂ