1

It Risk Management Jobs in Illinois (NOW HIRING)

Partner with Enterprise Risk Management in the execution of Risk and Control Self Assessments ... information, gender, gender identity, gender expression, age, national origin, ancestry ...

IST Risk Manager

Chicago, IL · On-site

$199K/yr

Governance, Risk & Compliance (GRC) - Information Security and Technology Risk Management Framework Ownership * Support the development, enhancement, and ongoing maintenance of the enterprise ...

Governance & Risk Analyst

Chicago, IL · On-site

$85K - $95K/yr

Proven experience of at least 2 years or more in IT risk management, governance, or a related field. * Strong understanding of IT risk assessment methodologies, frameworks, and industry best ...

Enterprise Architect (IT)

Chicago, IL · On-site +1

$102K - $208K/yr

Partner with cybersecurity, technology risk, compliance, infrastructure, application, data, and operations teams to support holistic IT risk management. * Facilitate alignment across application ...

IT Compliance

Lake Forest, IL

$93K - $93K/yr

Persons in this role will be a primary resource for gathering IT risk and controls information and facilitating related surveys and audits. Partner with the IT Compliance managers and director to ...

Enterprise Architect (IT)

Chicago, IL · On-site +1

$71 - $91.75/hr

Partner with cybersecurity, technology risk, compliance, infrastructure, application, data, and operations teams to support holistic IT risk management. * Facilitate alignment across application ...

Senior Associate, IT Internal Audit

Chicago, IL · On-site

$92K - $127K/yr

Work with client senior management to design, and implement new IT risk and control frameworks, sustainable solutions (including, applying knowledge of governance, risk and security tools), operating ...

Senior Associate, IT Internal Audit

Chicago, IL · On-site

$87K - $108K/yr

Work with client senior management to design, and implement new IT risk and control frameworks, sustainable solutions (including, applying knowledge of governance, risk and security tools), operating ...

next page

Showing results 1-20

It Risk Management information

See Illinois salary details

$49.9K

$108.1K

$164.7K

How much do it risk management jobs pay per year?

As of Jul 17, 2026, the average yearly pay for it risk management in Illinois is $108,101.00, according to ZipRecruiter salary data. Most workers in this role earn between $87,200.00 and $125,000.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as an IT Risk Management professional, and why are they important?

To thrive in IT Risk Management, you need a strong understanding of information security principles, risk assessment methodologies, and regulatory compliance frameworks, typically supported by a degree in information technology, cybersecurity, or a related field. Familiarity with risk management tools (such as RSA Archer or MetricStream), knowledge of ISO 27001, and certifications like CISSP or CISM are highly valued. Strong analytical thinking, attention to detail, and effective communication skills help in identifying threats and conveying risks to stakeholders. These skills and qualities are crucial for protecting organizational assets, ensuring compliance, and enabling informed decision-making regarding technology risks.

What are careers in risk management?

Careers in risk management involve identifying, assessing, and mitigating potential threats to an organization’s assets, operations, or reputation. Professionals in this field often work in finance, insurance, or corporate settings, utilizing skills in analysis, problem-solving, and familiarity with risk assessment tools. Common roles include risk analyst, risk manager, and compliance officer, often requiring certifications like FRM or CRM.

What are some common challenges faced by IT Risk Management professionals, and how can they effectively address them?

IT Risk Management professionals often encounter challenges such as rapidly evolving cyber threats, balancing compliance with operational efficiency, and communicating technical risks to non-technical stakeholders. Staying updated with the latest security trends and regulations is essential for effective risk assessment. Building strong cross-departmental relationships can help ensure that risk mitigation strategies are both practical and well-understood across the organization. Continuous learning and leveraging risk management frameworks, like NIST or ISO 27001, can also provide a solid foundation for addressing these challenges.

What is the difference between It Risk Management vs Cybersecurity Analyst?

AspectIt Risk ManagementCybersecurity Analyst
Required CredentialsCertifications like CRISC, CISSP, CISACertifications like CompTIA Security+, CISSP, CEH
Work EnvironmentFocus on risk assessment, compliance, and mitigation strategies across IT systemsFocus on monitoring, analyzing, and responding to security threats
Employer & Industry UsageUsed in organizations prioritizing risk management and complianceUsed in security operations centers and cybersecurity teams

While both roles involve IT security, It Risk Management emphasizes assessing and mitigating risks across IT systems, whereas Cybersecurity Analysts focus on detecting and responding to security threats. Understanding these differences helps organizations assign the right roles for their security needs.

