ZipRecruiter

Log In

1

It Risk Management Jobs in Michigan (NOW HIRING)

Astemo

IT Governance Senior Manager

Farmington Hills, MI

$128K - $129K/yr

This role provides executive oversight for IT risk management, controls oversight, policy governance, audit coordination, and remediation management to ensure a strong and compliant operational ...

Astemo Ltd

IT Governance Senior Manager

Farmington Hills, MI ยท On-site

$128K - $129K/yr

This role provides executive oversight for IT risk management, controls oversight, policy governance, audit coordination, and remediation management to ensure a strong and compliant operational ...

Huntington

Enterprise Architect (IT)

Detroit, MI ยท On-site +1

$68.25 - $88/hr

Partner with cybersecurity, technology risk, compliance, infrastructure, application, data, and operations teams to support holistic IT risk management. * Facilitate alignment across application ...

Huntington

Enterprise Architect (IT)

Detroit, MI ยท On-site +1

$68.25 - $88/hr

Partner with cybersecurity, technology risk, compliance, infrastructure, application, data, and operations teams to support holistic IT risk management. * Facilitate alignment across application ...

Ra

Risk & Controls Manager

Detroit, MI ยท On-site

Job Title: IT Risk & Controls Manager Job Location: Detroit, MI Job Level: Mid - Senior Level Job type: Full time Industry: Financial Industry As Risk & Control manager you will be enhancing the IT ...

Venteon

Internal Audit Manager - IT

Plymouth, MI ยท On-site

$96K - $127K/yr

Support SOX IT risk assessment, scoping, test planning, execution oversight, quality reviews, and remediation tracking from a program management and governance perspective. * Serve as a primary ...

next page

Showing results 1-20

All JobsIt Risk Management JobsIt Risk Management Jobs in Michigan

It Risk Management information

See Michigan salary details

$44.9K

$97.2K

$148.2K

How much do it risk management jobs pay per year?

As of Jun 26, 2026, the average yearly pay for it risk management in Michigan is $97,232.00, according to ZipRecruiter salary data. Most workers in this role earn between $78,400.00 and $112,400.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as an IT Risk Management professional, and why are they important?

To thrive in IT Risk Management, you need a strong understanding of information security principles, risk assessment methodologies, and regulatory compliance frameworks, typically supported by a degree in information technology, cybersecurity, or a related field. Familiarity with risk management tools (such as RSA Archer or MetricStream), knowledge of ISO 27001, and certifications like CISSP or CISM are highly valued. Strong analytical thinking, attention to detail, and effective communication skills help in identifying threats and conveying risks to stakeholders. These skills and qualities are crucial for protecting organizational assets, ensuring compliance, and enabling informed decision-making regarding technology risks.

What are some common challenges faced by IT Risk Management professionals, and how can they effectively address them?

IT Risk Management professionals often encounter challenges such as rapidly evolving cyber threats, balancing compliance with operational efficiency, and communicating technical risks to non-technical stakeholders. Staying updated with the latest security trends and regulations is essential for effective risk assessment. Building strong cross-departmental relationships can help ensure that risk mitigation strategies are both practical and well-understood across the organization. Continuous learning and leveraging risk management frameworks, like NIST or ISO 27001, can also provide a solid foundation for addressing these challenges.

What are the 4 types of risk management?

In IT risk management, the four main types are risk avoidance, risk reduction, risk transfer, and risk acceptance. These strategies help IT professionals identify, assess, and mitigate potential threats to information systems and data security effectively. Understanding these types is essential for developing comprehensive risk management plans and ensuring organizational resilience.

Do risk managers make good money?

Risk managers typically earn competitive salaries that vary based on experience, industry, and location. According to industry data, median annual pay ranges from $70,000 to over $120,000, with higher earnings possible for those with certifications like FRM or CRM and advanced skills in data analysis and risk assessment.

What is the difference between It Risk Management vs Cybersecurity Analyst?

AspectIt Risk ManagementCybersecurity Analyst
Required CredentialsCertifications like CRISC, CISSP, CISACertifications like CompTIA Security+, CISSP, CEH
Work EnvironmentFocus on risk assessment, compliance, and mitigation strategies across IT systemsFocus on monitoring, analyzing, and responding to security threats
Employer & Industry UsageUsed in organizations prioritizing risk management and complianceUsed in security operations centers and cybersecurity teams

While both roles involve IT security, It Risk Management emphasizes assessing and mitigating risks across IT systems, whereas Cybersecurity Analysts focus on detecting and responding to security threats. Understanding these differences helps organizations assign the right roles for their security needs.

What is the highest paying risk management job?

The highest paying risk management roles are often senior positions such as Chief Risk Officer (CRO) or Director of Risk Management, with salaries exceeding $150,000 annually. These roles require extensive experience, advanced certifications like FRM or CRM, and strong leadership skills in overseeing enterprise-wide risk strategies.

What is the role of IT risk management?

IT risk management involves identifying, assessing, and mitigating risks related to information technology systems to ensure data security, business continuity, and compliance. IT risk managers develop strategies, implement controls, and monitor vulnerabilities using tools like risk assessments and security frameworks. This role requires knowledge of cybersecurity, regulatory standards, and risk analysis techniques.

What is IT Risk Management?

