1

Intern Technology Risk Management Jobs in Berkeley, CA

Sr. Technology Auditor

San Francisco, CA · On-site

$110K - $145K/yr

Who You Are * 3-4 years of experience in IT auditing, risk management, or information security. * Experience with SOX IT controls (ITGCs & ITACs) and a solid understanding of ICFR concepts and ...

Specific Duties and Responsibilities Responsible for strategic leadership, oversight, and day-to-day management of the IT SOX compliance program. * Oversee IT risk assessment and scoping process to ...

Specific Duties and Responsibilities • Responsible for strategic leadership, oversight, and day-to-day management of the IT SOX compliance program. * • Oversee IT risk assessment and scoping ...

About Column For companies building financial technology and transforming the financial services ... risk management, information security, model risk, privacy, financial, operational, etc. - and ...

next page

Showing results 1-20

Intern Technology Risk Management information

See Berkeley, CA salary details

$10

$20

$29

How much do intern technology risk management jobs pay per hour?

As of Jul 14, 2026, the average hourly pay for intern technology risk management in Berkeley, CA is $20.86, according to ZipRecruiter salary data. Most workers in this role earn between $17.64 and $23.56 per hour, depending on experience, location, and employer.

What does a technology risk intern do?

A technology risk intern supports the identification, assessment, and mitigation of IT and cybersecurity risks within an organization. They assist with risk analysis, audit processes, and compliance efforts, often using tools like risk management software and working under the supervision of experienced professionals. The role provides exposure to risk frameworks and industry standards such as ISO 27001 or NIST.

What are the big 4 internships?

The Big 4 internships typically refer to internship programs at Deloitte, PricewaterhouseCoopers (PwC), Ernst & Young (EY), and KPMG. These firms offer internships in areas such as technology risk management, audit, consulting, and advisory, providing valuable experience and potential pathways to full-time roles in the professional services industry.

What does an Intern in Technology Risk Management do?

An Intern in Technology Risk Management assists teams in identifying, assessing, and mitigating risks related to technology systems and processes within an organization. Their responsibilities often include supporting risk assessments, monitoring compliance with IT policies, helping prepare reports, and participating in audits. This role provides hands-on experience with cybersecurity practices, regulatory requirements, and risk analysis tools, making it an excellent learning opportunity for students and recent graduates interested in IT risk and security.

What types of projects or tasks can an Intern in Technology Risk Management expect to work on?

As an Intern in Technology Risk Management, you can expect to assist with a variety of tasks such as conducting risk assessments, supporting audits of IT systems, and helping to develop or review cybersecurity policies. You may also be involved in monitoring compliance with regulatory standards and collaborating with IT and business teams to identify potential vulnerabilities. This role offers a hands-on introduction to both technical and analytical aspects of managing technology-related risks within an organization.

What are the key skills and qualifications needed to thrive as an Intern in Technology Risk Management, and why are they important?

To thrive as an Intern in Technology Risk Management, you need a foundational understanding of information security, risk assessment, and IT systems, often supported by coursework in computer science or related fields. Familiarity with risk management frameworks (such as ISO 27001), cybersecurity tools, and basic data analysis platforms is highly valued. Strong analytical thinking, attention to detail, and effective communication help interns excel in identifying risks and collaborating with teams. These skills and qualities are critical for ensuring technology risks are properly identified, assessed, and mitigated to protect organizational assets.

How much does a technology risk manager make at Capital One?

A Technology Risk Manager at Capital One typically earns between $90,000 and $130,000 annually, depending on experience and location. The role involves assessing and mitigating technology-related risks, often requiring knowledge of cybersecurity tools and risk management frameworks.

What is the difference between Intern Technology Risk Management vs Intern Cybersecurity?

AspectIntern Technology Risk ManagementIntern Cybersecurity
CertificationsBasic knowledge of risk management frameworksFundamentals of cybersecurity and security protocols
Work EnvironmentRisk assessment, compliance, policy developmentSecurity monitoring, threat analysis, incident response
Industry UsageFinancial, healthcare, technology sectorsIT, finance, government agencies

Intern Technology Risk Management focuses on identifying and mitigating risks related to technology and compliance, while Intern Cybersecurity emphasizes protecting systems from security threats. Both roles often overlap but serve distinct functions within organizations' tech departments.

What does a technology risk manager do?

A technology risk manager identifies, assesses, and mitigates risks related to information technology systems and infrastructure. They develop policies, implement controls, and monitor security measures to protect an organization from cyber threats, data breaches, and operational disruptions. Strong analytical skills and knowledge of cybersecurity tools are essential for this role.
What cities near Berkeley, CA are hiring for Intern Technology Risk Management jobs? Cities near Berkeley, CA with the most Intern Technology Risk Management job openings:
Director, Information Security

Director, Information Security

SAN FRANCISCO FEDERAL CREDIT UNION

San Francisco, CA • Hybrid

Full-time

Posted 12 days ago


Job description

About Us

San Francisco Federal Credit Union is a member-driven financial institution committed to delivering exceptional service, strengthening our community, and creating a people-first culture. We invest in our people and empower leaders to drive meaningful impact for our members, teams, and communities.

Role Overview

The Director of Information Security is responsible for leading and overseeing the Credit Union’s information security, cybersecurity, and technology risk management programs. This role is accountable for protecting organizational systems, networks, applications, and data while ensuring compliance with regulatory requirements and industry best practices.