What is the highest paying risk management job?

The highest paying risk management roles are often executive positions such as Chief Risk Officer (CRO) or Director of Risk Management, with salaries exceeding $150,000 annually and sometimes reaching over $300,000 depending on the industry and company size. These roles require extensive experience, advanced certifications like FRM or CRM, and strong leadership skills.

Is it risk a good career?

IT Risk Management is a viable career that involves identifying, assessing, and mitigating technology-related risks within organizations. It requires knowledge of cybersecurity, compliance standards, and risk assessment tools, often supported by certifications like CISSP or CISM. The field offers steady demand due to increasing cybersecurity threats and regulatory requirements, making it a stable career choice for those with relevant skills and experience.

What is the role of IT risk management?

IT risk management involves identifying, assessing, and mitigating risks related to information technology systems to protect data, assets, and operations. It includes implementing security controls, conducting audits, and ensuring compliance with standards like ISO 27001 or NIST frameworks. Professionals in this field often use risk assessment tools and require knowledge of cybersecurity principles.

What is IT Risk Management?

IT Risk Management is the process of identifying, assessing, and mitigating risks related to information technology systems and data within an organization. This discipline aims to protect information assets from threats such as cyberattacks, data breaches, and system failures by implementing security controls and policies. Effective IT Risk Management helps organizations comply with regulations, minimize financial losses, and ensure business continuity. Professionals in this field continuously monitor and update risk strategies to adapt to evolving technological threats.
Infographic showing various It Risk Management job openings in Illinois as of July 2026, with employment types broken down into 1% As Needed, 81% Full Time, 15% Part Time, and 3% Contract. Highlights an 94% Physical, 1% Hybrid, and 5% Remote job distribution, with an average salary of $108,101 per year, or $52 per hour.
IT Risk Manager

Full-time

Medical, Dental, Vision, Retirement, PTO

Posted 21 days ago


Job description

At Early Warning, we've powered and protected the U.S. financial system for over thirty years with cutting-edge solutions like Zelle, Paze, and so much more. As a trusted name in payments, we partner with thousands of institutions to increase access to financial services and protect transactions for hundreds of millions of consumers and small businesses.

Positions located in Scottsdale, San Francisco, Chicago, or New York follow a hybrid work model to allow for a more collaborative working environment.

Candidates responding to this posting must independently possess the eligibility to work in the United States, for any employer, at the date of hire. This position is ineligible for employment Visa sponsorship.

Overview

The Manager, Risk Management is responsible for the building and coordination of a centralized first-line of defense (LOD1) risk and internal control program efforts for Early Warning's (specified department or function). The role will be required to align with the company's Enterprise Risk Management Leadership around the structure of the 3LOD (three lines of defense) Program to ensure the consistency in the implementation and operationalization across the enterprise.

Essential Functions

  • Assist Sr. Risk Managers and LOD1 Director if meeting departmental goals and objectives.

  • Build and manage the business line's centralized LOD1 function; act as business-line liaison to Enterprise Risk Management, Operational Risk Management, and Compliance in support of the company's Three-Lines of Defense (3LOD) program.

  • Own and maintain business-line's process inventory and internal control environment inventory.

  • Work with Compliance (and other Risk functions) to obtain a high-level understanding of and monitor applicable regulations and requirements.

  • Partner with Enterprise Risk Management in the execution of Risk and Control Self Assessments.

  • Own and maintain the business-line's detailed process and technical recovery plans.

  • Partner with Business Continuity Management on business-line's participation in BC/DR tests.

  • Oversee and monitor the business-line's third-party relationships, including both performance and risk management.

  • Assist the business-line in the design and build of process maps in alignment with Early Warning's Process Classification Framework. Design, maintain, and report metrics (KPIs and KRIs) demonstrating control effectiveness.

  • Identify and self-report issues through the ERM Self-Identified Issue Process, individually and together with other LOD1 business-line members

  • Ensure risk remediation plans exist and are sufficient; track remediation plans to completion and ensure remediation is on-time and sustainable; ensure action plans and remediation of issues by Risk Owner.

  • Ensures the completion of actions plans and remediation of self-identified issues by each Issue Owner and Risk Owner.