IT Risk Management is the process of identifying, assessing, and mitigating risks related to information technology systems and data within an organization. This discipline aims to protect information assets from threats such as cyberattacks, data breaches, and system failures by implementing security controls and policies. Effective IT Risk Management helps organizations comply with regulations, minimize financial losses, and ensure business continuity. Professionals in this field continuously monitor and update risk strategies to adapt to evolving technological threats.
What are popular job titles related to It Risk Management jobs in Michigan? For It Risk Management jobs in Michigan, the most frequently searched job titles are:
What job categories do people searching It Risk Management jobs in Michigan look for? The top searched job categories for It Risk Management jobs in Michigan are:
It Risk Management jobs near you
Infographic showing various It Risk Management job openings in Michigan as of June 2026, with employment types broken down into 2% As Needed, 74% Full Time, 8% Part Time, 4% Temporary, 10% Contract, and 2% Nights. Highlights an 95% Physical, 1% Hybrid, and 4% Remote job distribution, with an average salary of $97,232 per year, or $46.7 per hour.
Senior IT Security Risk Analyst

Senior IT Security Risk Analyst

Amerisure Mutual Insurance Company

Farmington Hills, MI โ€ข On-site

Full-time

Medical, Retirement, PTO

Posted 16 days ago

Job description

Amerisure creates exceptional value for its partners, policyholders, and employees. As a property and casualty insurance company, Amerisure's promise to our partner agencies and policyholders begins with a comprehensive line of insurance products designed to protect businesses, as well as the health and safety of every employee. With an A.M. Best "A" (Excellent) rating, Amerisure serves mid-sized commercial enterprises focused in construction, manufacturing and healthcare. Ranked as one of the top 100 Property & Casualty companies in the United States, we proudly manage nearly $1 Billion of Direct Written Premium and maintain $1.21 billion in surplus.
Amerisure is currently recruiting for a Senior IT Security Risk Analyst that can do a 3-day hybrid approach onsite in our Farmington Hills office. The ideal candidate will also possess the following skill set.
Summary Statement
The Senior IT Security Risk Analyst is responsible for leading the organization's cybersecurity governance, risk, and compliance initiatives. This role drives the design, implementation, and continuous improvement of the IT risk program, ensuring alignment with regulatory requirements (e.g., New York State Department of Financial Services, NIST CSF) and business objectives.
Essential Tasks/Major Duties
  • Perform security risk assessments of third-party vendors including AI and mobile application reviews.
  • Lead the review, update, and communication of cybersecurity policies, standards, and procedures to ensure alignment with global frameworks (e.g., NIST CSF, NYDFS, NIS2, PCI DSS).
  • Lead and maintain the IT Risk Register including metrics which provides leadership an overall view of IT risk.
  • Perform risk assessments of IT risks.
  • Map regulations to policies and controls.
  • Create risk and compliance metrics for management and compliance purposes.
  • Perform control testing and validation to ensure proper control effectiveness.
  • Support IT audits and controls around Model Audit Rule (MAR).
  • Monitor threat intelligence to determine potential impact to environment and remediation urgency.
  • Support vulnerability management program, daily security operations and identity tasks as needed.
  • Be a key advisor to leadership, translating cybersecurity risk into business impact and enabling informed decision-making.

Knowledge, Skills & Abilities
  • Bachelor's degree or equivalent combination of education and experience.
  • 5 years cybersecurity experience.
  • Advanced Cyber Risk Management domain specific professional certification required: Certified Information Systems Security Professional (CISSP); Certified Information Security Manager (CISM); Certified in Risk and Information Systems Control (CRISC); Certified Cloud Security Professional (CCSP); AWS Certified Security.
  • 2 years experience performing IT security control testing.
  • Experience reviewing SOC 2 Type 1 and Type 2 reports to articulate potential security risk.
  • Expertise in conducting third-party cyber risk assessments.
  • Proficient in NIST security domain frameworks and architectures.
  • Experience in Logicgate or another GRC tool.
  • Experience using AI driven tools to enhance automation and operational efficiency.
  • Ability to quickly diagnose security control problems and propose/implement solutions.
  • Clear and concise articulation of risk to both technical peers and non-technical stakeholders.
  • Partner with IT teams, developers, and business leaders to support security initiatives, and mentor and develop members of the security team.
  • Analyze data and security trends to anticipate and assess potential threats.
  • Stay current with regulations, evolving threats, technologies, and security protocols.

#LI-BR1
Just as we are committed to creating exceptional value for our Partners For Successยฎ agencies and policyholders, Amerisure also remains committed to being an employer of choice. We reinforce this commitment by adhering to an Employee Value Proposition that, in part, is provided through a competitive total rewards package. This package includes competitive base pay, performance-based incentive pay, comprehensive health and welfare benefits, a 401(k) savings plan with profit sharing, and generous paid time off programs. We also offer flexible work arrangements to promote work-life balance. Recognized as one of the Best and Brightestยฎ Companies to Work For in the Nation and one of Business Insurance magazine's Best Places to Work in Insurance, we provide a workplace that fosters excellence and professional growth. If you are looking for a collaborative and rewarding career, Amerisure is looking for you.
Amerisure Mutual Insurance Company is an Equal Employment Opportunity employer. Amerisure provides equal employment opportunities to all employees and applicants without regard to race, color, religion, sex (to include sexual orientation and gender identity), national origin, age, disability, genetic information, veteran status, or any other protected characteristic under applicable federal, state, or local laws. Amerisure complies with all applicable laws governing nondiscrimination in employment in all locations where the company operates. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. Amerisure prohibits harassment or discrimination of any kind and is committed to maintaining a workplace free from unlawful harassment or discrimination. Amerisure prohibits retaliation against anyone who reports discrimination, participates in an investigation, or opposes unlawful practices. Any improper interference with an employee's ability to perform their job duties may result in disciplinary action, up to and including termination.

Apply