You will also play a pivotal role in key programs like Business Continuity/Disaster Recovery, IT Risk Management, Third Party Risk Management, Data Governance, and Security Awareness. Your function ...
You will also play a pivotal role in key programs like Business Continuity/Disaster Recovery, IT Risk Management, Third Party Risk Management, Data Governance, and Security Awareness. Your function ...
... risk, IT audit, regulatory compliance, privacy, data protection, third-party risk management, cloud security, incident readiness, and managed risk services. * Identify and qualify high-value ...
... risk, IT audit, regulatory compliance, privacy, data protection, third-party risk management, cloud security, incident readiness, and managed risk services. * Identify and qualify high-value ...
Internal Audit Manager - IT
Plymouth, MI · On-site
$96K - $127K/yr
Support SOX IT risk assessment, scoping, test planning, execution oversight, quality reviews, and remediation tracking from a program management and governance perspective. * Serve as a primary ...
Internal Audit Manager - IT
Plymouth, MI · On-site
$96K - $127K/yr
Support SOX IT risk assessment, scoping, test planning, execution oversight, quality reviews, and remediation tracking from a program management and governance perspective. * Serve as a primary ...
Risk & Controls Manager
Detroit, MI · On-site
Job Title: IT Risk & Controls Manager Job Location: Detroit, MI Job Level: Mid - Senior Level Job type: Full time Industry: Financial Industry As Risk & Control manager you will be enhancing the IT ...
Risk & Controls Manager
Detroit, MI · On-site
Job Title: IT Risk & Controls Manager Job Location: Detroit, MI Job Level: Mid - Senior Level Job type: Full time Industry: Financial Industry As Risk & Control manager you will be enhancing the IT ...
Drive business cybersecurity accountability by identifying, defining, and supporting the management of cyber-risks specific to Ford Credit. * Coordinate seamlessly with IT, risk, and compliance teams ...
New
Drive business cybersecurity accountability by identifying, defining, and supporting the management of cyber-risks specific to Ford Credit. * Coordinate seamlessly with IT, risk, and compliance teams ...
New
Certifications in CCSP. * 4-8 years of related work experience in cloud security, cybersecurity, or IT risk management. * Familiarity with adult learning principles and practices * Learner-focused ...
Quick apply
Certifications in CCSP. * 4-8 years of related work experience in cloud security, cybersecurity, or IT risk management. * Familiarity with adult learning principles and practices * Learner-focused ...
Certifications in CCSP. * 4-8 years of related work experience in cloud security, cybersecurity, or IT risk management. * Familiarity with adult learning principles and practices * Learner-focused ...
Certifications in CCSP. * 4-8 years of related work experience in cloud security, cybersecurity, or IT risk management. * Familiarity with adult learning principles and practices * Learner-focused ...
IT Audit, Cybersecurity & Risk Advisory Senior (HITRUST)
Southfield, MI · On-site
$82K - $113K/yr
Assess, manage and optimize information technology risk across a wide range of areas, including cybersecurity, IT strategy and governance, IT regulatory and compliance requirements, and business ...
IT Audit, Cybersecurity & Risk Advisory Senior (HITRUST)
Southfield, MI · On-site
$82K - $113K/yr
Assess, manage and optimize information technology risk across a wide range of areas, including cybersecurity, IT strategy and governance, IT regulatory and compliance requirements, and business ...
Vulnerability Management Sr. Engineer
Detroit, MI · On-site
$113K - $155K/yr
Required : • 8+ years of experience in information security, technology risk management or related field. • Demonstrated ability configuring and managing technical security controls at an ...
Vulnerability Management Sr. Engineer
Detroit, MI · On-site
$113K - $155K/yr
Required : • 8+ years of experience in information security, technology risk management or related field. • Demonstrated ability configuring and managing technical security controls at an ...
Certifications in CCSP. * 4-8 years of related work experience in cloud security, cybersecurity, or IT risk management. * Familiarity with adult learning principles and practices * Learner-focused ...
