Experience: 8+ years in IT security or application development, with proven expertise in risk assurance and emerging technologies. Bachelor's degree or equivalent experience. Preferred Certifications:
Experience: 8+ years in IT security or application development, with proven expertise in risk assurance and emerging technologies. Bachelor's degree or equivalent experience. Preferred Certifications:
Experience: 8+ years in IT security or application development, with proven expertise in risk assurance and emerging technologies. Bachelor's degree or equivalent experience. Preferred Certifications:
Experience: 8+ years in IT security or application development, with proven expertise in risk assurance and emerging technologies. Bachelor's degree or equivalent experience. Preferred Certifications:
Experience: 8+ years in IT security or application development, with proven expertise in risk assurance and emerging technologies. Bachelor's degree or equivalent experience. Preferred Certifications:
Experience: 8+ years in IT security or application development, with proven expertise in risk assurance and emerging technologies. Bachelor's degree or equivalent experience. Preferred Certifications:
Experience: 8+ years in IT security or application development, with proven expertise in risk assurance and emerging technologies. Bachelor's degree or equivalent experience. Preferred Certifications:
Experience: 8+ years in IT security or application development, with proven expertise in risk assurance and emerging technologies. Bachelor's degree or equivalent experience. Preferred Certifications:
Senior IT Risk Analyst
Plymouth, MA · Hybrid
Senior IT Risk Analyst (First Line of Defense) Rockland Trust is seeking a Senior IT Risk Analyst to advance the Bank's First Line of Defense IT Risk Management Program. This is a hybrid role, 3 days ...
Senior IT Risk Analyst
Plymouth, MA · Hybrid
Senior IT Risk Analyst (First Line of Defense) Rockland Trust is seeking a Senior IT Risk Analyst to advance the Bank's First Line of Defense IT Risk Management Program. This is a hybrid role, 3 days ...
Senior IT Risk Analyst
Plymouth, MA · On-site
Senior IT Risk Analyst (First Line of Defense) Rockland Trust is seeking a Senior IT Risk Analyst to advance the Bank's First Line of Defense IT Risk Management Program. This is a hybrid role, 3 days ...
Senior IT Risk Analyst
Plymouth, MA · On-site
Senior IT Risk Analyst (First Line of Defense) Rockland Trust is seeking a Senior IT Risk Analyst to advance the Bank's First Line of Defense IT Risk Management Program. This is a hybrid role, 3 days ...
Experience: 8+ years in IT security or application development, with proven expertise in risk assurance and emerging technologies. Bachelor's degree or equivalent experience. Preferred Certifications:
Experience: 8+ years in IT security or application development, with proven expertise in risk assurance and emerging technologies. Bachelor's degree or equivalent experience. Preferred Certifications:
Work with project teams to provide Privacy Impact Assessments Conduct IT Risk Assessments on External Vendor's system architecture and design to ensure the security requirements meets maturity levels ...
Work with project teams to provide Privacy Impact Assessments Conduct IT Risk Assessments on External Vendor's system architecture and design to ensure the security requirements meets maturity levels ...
Senior IT Risk Analyst
Plymouth, MA · Hybrid
Senior IT Risk Analyst (First Line of Defense) Rockland Trust is seeking a Senior IT Risk Analyst to advance the Bank's First Line of Defense IT Risk Management Program. This is a hybrid role, 3 days ...
Senior IT Risk Analyst
Plymouth, MA · Hybrid
Senior IT Risk Analyst (First Line of Defense) Rockland Trust is seeking a Senior IT Risk Analyst to advance the Bank's First Line of Defense IT Risk Management Program. This is a hybrid role, 3 days ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
IT Risk & Security Consultant
Akron, OH · On-site
The IT Risk & Security Consultant is responsible for providing operational support, security planning, consulting and assessments services across the enterprise. The role will participate in the ...
IT Risk & Security Consultant
Akron, OH · On-site
The IT Risk & Security Consultant is responsible for providing operational support, security planning, consulting and assessments services across the enterprise. The role will participate in the ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
Lead IT Risk Control Analyst
Charlotte, NC · On-site
The Lead IT Risk Analyst is a subject-area specialist with specialized training, methods, and analytic techniques to create recommendations and directions for IT risk mitigation in a complex ...
