VP - IT Risk Management
$171.80K - $215K/yr
Company Description A Major International Bank, their Risk Management Department (Midtown) is seeking a VP - IT Risk Management, and VP Operational Risk in their HQ NYC office. The incumbent will be ...
VP - IT Risk Management
$171.80K - $215K/yr
Company Description A Major International Bank, their Risk Management Department (Midtown) is seeking a VP - IT Risk Management, and VP Operational Risk in their HQ NYC office. The incumbent will be ...
Principal IT Risk Management Analyst
Herndon, VA · On-site +1
The Principal IT Risk Management Analyst is a senior-level role responsible for leading and overseeing comprehensive IT risk management efforts across the organization. This position provides ...
Principal IT Risk Management Analyst
Herndon, VA · On-site +1
The Principal IT Risk Management Analyst is a senior-level role responsible for leading and overseeing comprehensive IT risk management efforts across the organization. This position provides ...
IT Risk and Compliance Analyst
Portland, OR · On-site
$99.70K - $100.20K/yr
The ideal candidate will be responsible for ensuring that IT risk management processes are embedded in the enterprise, enabling optimal risk assessments returns. This role involves supporting IT risk ...
Quick apply
IT Risk and Compliance Analyst
Portland, OR · On-site
$99.70K - $100.20K/yr
The ideal candidate will be responsible for ensuring that IT risk management processes are embedded in the enterprise, enabling optimal risk assessments returns. This role involves supporting IT risk ...
Lead IT Risk Control Analyst
Charlotte, NC · On-site
The Lead IT Risk Analyst is a subject-area specialist with specialized training, methods, and ... Manage the development and execution of first line risk management reporting including setting ...
Lead IT Risk Control Analyst
Charlotte, NC · On-site
The Lead IT Risk Analyst is a subject-area specialist with specialized training, methods, and ... Manage the development and execution of first line risk management reporting including setting ...
IT Risk Associate
Clearwater, FL · On-site
Job Summary The IT Risk Associate will support the organization's technology risk management and cybersecurity compliance programs. Reporting to the Senior Director of IT and Cybersecurity Risk, this ...
IT Risk Associate
Clearwater, FL · On-site
Job Summary The IT Risk Associate will support the organization's technology risk management and cybersecurity compliance programs. Reporting to the Senior Director of IT and Cybersecurity Risk, this ...
Job Summary The IT Risk Associate will support the organization's technology risk management and cybersecurity compliance programs. Reporting to the Senior Director of IT and Cybersecurity Risk, this ...
Job Summary The IT Risk Associate will support the organization's technology risk management and cybersecurity compliance programs. Reporting to the Senior Director of IT and Cybersecurity Risk, this ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
Director, Technology Risk
Boston, MA · On-site
Evolve Geode's use of Governance, Risk, & Compliance ('GRC') tool, including adoption of IT risk management, business continuity & disaster recovery modules. * Help establish and maintain a risk ...
Director, Technology Risk
Boston, MA · On-site
Evolve Geode's use of Governance, Risk, & Compliance ('GRC') tool, including adoption of IT risk management, business continuity & disaster recovery modules. * Help establish and maintain a risk ...
IT Risk Management VP
$171.80K - $215K/yr
Company Description A Major International Bank in Midtown Manhattan is seeking IT Risk Management VP in their HQ NYC office. The incumbent will be responsible for the day-to-day operation of the Bank ...
IT Risk Management VP
$171.80K - $215K/yr
Company Description A Major International Bank in Midtown Manhattan is seeking IT Risk Management VP in their HQ NYC office. The incumbent will be responsible for the day-to-day operation of the Bank ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
The incumbent will execute and support day-to-day IT risk management activities (such as risk and controls assessments), manage deadlines and stakeholder expectations, and lead or participate in ...
Senior IT Risk Analyst
Plymouth, MA · On-site
Senior IT Risk Analyst (First Line of Defense) Rockland Trust is seeking a Senior IT Risk Analyst to advance the Bank's First Line of Defense IT Risk Management Program. This is a hybrid role, 3 days ...