Reporting directly to the Chief Technology Officer (CTO), with a dotted-line reporting relationship to the Chief Risk Officer (CRO), the Director of Information Security partners closely with Information Technology, Risk, Compliance, Internal Audit, and business leaders to strengthen the organization’s cybersecurity posture, manage technology-related risk, and support operational resilience.

The Director will lead information security operations, governance, incident response, vulnerability management, business continuity coordination, security awareness, and third-party technology risk oversight while helping enable secure digital transformation and member trust.

Key ResponsibilitiesInformation Security Strategy & Governance
  • Develop, implement, and maintain the Credit Union’s enterprise information security program and cybersecurity roadmap.
  • Establish security policies, standards, procedures, and controls aligned with organizational objectives and regulatory expectations.
  • Partner with executive leadership to identify and manage information security and technology-related risks.
  • Provide regular reporting and updates on security posture, incidents, vulnerabilities, and remediation efforts.
  • Promote a culture of security awareness and accountability across the organization.
Cybersecurity Operations
  • Oversee cybersecurity monitoring, threat detection, incident response, and remediation activities.
  • Lead vulnerability management, penetration testing coordination, patch management oversight, and security assessments.
  • Manage endpoint security, identity and access management, email security, network security, and cloud security controls.
  • Coordinate response efforts for cybersecurity incidents, including investigation, containment, recovery, and post-incident analysis.
  • Maintain and test incident response procedures and escalation protocols.
  • Oversee BYOD policy enforcement, mobile device security, and personal device risk controls.
  • Monitor threat intelligence sources and dark web indicators relevant to member data and organizational risk.
  • Collaborate with fraud and operations teams on account takeover, ACH fraud, and identity-related threats at the security/fraud intersection.
Risk Management & Compliance
  • Partner closely with the Chief Risk Officer on enterprise risk management initiatives related to information security and technology risk.
  • Ensure compliance with NCUA, FFIEC, GLBA, PCI-DSS, and other applicable regulatory and cybersecurity requirements.
  • Ensure compliance with NCUA 12 CFR Part 748 cybersecurity incident notification requirements.
  • Support internal and external audits, examinations, and regulatory reviews.
  • Oversee third-party technology risk assessments and vendor cybersecurity reviews.
  • Participate in business continuity and disaster recovery planning, testing, and resilience efforts.
Security Awareness & Training
  • Develop and administer enterprise-wide information security awareness and training programs.
  • Conduct phishing simulations, employee education campaigns, and ongoing awareness initiatives.
  • Provide guidance to leaders and employees regarding cybersecurity best practices and emerging threats.
Technology Partnership & Project Support
  • Collaborate with IT and business teams to ensure security requirements are integrated into technology projects and system implementations.
  • Provide security guidance for digital banking platforms, cloud solutions, third-party integrations, and new technologies.
  • Evaluate and design security architecture across on-premise, cloud, and hybrid environments, and recommend improvements to strengthen the overall security posture.
  • Support AI governance and emerging technology risk assessments, including participation in enterprise AI evaluation and policy development.
QualificationsEducation & Experience
  • Bachelor’s degree in Information Security, Cybersecurity, Information Technology, Computer Science, or related field required; advanced degree preferred.
  • Minimum of 7 years of progressive information security or cybersecurity experience, preferably within financial services or a regulated industry.
  • Minimum of 3 years of leadership or management experience.
  • Experience with cybersecurity operations, regulatory compliance, risk management, and incident response.
  • Credit union or banking industry experience strongly preferred.
Knowledge, Skills & Abilities
  • Strong understanding of cybersecurity frameworks, governance, and risk management principles.
  • Knowledge of financial institution regulatory requirements including FFIEC, NCUA, GLBA, PCI-DSS, and vendor management expectations.
  • Experience designing and evaluating security architecture across on-premise, cloud, and hybrid environments.
  • Experience with SIEM tools, endpoint protection, vulnerability management, identity and access management, and cloud security.
  • Strong analytical, problem-solving, and decision-making skills.
  • Excellent communication and executive presentation abilities.
  • Ability to balance operational responsiveness with strategic planning.
  • Strong collaboration and relationship-building capabilities.
Preferred Qualifications
  • Industry certifications such as CISSP, CISM, CRISC, CEH, or similar.
  • Experience supporting digital banking platforms and financial services technologies.
  • Experience with cybersecurity audits, examinations, and remediation programs.
  • Familiarity with business continuity and disaster recovery frameworks.
Leadership & Core Competencies
  • Strategic thinking & execution
  • Accountability & ownership
  • Stakeholder influence
  • Change leadership
  • Continuous improvement
  • Member / customer-centric mindset
Decision-Making Authority

This role exercises independent judgment in areas such as prioritization, resource allocation, policy/process recommendations, and execution of initiatives aligned with organizational objectives.

Work Environment
  • Hybrid work arrangement; in-office schedule to be confirmed.
  • Regular collaboration with leaders and cross-functional partners.
  • Occasional travel may be required.
Equal Opportunity Statement

San Francisco Federal Credit Union is an equal opportunity employer and is committed to fostering an inclusive environment. We do not discriminate based on race, color, religion, gender, gender identity or expression, sexual orientation, national origin, age, disability, veteran status, or any other protected characteristic.