Certifications in CCSP. * 4-8 years of related work experience in cloud security, cybersecurity, or IT risk management. * Familiarity with adult learning principles and practices * Learner-focused ...
IT Supervisor - Governance & Compliance - NSK Americas The Company NSK is a global manufacturer of ... Risk Management & Assurance * Work with cybersecurity, risk, and business units to identify, assess ...
Quick apply
IT Supervisor - Governance & Compliance - NSK Americas The Company NSK is a global manufacturer of ... Risk Management & Assurance * Work with cybersecurity, risk, and business units to identify, assess ...
Vulnerability Management Sr. Engineer
Detroit, MI · On-site
$113K - $155K/yr
Required : • 8+ years of experience in information security, technology risk management or related field. • Demonstrated ability configuring and managing technical security controls at an ...
Vulnerability Management Sr. Engineer
Detroit, MI · On-site
$113K - $155K/yr
Required : • 8+ years of experience in information security, technology risk management or related field. • Demonstrated ability configuring and managing technical security controls at an ...
IT Supervisor - Governance & Compliance - NSK Americas The Company NSK is a global manufacturer of ... Risk Management & Assurance * Work with cybersecurity, risk, and business units to identify, assess ...
IT Supervisor - Governance & Compliance - NSK Americas The Company NSK is a global manufacturer of ... Risk Management & Assurance * Work with cybersecurity, risk, and business units to identify, assess ...
Lead and manage complex IT risk advisory and internal audit engagements for middle-market and large clients * Advise clients on IT governance, IT general controls (ITGCs), cybersecurity risk, SOX ...
Lead and manage complex IT risk advisory and internal audit engagements for middle-market and large clients * Advise clients on IT governance, IT general controls (ITGCs), cybersecurity risk, SOX ...
Lead and manage complex IT risk advisory and internal audit engagements for middle-market and large clients * Advise clients on IT governance, IT general controls (ITGCs), cybersecurity risk, SOX ...
Lead and manage complex IT risk advisory and internal audit engagements for middle-market and large clients * Advise clients on IT governance, IT general controls (ITGCs), cybersecurity risk, SOX ...
Role : Senior IT Compliance & Information Security Analyst ( W2 Position) Location : Dearborn, MI ... Risk Assessments and Threat Modeling * Support Vendor Management and Business Owners with due ...
Quick apply
Role : Senior IT Compliance & Information Security Analyst ( W2 Position) Location : Dearborn, MI ... Risk Assessments and Threat Modeling * Support Vendor Management and Business Owners with due ...
Director, Information Technology (Government Solutions)
$199K - $241K/yr
Can lead both internal IT operations and external technical solutioning * Have experience ... Own information security, compliance, and risk management practices across the organization
New
Quick apply
Director, Information Technology (Government Solutions)
$199K - $241K/yr
Can lead both internal IT operations and external technical solutioning * Have experience ... Own information security, compliance, and risk management practices across the organization
New
Company Description We are from US IT Solutions, an ISO Certified, E-Verify, WMBE Certified ... Provide project management for project scheduling, tracking, issue management, risk management ...
Company Description We are from US IT Solutions, an ISO Certified, E-Verify, WMBE Certified ... Provide project management for project scheduling, tracking, issue management, risk management ...
Strengthen and evolve the risk assessment process, including exploring advanced technologies and ... Coordinate information sharing across risk, control, compliance, and related functions to improve ...
Strengthen and evolve the risk assessment process, including exploring advanced technologies and ... Coordinate information sharing across risk, control, compliance, and related functions to improve ...
IT Security Risk Analyst
Detroit, MI · Remote
STRATEGIC STAFFING SOLUTIONS (S3) HAS AN OPENING. IT Security Risk Analyst Detroit, MI / Remote in ... management Research, analyze and report on the cybersecurity risk of doing business with third ...
IT Security Risk Analyst
Detroit, MI · Remote
STRATEGIC STAFFING SOLUTIONS (S3) HAS AN OPENING. IT Security Risk Analyst Detroit, MI / Remote in ... management Research, analyze and report on the cybersecurity risk of doing business with third ...