Lead IT Risk Control Analyst
Charlotte, NC · On-site
The Lead IT Risk Analyst is a subject-area specialist with specialized training, methods, and analytic techniques to create recommendations and directions for IT risk mitigation in a complex ...
IT Risk Compliance Specialist
Pittsburgh, PA · On-site
$95.60K/yr
Job Title : IT Risk Compliance Specialist Department: Information Technology Location: Pittsburgh, PA Reports To: CIO Company Statement: Montauk Renewables, Inc. (NASDAQ: MNTK) is a renewable energy ...
IT Risk Compliance Specialist
Pittsburgh, PA · On-site
$95.60K/yr
Job Title : IT Risk Compliance Specialist Department: Information Technology Location: Pittsburgh, PA Reports To: CIO Company Statement: Montauk Renewables, Inc. (NASDAQ: MNTK) is a renewable energy ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
IT Risk & Security Consultant
Akron, OH · On-site
The IT Risk & Security Consultant is responsible for providing operational support, security planning, consulting and assessments services across the enterprise. The role will participate in the ...
IT Risk & Security Consultant
Akron, OH · On-site
The IT Risk & Security Consultant is responsible for providing operational support, security planning, consulting and assessments services across the enterprise. The role will participate in the ...
Risk Assurance Analyst
Marlborough, MA · On-site
$71.30K - $89.10K/yr
The Risk Assurance Analyst will support Risk Assurance functions including but not limited to ... Confident presenting information to all levels including to executives, as well as influencing and ...
Risk Assurance Analyst
Marlborough, MA · On-site
$71.30K - $89.10K/yr
The Risk Assurance Analyst will support Risk Assurance functions including but not limited to ... Confident presenting information to all levels including to executives, as well as influencing and ...
It Risk Assurance information
See salary details
$82.8K is the 25th percentile. Wages below this are outliers.
$65K - $83K
25% of jobs
$83K - $100.9K
13% of jobs
$100.9K - $118.9K
0% of jobs
The median wage is $128.2K / yr.
$118.9K - $136.8K
23% of jobs
$136.8K - $154.8K
6% of jobs
$169.2K is the 75th percentile. Wages above this are outliers.
$154.8K - $172.7K
9% of jobs
$172.7K - $190.7K
8% of jobs
$190.7K - $208.6K
2% of jobs
$208.6K - $226.6K
2% of jobs
$226.6K - $244.5K
2% of jobs
$244.5K - $262.5K
8% of jobs
$65K
$144.7K
$262.5K
How much do it risk assurance jobs pay per year?
As of May 30, 2026, the average yearly pay for it risk assurance in the United States is $144,712.00, according to ZipRecruiter salary data. Most workers in this role earn between $87,000.00 and $174,000.00 per year, depending on experience, location, and employer.
What are the key skills and qualifications needed to thrive as an IT Risk Assurance professional, and why are they important?
To thrive as an IT Risk Assurance professional, you need a solid understanding of information systems, risk management frameworks, and auditing principles, usually supported by a degree in information technology, cybersecurity, or a related field. Familiarity with tools like GRC (Governance, Risk, and Compliance) platforms, security assessment software, and certifications such as CISA or CISSP are typically required. Strong analytical thinking, attention to detail, and effective communication skills help professionals stand out in this role. These competencies are essential for accurately identifying, assessing, and mitigating IT risks to protect organizational assets and ensure regulatory compliance.
What are the typical challenges faced in an IT Risk Assurance role, and how can they be effectively managed?
Professionals in IT Risk Assurance often encounter the challenge of keeping up with rapidly evolving technology and regulatory requirements. Balancing thorough risk assessments with tight project deadlines can also be demanding, especially in large organizations with complex IT environments. Effective management involves continuous learning, strong communication with both technical and non-technical teams, and the ability to prioritize risks based on business impact. Leveraging industry frameworks and collaborating closely with stakeholders can help address these challenges and ensure robust risk mitigation.
