ZipRecruiter

Log In

1

It Risk Management Jobs (NOW HIRING)

MGO

Director (IT Risk)

Manage financial audit inquiries and interface with regulatory bodies, including PCAOB * Lead and develop teams conducting IT risk assessments, internal audits, and compliance reviews across diverse ...

VBeyond

IT Program Project Manager

Santa Clara, CA · On-site

$114K - $135K/yr

Governance Risk and Compliance GRC and IT Risk Management, Project Planning, Pursuit/ Proposal Management, Risk/Crisis Management We are seeking an accomplished IT Program Project Manager with deep ...

next page

Showing results 1-20

All JobsIt Risk Management Jobs

It Risk Management information

See salary details

$51.5K

$111.6K

$170K

How much do it risk management jobs pay per year?

As of Jun 26, 2026, the average yearly pay for it risk management in the United States is $111,556.00, according to ZipRecruiter salary data. Most workers in this role earn between $90,000.00 and $129,000.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as an IT Risk Management professional, and why are they important?

To thrive in IT Risk Management, you need a strong understanding of information security principles, risk assessment methodologies, and regulatory compliance frameworks, typically supported by a degree in information technology, cybersecurity, or a related field. Familiarity with risk management tools (such as RSA Archer or MetricStream), knowledge of ISO 27001, and certifications like CISSP or CISM are highly valued. Strong analytical thinking, attention to detail, and effective communication skills help in identifying threats and conveying risks to stakeholders. These skills and qualities are crucial for protecting organizational assets, ensuring compliance, and enabling informed decision-making regarding technology risks.

What are some common challenges faced by IT Risk Management professionals, and how can they effectively address them?

IT Risk Management professionals often encounter challenges such as rapidly evolving cyber threats, balancing compliance with operational efficiency, and communicating technical risks to non-technical stakeholders. Staying updated with the latest security trends and regulations is essential for effective risk assessment. Building strong cross-departmental relationships can help ensure that risk mitigation strategies are both practical and well-understood across the organization. Continuous learning and leveraging risk management frameworks, like NIST or ISO 27001, can also provide a solid foundation for addressing these challenges.

What are the 4 types of risk management?

In IT risk management, the four main types are risk avoidance, risk reduction, risk transfer, and risk acceptance. These strategies help IT professionals identify, assess, and mitigate potential threats to information systems and data security effectively. Understanding these types is essential for developing comprehensive risk management plans and ensuring organizational resilience.

Do risk managers make good money?

Risk managers typically earn competitive salaries that vary based on experience, industry, and location. According to industry data, median annual pay ranges from $70,000 to over $120,000, with higher earnings possible for those with certifications like FRM or CRM and advanced skills in data analysis and risk assessment.

What is the difference between It Risk Management vs Cybersecurity Analyst?

AspectIt Risk ManagementCybersecurity Analyst
Required CredentialsCertifications like CRISC, CISSP, CISACertifications like CompTIA Security+, CISSP, CEH
Work EnvironmentFocus on risk assessment, compliance, and mitigation strategies across IT systemsFocus on monitoring, analyzing, and responding to security threats
Employer & Industry UsageUsed in organizations prioritizing risk management and complianceUsed in security operations centers and cybersecurity teams

While both roles involve IT security, It Risk Management emphasizes assessing and mitigating risks across IT systems, whereas Cybersecurity Analysts focus on detecting and responding to security threats. Understanding these differences helps organizations assign the right roles for their security needs.

What is the highest paying risk management job?

The highest paying risk management roles are often senior positions such as Chief Risk Officer (CRO) or Director of Risk Management, with salaries exceeding $150,000 annually. These roles require extensive experience, advanced certifications like FRM or CRM, and strong leadership skills in overseeing enterprise-wide risk strategies.

What is the role of IT risk management?

IT risk management involves identifying, assessing, and mitigating risks related to information technology systems to ensure data security, business continuity, and compliance. IT risk managers develop strategies, implement controls, and monitor vulnerabilities using tools like risk assessments and security frameworks. This role requires knowledge of cybersecurity, regulatory standards, and risk analysis techniques.

What is IT Risk Management?

IT Risk Management is the process of identifying, assessing, and mitigating risks related to information technology systems and data within an organization. This discipline aims to protect information assets from threats such as cyberattacks, data breaches, and system failures by implementing security controls and policies. Effective IT Risk Management helps organizations comply with regulations, minimize financial losses, and ensure business continuity. Professionals in this field continuously monitor and update risk strategies to adapt to evolving technological threats.
More about It Risk Management jobs
What cities are hiring for It Risk Management jobs? Cities with the most It Risk Management job openings:
What states have the most It Risk Management jobs? States with the most job openings for It Risk Management jobs include:
What job categories do people searching It Risk Management jobs look for? The top searched job categories for It Risk Management jobs are:
It Risk Management jobs near you
Infographic showing various It Risk Management job openings in the United States as of June 2026, with employment types broken down into 2% As Needed, 76% Full Time, 8% Part Time, 3% Temporary, 9% Contract, and 2% Nights. Highlights an 95% Physical, 1% Hybrid, and 4% Remote job distribution, with an average salary of $111,556 per year, or $53.6 per hour.
Technology Governance Risk Manager