It Risk Management information
See Michigan salary details
$44.9K - $54.3K
4% of jobs
$54.3K - $63.7K
6% of jobs
$63.7K - $73.1K
11% of jobs
$76.6K is the 25th percentile. Wages below this are outliers.
$73.1K - $82.4K
11% of jobs
The median wage is $89.9K / yr.
$82.4K - $91.8K
23% of jobs
$91.8K - $101.2K
13% of jobs
$107.4K is the 75th percentile. Wages above this are outliers.
$101.2K - $110.6K
12% of jobs
$110.6K - $120K
8% of jobs
$120K - $129.4K
6% of jobs
$129.4K - $138.8K
4% of jobs
$138.8K - $148.2K
2% of jobs
$44.9K
$97.2K
$148.2K
How much do it risk management jobs pay per year?
What are the key skills and qualifications needed to thrive as an IT Risk Management professional, and why are they important?
What are careers in risk management?
What are some common challenges faced by IT Risk Management professionals, and how can they effectively address them?
What is the difference between It Risk Management vs Cybersecurity Analyst?
| Aspect | It Risk Management | Cybersecurity Analyst |
|---|---|---|
| Required Credentials | Certifications like CRISC, CISSP, CISA | Certifications like CompTIA Security+, CISSP, CEH |
| Work Environment | Focus on risk assessment, compliance, and mitigation strategies across IT systems | Focus on monitoring, analyzing, and responding to security threats |
| Employer & Industry Usage | Used in organizations prioritizing risk management and compliance | Used in security operations centers and cybersecurity teams |
While both roles involve IT security, It Risk Management emphasizes assessing and mitigating risks across IT systems, whereas Cybersecurity Analysts focus on detecting and responding to security threats. Understanding these differences helps organizations assign the right roles for their security needs.
What is the highest paying risk management job?
Is it risk a good career?
What is the role of IT risk management?
What is IT Risk Management?

Other
Medical, Dental, Vision, Life, Retirement, PTO
Posted 24 days ago
United Wholesale Mortgage rating
7.8
Based on 96 frontline employees who took The Breakroom Quiz
97th of 148 rated financial services
Job description
As an IT GRC Program Administrator II at United Wholesale Mortgage, your role involves leading information security initiatives to minimize risk and maximize compliance. Responsibilities will include assessments, management of audit fulfillment and risk remediation, as well as governance of business data and records. You will also play a pivotal role in key programs like Business Continuity/Disaster Recovery, IT Risk Management, Third Party Risk Management, Data Governance, and Security Awareness.
Your function extends to monitoring adherence to security controls and compliance standards, spearheading specific initiatives, and nurturing an environment of security awareness through coaching. All planning, coordination, and execution of work assignments will align with the priorities established by the Information Security Team Lead.
WHAT WE NEED FROM YOUMust Have:
- Bachelor's Degree in Information Technology, Information Security or equivalent, with preferred certifications in CISA, CISSP, CISM, GSEC, BCP, CGRC, or other relevant information security.
- 2-4 years of experience in IT compliance, risk management, cybersecurity policy analysis, and audit-related work.
- Proficiency in managing system development processes, end-user computing controls, cloud systems, infrastructure management, and information security practices.
- Knowledge of security/compliance standards such as CIS, NIST, GDPR, GLBA, CCPA, 23 NYCRR 500, IRS 1075, HIPAA.
- Excellent communication skills, able to articulate complex concepts effectively.
- Strong analytical and critical thinking skills.
- Self-directed, capable of independent work and managing multiple concurrent projects.
- Keen technology learner with demonstrated ability for identifying potential process improvement opportunities.
- Onsite presence required.
- Maintaining and enhancing corporate policies in line with industry standards and corporate needs.
- Ensuring effective communication and comprehension of policy obligations across various stakeholders through multiple channels.
- Regularly reviewing, updating, and modifying policies to align with organizational changes.
- Improving and managing the implementation of metrics for GRC activities to monitor compliance adherence, risk treatment, and improvement projects.