Senior IT Risk Analyst
Plymouth, MA · On-site
Senior IT Risk Analyst (First Line of Defense) Rockland Trust is seeking a Senior IT Risk Analyst to advance the Bank's First Line of Defense IT Risk Management Program. This is a hybrid role, 3 days ...
For further information, please review the Know Your Rights notice from the Department of Labor.
For further information, please review the Know Your Rights notice from the Department of Labor.
Senior IT Risk Analyst
Plymouth, MA · Hybrid
Senior IT Risk Analyst (First Line of Defense) Rockland Trust is seeking a Senior IT Risk Analyst to advance the Bank's First Line of Defense IT Risk Management Program. This is a hybrid role, 3 days ...
Senior IT Risk Analyst
Plymouth, MA · Hybrid
Senior IT Risk Analyst (First Line of Defense) Rockland Trust is seeking a Senior IT Risk Analyst to advance the Bank's First Line of Defense IT Risk Management Program. This is a hybrid role, 3 days ...
Evaluate IT Security risks arising from control inefficiencies. * Participate in due diligence for ... Prepare presentations for Management, Risk committees and Board meetings. * Governance and ...
Evaluate IT Security risks arising from control inefficiencies. * Participate in due diligence for ... Prepare presentations for Management, Risk committees and Board meetings. * Governance and ...
IT Risk Program Manager
Columbus, OH · On-site
$90K - $110K/yr
CTG is seeking to fill an IT Risk Program Manager position for our premier client. Location ... Program Management: Knowledge of the policies and techniques to manage a set of related projects ...
IT Risk Program Manager
Columbus, OH · On-site
$90K - $110K/yr
CTG is seeking to fill an IT Risk Program Manager position for our premier client. Location ... Program Management: Knowledge of the policies and techniques to manage a set of related projects ...
IT Risk & Security Governance Specialist The IT Risk & Security Governance Specialist collaborates ... Required Skill Set Deep knowledge of risk management frameworks and cybersecurity controls.
IT Risk & Security Governance Specialist The IT Risk & Security Governance Specialist collaborates ... Required Skill Set Deep knowledge of risk management frameworks and cybersecurity controls.
Provide input to the Enterprise Risk Management Workgroup on technology and cybersecurity risks ... Support updates to the Information Security Program. * Participate in vendor technology risk ...
Quick apply
Provide input to the Enterprise Risk Management Workgroup on technology and cybersecurity risks ... Support updates to the Information Security Program. * Participate in vendor technology risk ...
Manager, IT Risk Operations
Palo Alto, CA · On-site
$147.05K - $198.95K/yr
Oversee governance and reporting across the IT Service Management (ITSM) ecosystem * Analyze ... Enhance vendor risk processes, including risk tiering, assessments, and monitoring * Identify ...
Manager, IT Risk Operations
Palo Alto, CA · On-site
$147.05K - $198.95K/yr
Oversee governance and reporting across the IT Service Management (ITSM) ecosystem * Analyze ... Enhance vendor risk processes, including risk tiering, assessments, and monitoring * Identify ...
It Risk Management information
See salary details
$51.5K - $62.3K
4% of jobs
$62.3K - $73K
6% of jobs
$73K - $83.8K
11% of jobs
$87.9K is the 25th percentile. Wages below this are outliers.
$83.8K - $94.6K
11% of jobs
The median wage is $103.2K / yr.
$94.6K - $105.4K
23% of jobs
$105.4K - $116.1K
13% of jobs
$123.2K is the 75th percentile. Wages above this are outliers.
$116.1K - $126.9K
12% of jobs
$126.9K - $137.7K
8% of jobs
$137.7K - $148.5K
6% of jobs
$148.5K - $159.2K
4% of jobs
$159.2K - $170K
2% of jobs
$51.5K
$111.6K
$170K
How much do it risk management jobs pay per year?
As of May 30, 2026, the average yearly pay for it risk management in the United States is $111,556.00, according to ZipRecruiter salary data. Most workers in this role earn between $90,000.00 and $129,000.00 per year, depending on experience, location, and employer.
What are the key skills and qualifications needed to thrive as an IT Risk Management professional, and why are they important?
