ZipRecruiter

Log In

1

It Risk Management Jobs in Tennessee (NOW HIRING)

TNBR Careers

Director - IT Security

Memphis, TN · On-site

Title: Director - IT Security Employee Classification: Other Professionals Institution: Southwest ... The Director will guide security-related decisions, proactively manage risk, and promote a culture ...

Deloitte

Senior Manager - ServiceNow

Memphis, TN

... ITOM) * IT Asset Management (ITAM) * Integrated Risk Management (IRM) * Security Operations (SecOps) * Third-Party Risk Management (TPRM) * 10+ years of demonstrated deep technical expertise in ...

Deloitte

Senior Manager - ServiceNow

Hermitage, TN

... ITOM) * IT Asset Management (ITAM) * Integrated Risk Management (IRM) * Security Operations (SecOps) * Third-Party Risk Management (TPRM) * 10+ years of demonstrated deep technical expertise in ...

Deloitte

Senior Manager - ServiceNow

Nashville, TN

... ITOM) * IT Asset Management (ITAM) * Integrated Risk Management (IRM) * Security Operations (SecOps) * Third-Party Risk Management (TPRM) * 10+ years of demonstrated deep technical expertise in ...

The Twelve Thirty Club

Director of IT

Nashville, TN · On-site

$100K - $120K/yr

Hiring - Director of IT Hiring Immediately Salary Range - $100,000 - $120,000 We are seeking a ... Proven experience in cybersecurity, PCI compliance, and risk management * Experience managing ...

next page

Showing results 1-20

All JobsIt Risk Management JobsIt Risk Management Jobs in Tennessee

It Risk Management information

See Tennessee salary details

$46.7K

$101.3K

$154.3K

How much do it risk management jobs pay per year?

As of Jun 27, 2026, the average yearly pay for it risk management in Tennessee is $101,250.00, according to ZipRecruiter salary data. Most workers in this role earn between $81,700.00 and $117,100.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as an IT Risk Management professional, and why are they important?

To thrive in IT Risk Management, you need a strong understanding of information security principles, risk assessment methodologies, and regulatory compliance frameworks, typically supported by a degree in information technology, cybersecurity, or a related field. Familiarity with risk management tools (such as RSA Archer or MetricStream), knowledge of ISO 27001, and certifications like CISSP or CISM are highly valued. Strong analytical thinking, attention to detail, and effective communication skills help in identifying threats and conveying risks to stakeholders. These skills and qualities are crucial for protecting organizational assets, ensuring compliance, and enabling informed decision-making regarding technology risks.

What are some common challenges faced by IT Risk Management professionals, and how can they effectively address them?

IT Risk Management professionals often encounter challenges such as rapidly evolving cyber threats, balancing compliance with operational efficiency, and communicating technical risks to non-technical stakeholders. Staying updated with the latest security trends and regulations is essential for effective risk assessment. Building strong cross-departmental relationships can help ensure that risk mitigation strategies are both practical and well-understood across the organization. Continuous learning and leveraging risk management frameworks, like NIST or ISO 27001, can also provide a solid foundation for addressing these challenges.

What are the 4 types of risk management?

In IT risk management, the four main types are risk avoidance, risk reduction, risk transfer, and risk acceptance. These strategies help IT professionals identify, assess, and mitigate potential threats to information systems and data security effectively. Understanding these types is essential for developing comprehensive risk management plans and ensuring organizational resilience.

Do risk managers make good money?

Risk managers typically earn competitive salaries that vary based on experience, industry, and location. According to industry data, median annual pay ranges from $70,000 to over $120,000, with higher earnings possible for those with certifications like FRM or CRM and advanced skills in data analysis and risk assessment.

What is the difference between It Risk Management vs Cybersecurity Analyst?

AspectIt Risk ManagementCybersecurity Analyst
Required CredentialsCertifications like CRISC, CISSP, CISACertifications like CompTIA Security+, CISSP, CEH
Work EnvironmentFocus on risk assessment, compliance, and mitigation strategies across IT systemsFocus on monitoring, analyzing, and responding to security threats
Employer & Industry UsageUsed in organizations prioritizing risk management and complianceUsed in security operations centers and cybersecurity teams

While both roles involve IT security, It Risk Management emphasizes assessing and mitigating risks across IT systems, whereas Cybersecurity Analysts focus on detecting and responding to security threats. Understanding these differences helps organizations assign the right roles for their security needs.

What is the highest paying risk management job?