- Regularly reporting these metrics and progress to various audiences, including senior leadership.
- Managing and optimizing a risk register that encapsulates all risks affecting the business and facilitating the gathering and tracking of these risks.
- Continually refining our approach to risk evaluation and ensuring a common risk communication language across the organization.
- Regularly monitoring and reassessing organizational risks, adjusting the organization's stance based on in-place controls.
- Managing and enhancing our third-party risk management program, including refining evaluation criteria, expected evidence, reevaluation timeframe, and remediation processes.
- Regularly evaluating new and existing vendors based on their criticality to the business and integrating third-party evaluations into workflows.
- Identifying third-party issues and tracking them till remediation or business acceptance, and effectively managing third-party offboarding obligations.
- Enhancing data standards, processes, and procedures to ensure data integrity and compliance, conducting regular audits for data accuracy, completeness, and reliability.
- Collaborating with stakeholders to understand and document data privacy requirements and assisting with the development of data security models and design.
- Collaborating with IT and business teams to develop a robust IT risk management framework, regularly reviewing and updating this framework in line with emerging trends, threats, and industry best practices such as ISO 27001, NIST, or COSO.
- Implementing, managing, and enhancing comprehensive GRC frameworks and toolsets, ensuring they align with organizational needs.
- Supporting incident management activities in accordance with established frameworks, including incident identification, assessment, tracking, and resolution.
- Developing and delivering GRC-related training to enhance the organization's understanding of concepts related to compliance, risk, and cybersecurity
- Facilitating internal and external due diligence requests in accordance with various regulatory agencies and managing the implementation of audit recommendations.
- Collaborating with legal and regulatory bodies to ensure the organization's cybersecurity program is compliant with all relevant laws, regulations, and industry-standard frameworks.
- Managing the organization's business continuity planning and disaster recovery efforts in line with accepted frameworks, ensuring plans are regularly updated and tested.
- Driving the integration of GRC principles and frameworks into the organization's culture and daily activities.
- Regularly reporting on the status of GRC activities to Senior Leadership and other stakeholders, providing insight into the organization's risk posture, compliance status, and governance effectiveness per established frameworks.
- Developing and maintaining relationships with external vendors, partners, regulators, and industry bodies to keep abreast of developments in the GRC field, including emerging frameworks and best practices.
Ready to join thousands of talented team members who are making the dream of home ownership possible for more Americans? It's all happening on UWM's campus, where our award-winning workplace packs plenty of perks and amenities that keep the atmosphere buzzing with energy and excitement.
It's no wonder that out of our six pillars, People Are Our Greatest Asset is number one. It's at the very heart of how we treat each other, our clients and our community. Whether it's providing elite client service or continuously striving to improve, our pillars provide a pathway to a more successful personal and professional life.
From the team member that holds a door open to the one that helps guide your career, you'll feel the encouragement and support on day one. No matter your race, creed, gender, age, sexual orientation and ethnicity, you'll be welcomed here. Accepted here. And empowered to Be You Here.
More reasons you'll love working here include:
- Paid Time Off (PTO) after just 30 days
- Additional parental and maternity leave benefits after 12 months
- Adoption reimbursement program
- Paid volunteer hours
- Paid training and career development
- Medical, dental, vision and life insurance
- 401k with employer match
- Mortgage discount and area business discounts
- Free membership to our large, state-of-the-art fitness center, including exercise classes such as yoga and Zumba, various sports leagues and a full-size basketball court
- Wellness area, including an in-house primary-care physician's office, full-time massage therapist and hair salon
- Gourmet cafeteria featuring homemade breakfast and lunch
- Convenience store featuring healthy grab-and-go snacks
- In-house Starbucks and Dunkin
- Indoor/outdoor cafe with Wi-Fi
What United Wholesale Mortgage employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About United Wholesale Mortgage
Sourced by ZipRecruiter
Industry
Finance and insurance
Company size
5,001 - 10,000 Employees
Headquarters location
Pontiac, MI, US
Year founded
1986