What is IT Risk Assurance?
IT Risk Assurance refers to the process of identifying, evaluating, and managing risks related to an organization's information technology systems. Professionals in this field help ensure that IT systems are secure, reliable, and compliant with relevant regulations and standards. They perform assessments, audit IT processes, and recommend controls to minimize risks such as data breaches, system failures, or non-compliance. IT Risk Assurance is essential for protecting sensitive information and maintaining business continuity.
What is the difference between It Risk Assurance vs Cybersecurity Analyst?
| Aspect | It Risk Assurance | Cybersecurity Analyst |
|---|---|---|
| Certifications | ISO 27001, CISSP, CISA | CISSP, CompTIA Security+, CEH |
| Work Environment | Audit firms, consulting companies, corporate risk teams | IT security teams, corporate or government agencies |
| Primary Focus | Assessing and managing IT risks, compliance, controls | Detecting, preventing, and responding to security threats |
It Risk Assurance professionals focus on evaluating IT controls, compliance, and risk management processes, often within audit or consulting settings. Cybersecurity Analysts concentrate on protecting systems from threats through monitoring and incident response. While both roles require security certifications and involve IT security, their core responsibilities and work environments differ.
More about It Risk Assurance jobs
What cities are hiring for It Risk Assurance jobs? Cities with the most It Risk Assurance job openings:
What states have the most It Risk Assurance jobs? States with the most job openings for It Risk Assurance jobs include:
What job categories do people searching It Risk Assurance jobs look for? The top searched job categories for It Risk Assurance jobs are:
Job description
Are you ready to lead the charge in next-generation risk assurance? At Vanguard, we're redefining how security is done-leveraging AI-driven insights to protect millions of investors and safeguard a global technology ecosystem.
As a Senior Technical Risk Assurance Analyst, you'll lead comprehensive risk assessments across a rapidly-evolving technology landscape, encompassing on-premises and cloud-based applications, infrastructure, third-party vendors, and platforms utilizing artificial intelligence (AI). Employs advanced AI-driven tools to enable continuous security readiness, proactively identifying, tracking, and rating risks. Provides deep technical expertise and strategic consultation in the design, implementation, and enhancement of processes, tools, and methodologies used to assess, validate, and safeguard the integrity of enterprise systems, architectures, and configurations.
**This hybrid role can be based in Charlotte, NC, Dallas, TX, or Malvern, PA (HQ)**
What You'll Do
Lead Advanced Security Assessments: Drive comprehensive evaluations of security controls across cloud, on-prem, and AI-powered platforms. Identify vulnerabilities and deliver actionable solutions that make an impact.
Harness AI for Risk Management: Use advanced AI tools to continuously monitor, track, and predict risks. Enhance models for greater accuracy and align AI-driven insights with Vanguard's risk framework.
Influence Technology Decisions: Collaborate with IT leaders, business units, and vendors to shape secure implementations and guide adoption of emerging security initiatives.
Set the Standard: Define best practices for risk assessments, vulnerability management, and secure development processes. Update security standards and close gaps before they become threats.
Investigate & Innovate: Analyze complex security incidents, validate controls, and lead special projects that push the boundaries of cybersecurity.
Be the Expert: Stay ahead of industry trends and emerging technologies. Act as a trusted advisor on security practices and AI-driven risk strategies.
Experience:
8+ years in IT security or application development, with proven expertise in risk assurance and emerging technologies.
Bachelor's degree or equivalent experience.
Preferred Certifications: ISC CISSP CRISC CISA CCSP GIAC GSEC CEH
AI-focused certifications (AAISM, CSPAI) a plus
Special Factors
Sponsorship
Vanguard is not offering visa sponsorship for this position.About Vanguard
At Vanguard, we don't just have a mission-we're on a mission.
To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.
How We Work
Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.
About Vangard
Sourced by ZipRecruiter
Company size
11 - 50 Employees
Headquarters location
Tacoma, WA, US
Year founded
2001