1

Intern Technology Risk Management Jobs in Tennessee

We are seeking a Nashville-based Risk Officer to join our Institutional Investment Management ... new technologies into our business or providing thoughtful advice to our clients, we are fully ...

next page

Showing results 1-20

Intern Technology Risk Management information

What does a technology risk intern do?

A technology risk intern supports the identification, assessment, and mitigation of IT and cybersecurity risks within an organization. They assist with risk analysis, audit processes, and compliance efforts, often using tools like risk management software and working under the supervision of experienced professionals. The role provides exposure to risk frameworks and industry standards such as ISO 27001 or NIST.

What are the big 4 internships?

The Big 4 internships typically refer to internship programs at Deloitte, PricewaterhouseCoopers (PwC), Ernst & Young (EY), and KPMG. These firms offer internships in areas such as technology risk management, audit, consulting, and advisory, providing valuable experience and potential pathways to full-time roles in the professional services industry.

What does an Intern in Technology Risk Management do?

An Intern in Technology Risk Management assists teams in identifying, assessing, and mitigating risks related to technology systems and processes within an organization. Their responsibilities often include supporting risk assessments, monitoring compliance with IT policies, helping prepare reports, and participating in audits. This role provides hands-on experience with cybersecurity practices, regulatory requirements, and risk analysis tools, making it an excellent learning opportunity for students and recent graduates interested in IT risk and security.

What types of projects or tasks can an Intern in Technology Risk Management expect to work on?

As an Intern in Technology Risk Management, you can expect to assist with a variety of tasks such as conducting risk assessments, supporting audits of IT systems, and helping to develop or review cybersecurity policies. You may also be involved in monitoring compliance with regulatory standards and collaborating with IT and business teams to identify potential vulnerabilities. This role offers a hands-on introduction to both technical and analytical aspects of managing technology-related risks within an organization.

What are the key skills and qualifications needed to thrive as an Intern in Technology Risk Management, and why are they important?

To thrive as an Intern in Technology Risk Management, you need a foundational understanding of information security, risk assessment, and IT systems, often supported by coursework in computer science or related fields. Familiarity with risk management frameworks (such as ISO 27001), cybersecurity tools, and basic data analysis platforms is highly valued. Strong analytical thinking, attention to detail, and effective communication help interns excel in identifying risks and collaborating with teams. These skills and qualities are critical for ensuring technology risks are properly identified, assessed, and mitigated to protect organizational assets.

How much does a technology risk manager make at Capital One?

A Technology Risk Manager at Capital One typically earns between $90,000 and $130,000 annually, depending on experience and location. The role involves assessing and mitigating technology-related risks, often requiring knowledge of cybersecurity tools and risk management frameworks.

What is the difference between Intern Technology Risk Management vs Intern Cybersecurity?

AspectIntern Technology Risk ManagementIntern Cybersecurity
CertificationsBasic knowledge of risk management frameworksFundamentals of cybersecurity and security protocols
Work EnvironmentRisk assessment, compliance, policy developmentSecurity monitoring, threat analysis, incident response
Industry UsageFinancial, healthcare, technology sectorsIT, finance, government agencies

Intern Technology Risk Management focuses on identifying and mitigating risks related to technology and compliance, while Intern Cybersecurity emphasizes protecting systems from security threats. Both roles often overlap but serve distinct functions within organizations' tech departments.

What does a technology risk manager do?

A technology risk manager identifies, assesses, and mitigates risks related to information technology systems and infrastructure. They develop policies, implement controls, and monitor security measures to protect an organization from cyber threats, data breaches, and operational disruptions. Strong analytical skills and knowledge of cybersecurity tools are essential for this role.
What are the most commonly searched types of Technology Risk Management jobs in Tennessee? The most popular types of Technology Risk Management jobs in Tennessee are:
What cities in Tennessee are hiring for Intern Technology Risk Management jobs? Cities in Tennessee with the most Intern Technology Risk Management job openings:

Director of IT Governance, Risk and Compliance

orionfcu

Memphis, TN

Other

Posted 14 days ago


Job description

POSITION PURPOSE

The Director of IT Governance, Risk and Compliance provides strategic leadership and oversight of the organization's IT risk posture, governance frameworks, and regulatory compliance within a financial services environment. This role reports to the CIO and ensures alignment between IT risk management practices and the institution's risk appetite, while enabling secure, compliant, and resilient technology operations. The director serves as a key liaison to regulators and internal audit, leads enterprise IT risk programs, and partners closely with information security, legal, compliance, and business units to proactively identify, assess, and mitigate risk across systems, vendors, and emerging technologies.

ESSENTIAL FUNCTIONS AND BASIC DUTIES

1.    Define And maintain the IT risk management framework, ensuring alignment with enterprise risk appetite and business strategy.
2.    Develop and execute a multi year IT risk maturity road map, including governance, controls, and reporting enhancements.
3.    Provide executive level and board reporting on IT risk posture, trends, and emerging threats.
4.    Establish and oversee IT governance structures, policies, standards, and procedures.
5.    Lead enterprise IT risk assessments, including infrastructure, applications, and security architecture reviews.
6.    Identify vulnerabilities, evaluate risk exposure, and ensure timely mitigation of identified issues.
7.    Oversee risk acceptance processes and provide escalation authority for material IT and security risks.
8.    Review and challenge risk decisions, ensuring consistency with organizational risk tolerance.
9.    Serve as primary point of contact for IT regulatory examinations and audits.
10.    Manage IT exam life cycle, including preparation, coordination, and response.
11.    Oversee tracking, reporting, and remediation of IT findings from regulators and internal/ external audits.
12.    Maintain comprehensive documentation of audits, findings, and corrective actions.
13.    Interpret and operationalize regulatory requirements related to IT systems, data protection, and information security to include SOX, data privacy laws, and financial regulations.
14.    Develop and implement strategies to ensure ongoing compliance with applicable laws and standards.
15.    Partner with legal and compliance teams to monitor regulatory changes and assess impact on IT controls.
16.    Provide oversight of IT risk associated with third party vendors, including material risk vendor reviews and escalations.
17.    Collaborate with vendor management teams to ensure adequate controls and risk mitigation strategies.
18.    Assess risks associated with new technologies, products, and services, ensuring appropriate governance and control implementation.
19.    Partner closely with information security to align on security controls, risk assessments, and remediation priorities.
20.    Work with business and technology stakeholders to embed risk management practices into day-to-day operations.
21.    Promote a strong risk-aware culture across the organization.

QUALIFICATIONS

EDUCATION/CERTIFICATION: Bachelor’s degree in Information Technology, Cybersecurity, Risk Management, or a related field. Advanced degree preferred. Relevant certifications preferred (e.g., CISM, CRISC, CISSP, CISA)
REQUIRED KNOWLEDGE: Strong understanding of SOX, data privacy regulations, and technology compliance requirements.

EXPERIENCE REQUIRED: Ten or more (10+) years of progressive experience in IT risk management, IT audit, information security, or governance within financial services or a highly regulated industry.
Deep expertise in IT risk frameworks, such as NIST, COBIT, ISO 27001, and regulatory environments.
Proven experience managing regulatory exams and audit engagements.

SKILLS/ABILITIES:

Ability to communicate effectively with technical and non-technical stakeholders, including senior leadership.
Demonstrated ability to lead complex risk programs and influence senior stakeholders, including executive leadership.
Very strong analytical & problem-solving skills