  • Support business-line Risk Acceptance Forms (RAF) process, when applicable.

  • Support business-line leadership in managing and reporting its related risks; provide reports and explanations for use in Business Reviews, Audit or Management Committee meetings. Collaborate with Business Intelligence to design and implement risk reports for management.

  • Deliver education and awareness of risk ownership essentials.

  • Continually monitor and update assessments of the control environment, keeping abreast of significant control issues, trends and developments. Perform internal control effectiveness test plans and procedures.

  • Support the company's commitment to protect the integrity and confidentiality of systems and data.

Minimum Qualifications

  • Education and/or experience typically obtained through completion of a Bachelor's degree in Business Administration, Finance, Accounting or other related field of specialty.

  • Typically, a minimum of 8 or more years of progressive audit, operational risk or other risk management experience or other proven related business experience.

  • Good understanding of risk management and internal control leading practices within specialized area of focus.

  • Demonstrated ability to work effectively in a complex, highly regulated environment.

  • Working knowledge of regulatory requirements within specific area of focus.

  • Effective communication, organization and presentation skills.

  • Effective influence management skills.

The above job description is not intended to be an all-inclusive list of duties and standards of the position. Incumbents will follow instructions and perform other related duties as assigned by their supervisor.

Preferred Qualifications

  • Knowledge of COSO's Internal Control - Integrated Framework, or similar

  • Certification in risk management

  • First line of defense risk management experience.

Physical Requirements

Working conditions consist of a normal office environment. Work is primarily sedentary and requires extensive use of a computer and involves sitting for periods of approximately four hours. Work may require occasional standing, walking, kneeling and reaching. Must be able to lift 10 pounds occasionally and/or negligible amount of force frequently. Requires visual acuity and dexterity to view, prepare, and manipulate documents and office equipment including personal computers. Requires the ability to communicate with internal and/or external customers.

Employee must be able to perform essential functions and physical requirements of position with or without reasonable accommodation.

The base pay scale for this position in:
Phoenix, AZ/ Chicago, IL / Washington, DC in USD per year is: $104,000 - $130,000.
New York, NY/ San Francisco, CA in USD per year is: $125,000 - $156,000.
Additionally, candidates are eligible for a discretionary incentive plan and benefits.

This pay scale is subject to change and is not necessarily reflective of actual compensation that may be earned, nor a promise of any specific pay for any specific candidate, which is always dependent on legitimate factors considered at the time of job offer. Early Warning Services takes into consideration a variety of factors when determining a competitive salary offer, including, but not limited to, the job scope, market rates and geographic location of a position, candidate's education, experience, training, and specialized skills or certification(s) in relation to the job requirements and compared with internal equity (peers). The business actively supports and reviews wage equity to ensure that pay decisions are not based on gender, race, national origin, or any other protected classes.

Some of the Ways We Prioritize Your Health and Happiness

  • Healthcare Coverage-Competitive medical (PPO/HDHP), dental, and vision plans as well as company contributions to your Health Savings Account (HSA) or pre-tax savings through flexible spending accounts (FSA) for commuting, health & dependent care expenses.

  • 401(k) Retirement Plan-Featuring a 100% Company Safe Harbor Match on your first 6% deferral immediately upon eligibility.

  • Paid Time Off -Flexible Time Off for Exempt (salaried) employees, as well as generous PTO for Non-Exempt (hourly) employees, plus 11 paid company holidays and a paid volunteer day.

  • 12 weeks of Paid Parental Leave

  • Maven Family Planning - provides support through your Parenting journey including egg freezing, fertility, adoption, surrogacy, pregnancy, postpartum, early pediatrics, and returning to work.

AndSOmuch more! We continue to enhance our program, so be sure tocheck our Benefits page herefor the latest. Ourteamcan share more during the interview process!

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Early Warning Services, LLC ("Early Warning") considers for employment, hires, retains and promotes qualified candidates on the basis of ability, potential, and valid qualifications without regard to race, religious creed, religion, color, sex, sexual orientation, genetic information, gender, gender identity, gender expression, age, national origin, ancestry, citizenship, protected veteran or disability status or any factor prohibited by law, and as such affirms in policy and practice to support and promote equal employment opportunity and affirmative action, in accordance with all applicable federal, state, and municipal laws. The company also prohibits discrimination on other bases such as medical condition, marital status or any other factor that is irrelevant to the performance of our employees.