The highest paying risk management roles are often senior positions such as Chief Risk Officer (CRO) or Director of Risk Management, with salaries exceeding $150,000 annually. These roles require extensive experience, advanced certifications like FRM or CRM, and strong leadership skills in overseeing enterprise-wide risk strategies.

What is the role of IT risk management?

IT risk management involves identifying, assessing, and mitigating risks related to information technology systems to ensure data security, business continuity, and compliance. IT risk managers develop strategies, implement controls, and monitor vulnerabilities using tools like risk assessments and security frameworks. This role requires knowledge of cybersecurity, regulatory standards, and risk analysis techniques.

What is IT Risk Management?

IT Risk Management is the process of identifying, assessing, and mitigating risks related to information technology systems and data within an organization. This discipline aims to protect information assets from threats such as cyberattacks, data breaches, and system failures by implementing security controls and policies. Effective IT Risk Management helps organizations comply with regulations, minimize financial losses, and ensure business continuity. Professionals in this field continuously monitor and update risk strategies to adapt to evolving technological threats.
What are popular job titles related to It Risk Management jobs in Tennessee? For It Risk Management jobs in Tennessee, the most frequently searched job titles are:
What job categories do people searching It Risk Management jobs in Tennessee look for? The top searched job categories for It Risk Management jobs in Tennessee are:
It Risk Management jobs near you
Infographic showing various It Risk Management job openings in Tennessee as of June 2026, with employment types broken down into 100% Full Time. Highlights an 100% In-person job distribution, with an average salary of $101,250 per year, or $48.7 per hour.
Executive Director, Deputy Chief Information Security Officer (Deputy CISO)

Executive Director, Deputy Chief Information Security Officer (Deputy CISO)

Bridgestone Americas, Inc.

Nashville, TN • On-site

Full-time

Posted 16 days ago

Bridgestone Americas rating

7.3

Company rating: 7.3 out of 10

Based on 129 frontline employees who took The Breakroom Quiz

303rd of 521 rated manufacturers

Job description

Company Overview
Bridgestone Americas, Inc. (BSAM), headquartered in Nashville, Tennessee, and Bridgestone Europe, Middle East and Africa (BSEMEA), headquartered in Brussels, Belgium, operate collectively as a "Bridgestone West" strategic region. This region services the strategic business needs of teams across the Americas, Europe, Middle East and Africa. BSAM and BSEMEA are subsidiaries of Bridgestone Corporation, globally headquartered in Japan. Bridgestone and its subsidiaries develop, manufacture and market a wide range of Bridgestone, Firestone and associate brand products and solutions to address the needs of a broad range of customers and industries.
Job Category
Information Technology
Position Summary
The Executive Director, Deputy Chief Information Security Officer (Deputy CISO) is a senior cybersecurity leader responsible for partnering with the CISO to define, operationalize, and scale the enterprise cybersecurity program across corporate, manufacturing, and retail environments.
This role bridges strategy and execution, providing direct oversight of security operations, engineering, governance, and plant security. The Deputy CISO ensures the protection of critical information assets and operational technology (OT) systems while enabling business performance, manufacturing uptime, and digital transformation.
The Deputy CISO serves as a key advisor to executive leadership and acts on behalf of the CISO when required.
Responsibilities
Security Strategy & Leadership:
  • Partner with the CISO to define and execute the enterprise cybersecurity strategy and roadmap in corporate, manufacturing, and retail environments.
  • Translate strategic objectives into actionable security initiatives across the organization.
  • Lead and mentor security leaders and teams, including Engineering, Identity & Access Management, Governance, Risk & Compliance (GRC), Threat Detection & Response, Plant Security, and Operations.
  • Partner with CISO to maintain external benchmarking and partnerships to stay abreast of security challenges, new technology, and the ever-changing cybersecurity landscape
  • Act as the CISO's delegate in executive discussions, global committees, and cross-functional initiatives.

Security Operations & Incident Response:
Partner with Director(s) to:
  • Oversee Security Operations Center (SOC), incident response, threat detection, and vulnerability management programs.
  • Lead response to major cybersecurity incidents, especially those impacting manufacturing operations, ensuring rapid containment and recovery.
  • Drive continuous improvement in detection, automation, and response capabilities across enterprise, retail, and plant environments.