Technology Governance Risk Manager

Zions Bancorporation

Midvale, UT • On-site

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted yesterday

Zions Bancorporation rating

8.6

Company rating: 8.6 out of 10

Based on 44 frontline employees who took The Breakroom Quiz

24th of 142 rated banks

Job description

Zions Bancorporation's Enterprise Technology and Operations (ETO) team is transforming what it means to work for a financial institution. With a commitment to technology and innovation, we have been providing our community, clients and colleagues the best experience possible for over 150 years. Help us transform our workforce of the future, today.
We are seeking a Technology Governance Risk Manager to join our Information Technology Risk Management (ITRM) organization. In this strategic role, you will design, establish, and oversee a centralized governance program to ensure consistency, maturity, and effectiveness across IT governance.
Acting as a Line 1.5 function, this Technology Governance Risk Manager will provide independent oversight, challenge, and guidance to first-line technology teams while enabling scalable, standardized governance practices. You will partner closely with IT, risk, and second line leadership to ensure programs are well-managed, aligned to enterprise frameworks, and positioned to proactively manage risk.
This Technology Governance Risk Manager is a high-impact opportunity to shape governance strategy, drive program maturity, and strengthen the overall technology control environment.
Responsibilities:
  • Establish and Lead Governance Program
    • Design and implement a centralized governance monitoring program for IT risk and governance functions.
    • Define standards, methodologies, and minimum control expectations for IT governance teams.
    • Ensure consistent application of governance practices across technology domains.
  • Provide Oversight and Challenge (Line 1.5)
    • Deliver independent review and credible challenge of IT governance activities.
    • Assess program effectiveness, control design, and execution quality across teams.
    • Identify gaps and drive alignment to enterprise risk expectations.
  • Drive Program Consistency and Maturity
    • Develop maturity models, assessment frameworks, and benchmarking approaches.
    • Conduct periodic reviews of governance programs to ensure sustainability and scalability.
    • Promote continuous improvement and adoption of leading practices.
  • Partner with IT and Risk Leadership
    • Collaborate with technology leaders to strengthen governance structures and accountability.
    • Act as a trusted advisor to IT governance teams on program design and improvement.
    • Facilitate alignment between first-line execution and second-line expectations.
  • Frameworks, Policies, and Standards
    • Ensure alignment with enterprise risk frameworks (e.g., NIST, COBIT, ISO).
    • Drive adherence to internal policies, standards, and regulatory expectations.
    • Support development and refinement of governance-related policies and procedures.
  • Monitoring, Metrics, and Reporting
    • Define and oversee governance KPIs, KRIs, and performance metrics.
    • Provide reporting and insights to senior leadership on governance effectiveness and risk posture.
    • Identify trends and systemic issues requiring escalation or remediation.
  • Support Risk and Compliance Activities
    • Coordinate with audit, regulatory, and compliance functions.
    • Ensure governance teams are prepared for audits and exams.
    • Track and validate remediation of findings related to governance gaps.
  • Enablement and Education
    • Develop training and guidance to uplift governance capabilities across IT teams.
    • Promote strong risk culture and accountability within the first line.
    • Support onboarding and capability building for governance roles.

Qualifications
  • Bachelor's degree in Information Technology, Computer Science, Business, Risk Management, or a related field (required)
  • 6+ years of experience in IT Risk Management, Technology Governance, IT Audit, or related areas, with demonstrated progression in responsibility
  • Experience operating in or alongside Line 1, Line 1.5, or Line 2 risk functions
  • Strong knowledge of IT control and governance frameworks (e.g., NIST, ISO 27001, COBIT)
  • Experience designing or overseeing governance programs, frameworks, or operating models
  • Ability to assess control environments and provide effective challenge and guidance
  • Excellent communication and executive-level presentation skills
  • Strong analytical and strategic thinking capabilities with the ability to translate ambiguity into structured solutions
  • Proven ability to influence without authority and build relationships across technical and business teams
  • Experience with governance metrics, reporting, and risk insights
  • Project/program management experience with the ability to drive enterprise initiatives

Preferred Qualifications
  • Experience in financial services or a regulated industry
  • Professional certifications such as CISA, CRISC, CISSP, or CGEIT
  • Experience building or maturing enterprise governance or risk programs
  • Familiarity with regulatory expectations impacting IT risk and governance

Location:
This position is fully in office (5 days a week) at the Zions Technology Center - 7860 South Bingham Junction Blvd, Midvale, UT 84047
The Zions Technology Center is a 400,000-square-foot technology campus in Midvale, Utah. Located on the former Sharon Steel Mill superfund site, the sustainably built campus is the company's primary technology and operations center. This modern and environmentally friendly technology center enables Zions to compete for the best technology talent in the state while providing team members with an exceptional work environment with features such as:
  • Electric vehicle charging stations and close proximity to Historic Gardner Village UTA TRAX station.
  • At least 75% of the building is powered by on-site renewable solar energy.
  • Access to outdoor recreation, parks, trails, shareable bikes and locker rooms.
  • Large modern cafe with a healthy and diverse menu.
  • Healthy indoor environment with ample natural light and fresh air.
  • LEED-certified sustainable building that features include the use of low VOC-emitting construction materials.

Benefits:
  • Medical, Dental and Vision Insurance - START DAY ONE!
  • Life and Disability Insurance, Paid Parental Leave and Adoption Assistance
  • Health Savings (HSA), Flexible Spending (FSA) and dependent care accounts
  • Paid Training, Paid Time Off (PTO) and 11 Paid Federal Holidays
  • 401(k) plan with company match, Profit Sharing, competitive compensation in line with work experience
  • Mental health benefits including coaching and therapy sessions
  • Tuition Reimbursement for qualifying employees
  • Employee Ambassador preferred banking products

Apply now if you have a passion for impactful outcomes, enjoy working collaboratively with co-workers, and want to make a difference for the clients and communities we serve.

What Zions Bancorporation employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

Apply