To thrive in IT Risk Management, you need a strong understanding of information security principles, risk assessment methodologies, and regulatory compliance frameworks, typically supported by a degree in information technology, cybersecurity, or a related field. Familiarity with risk management tools (such as RSA Archer or MetricStream), knowledge of ISO 27001, and certifications like CISSP or CISM are highly valued. Strong analytical thinking, attention to detail, and effective communication skills help in identifying threats and conveying risks to stakeholders. These skills and qualities are crucial for protecting organizational assets, ensuring compliance, and enabling informed decision-making regarding technology risks.
What are some common challenges faced by IT Risk Management professionals, and how can they effectively address them?
IT Risk Management professionals often encounter challenges such as rapidly evolving cyber threats, balancing compliance with operational efficiency, and communicating technical risks to non-technical stakeholders. Staying updated with the latest security trends and regulations is essential for effective risk assessment. Building strong cross-departmental relationships can help ensure that risk mitigation strategies are both practical and well-understood across the organization. Continuous learning and leveraging risk management frameworks, like NIST or ISO 27001, can also provide a solid foundation for addressing these challenges.
What is IT Risk Management?
IT Risk Management is the process of identifying, assessing, and mitigating risks related to information technology systems and data within an organization. This discipline aims to protect information assets from threats such as cyberattacks, data breaches, and system failures by implementing security controls and policies. Effective IT Risk Management helps organizations comply with regulations, minimize financial losses, and ensure business continuity. Professionals in this field continuously monitor and update risk strategies to adapt to evolving technological threats.
What is the difference between It Risk Management vs Cybersecurity Analyst?
| Aspect | It Risk Management | Cybersecurity Analyst |
|---|---|---|
| Required Credentials | Certifications like CRISC, CISSP, CISA | Certifications like CompTIA Security+, CISSP, CEH |
| Work Environment | Focus on risk assessment, compliance, and mitigation strategies across IT systems | Focus on monitoring, analyzing, and responding to security threats |
| Employer & Industry Usage | Used in organizations prioritizing risk management and compliance | Used in security operations centers and cybersecurity teams |
While both roles involve IT security, It Risk Management emphasizes assessing and mitigating risks across IT systems, whereas Cybersecurity Analysts focus on detecting and responding to security threats. Understanding these differences helps organizations assign the right roles for their security needs.
More about It Risk Management jobs
What cities are hiring for It Risk Management jobs? Cities with the most It Risk Management job openings:
What states have the most It Risk Management jobs? States with the most job openings for It Risk Management jobs include:
What job categories do people searching It Risk Management jobs look for? The top searched job categories for It Risk Management jobs are:
Job description
Company Description
A Major International Bank, their Risk Management Department (Midtown) is seeking a VP - IT Risk Management, and VP Operational Risk in their HQ NYC office.
Job Description
   The incumbent will be responsible for the day-to-day operation of the Bank's information security systems. This includes its organization, installation, support, and the validation and escalation of alerts generated through automatic testing means, and escalate accordingly.
   S/he will provide security, stability and reliability to all security infrastructure, policies and operations. The incumbent will be responsible for assessing the validity of identified vulnerabilities, monitoring for new vulnerabilities and performing security architecture reviews.
   S/he will provide feedback on proposed security projects with the IT team and coordinate vulnerability remediation processes.Â
   Main duties include security architecture reviews, the coordination of security projects, security monitoring and remediation, training, security alert notification and response and internal and external audits, vulnerability remediation and security incident response.
Qualifications
   A Bachelor's degree in a relevant major (Master's preferred); for example information technology/computer science etc.
   Candidates should have at least 5 years of relevant experience (information security/vulnerability management/security architecture/network and computer systems administration) in the financial services industry. Experiences in systems administration such as Windows Server, Active Directory management, working with security tools like Nitro, Palo Alto and McAfee and in designing secure systems, assessing the validity of identified vulnerabilities are highly desirable.
   The ideal candidate should have knowledge of firewall, system, and network architectures, protocol behaviours and information security best practices. CISA/CISSP/CRISC/CISM/FAIR or equivalent experience is
Additional Information
All your information will be kept confidential according to EEO guidelines.
About Premium Technology
Sourced by ZipRecruiter
Industry
Finance and insurance
Company size
11 - 50 Employees
Headquarters location
NY, US
Year founded
2001