Risk Management, Governance & Compliance:
Partner with Director(s) to:
  • Manage enterprise cybersecurity risk program, including risk assessments, mitigation strategies, and reporting.
  • Ensure compliance with relevant regulations, frameworks, and standards (e.g., NIST, NIS2, CMMC, ISO 27001, CIS, HIPAA, PCI-DSS as applicable).
  • Collaborate with audit, legal, and compliance teams to ensure regulatory readiness and remediation.
  • Establish security policies, standards, and procedures.
  • Track key performance indicators (KPIs), key risk indicators (KRIs), and maturity metrics.
  • Manage budgets, vendor relationships, and strategic partnerships.
  • Drive security awareness, training, and culture across the enterprise.

Security Architecture, Engineering, Plant Security, and IAM:
Partner with Director(s) to:
  • Provide oversight for secure system architecture and design across cloud, on-prem, and hybrid environments for both IT and OT.
  • Ensure integration of security controls into IT and business systems.
  • Promote Zero Trust principles and secure-by-design practices.
  • Drive improvements in Plant Security and other priority areas.
  • Drive strategic direction and design of modern identity.
  • Drive identification and implementation of AI Security Guardrails and operational security measures.

Business Engagement & Culture:
  • Act as a trusted advisor to executives, plant leadership, and business stakeholders on cybersecurity risk and mitigation.
  • Collaborate across IT, engineering, manufacturing, and corporate teams to embed security into operations.
  • Drive a culture of security awareness and accountability across the enterprise workforce.
  • Lead, mentor, and develop high-performing cybersecurity teams.

Minimum Qualifications
Education:
  • Bachelor's degree in Information Security, Computer Science, Engineering, or related field (Master's preferred).

Experience:
  • 10-15+ years of experience in information security, IT risk, or cybersecurity leadership roles.
  • Proven experience managing large-scale security programs and teams.
  • Experience in manufacturing industry is required.
    • In addition to the manufacturing industry, experience in a highly regulated industry (e.g., healthcare, finance, government) is preferred.
  • Demonstrated ability to operate at both strategic and tactical levels.
  • Technical understanding and experience is required (e.g., engineering, Incident Response, architecture, AI)

Certifications (Preferred):
  • CISSP (Certified Information Systems Security Professional)
  • CISM (Certified Information Security Manager)
  • CRISC, CISA, or equivalent
  • Cloud security certifications (e.g., CCSP, AWS Security Specialty) are a plus

Core Competencies:
  • Strong leadership and executive communication skills
  • Deep understanding of cybersecurity frameworks and modern threat landscape
  • Expertise in risk management and regulatory compliance
  • Operational excellence in incident response and security operations
  • Strategic thinking with hands-on execution capability
  • Ability to influence technical and non-technical stakeholders

Key Relationships:
  • Reports to: Vice President, Chief Information Security Officer (CISO)
  • Works closely with: HR, Physical Security, Internal Audit, Risk, Legal, Compliance, Engineering, Business Unit Leaders, and others
  • External: Vendors, auditors, regulators, and industry partners

Success Metrics:
  • Reduction in enterprise risk exposure
  • Security incident response time and effectiveness
  • Compliance audit outcomes
  • Security program maturity improvements
  • Development of internal Teammates
  • Business alignment and stakeholder satisfaction

At Bridgestone, you are Free to Be
We believe people can only provide superior service and quality to others when they bring their whole self to work. We believe in championing all perspectives, individuals and teams because we understand the importance of seeing the world and our business through many different lenses. We are building a team as diverse as the world we serve. So, show us what you are made of, because who you are is what we need.
What we offer
At Bridgestone, what really matters is to foster co-creation opportunities and empowering you to be creative and curious to make mobility safer, more efficient, and more sustainable for future generations. Whatever role you fill, when you represent Bridgestone, you are a valued teammate, and part of our larger mission to "Serve Society with Superior Quality", for that, we offer you more than just a competitive compensation; we will provide you:
  • A supportive and engaging onboarding experience to ensure a smooth transition into our team.
  • The opportunity to develop and grow, through training and regular mentorship.
  • Corporate Social Responsibility activities.
  • A truly global, dynamic and challenging work environment.
  • Agility and work/life effectiveness and your long-term well-being.
  • A diverse and inclusive team.

Bridgestone is proud to be an Equal Employment Opportunity employer. It is our policy to consider for employment all individuals regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, gender, sex, sexual orientation, gender identity and/or expression, genetic information, veteran status, or any other characteristic protected by federal, state or local law.
Employment Eligibility
If hired, a Form I-9 Employment Eligibility Verification must be completed at the start of employment. Temporary work authorization or the need for sponsorship may disqualify you from employment.

What Bridgestone Americas employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

Apply