1

It Risk Manager Jobs in Ohio (NOW HIRING)

IT Manager

Columbus, OH · On-site

$91K - $112K/yr

They are seeking an IT Manager to oversee the daily operations, support, security, and ... technology risk assessments as required. • Oversee lifecycle management of desktops, laptops ...

Tech Risk and Controls Lead

Columbus, OH · On-site

$41K - $53K/yr

... risk management, information security, or related field, emphasizing risk identification ... technology insights into business strategies for senior executives Preferred qualifications ...

... Risk Manager to join our Commercial Operations team. This role is responsible for monitoring the ... Reviews credit information and makes decisions related to credit limits and credit holds for ...

... Risk Manager to join our Commercial Operations team. This role is responsible for monitoring the ... Reviews credit information and makes decisions related to credit limits and credit holds for ...

Understand the impact of key technology trends and workforce changes impacting our clients through ... Advanced proficiency in Microsoft Office (PowerPoint, Excel, Visio) Information for applicants with ...

next page

Showing results 1-20

It Risk Manager information

See Ohio salary details

$49K

$106.1K

$161.6K

How much do it risk manager jobs pay per year?

As of Jul 13, 2026, the average yearly pay for it risk manager in Ohio is $106,056.00, according to ZipRecruiter salary data. Most workers in this role earn between $85,600.00 and $122,600.00 per year, depending on experience, location, and employer.

What are some common challenges faced by IT Risk Managers when implementing risk mitigation strategies across different departments?

IT Risk Managers often encounter challenges such as varying levels of risk awareness among departments, resistance to new controls or procedures, and balancing business objectives with security requirements. Successful risk mitigation requires clear communication, stakeholder buy-in, and tailored training to ensure all teams understand the importance of compliance. Building strong relationships and fostering a culture of shared responsibility are key to overcoming these hurdles and ensuring effective risk management across the organization.

What are the key skills and qualifications needed to thrive as an IT Risk Manager, and why are they important?

To thrive as an IT Risk Manager, you need a solid understanding of risk assessment, information security, and compliance frameworks, often backed by a bachelor's degree in information technology or related fields. Familiarity with tools such as risk management software, GRC platforms, and certifications like CISSP, CISM, or CRISC is typically required. Strong analytical thinking, communication skills, and the ability to influence stakeholders are crucial soft skills in this role. These skills ensure effective identification, mitigation, and communication of IT risks, supporting organizational resilience and compliance.

What is the highest salary for a risk manager?

The highest salary for an IT Risk Manager can exceed $150,000 annually, especially for those with extensive experience, advanced certifications like CRISC or CISSP, and working in large organizations or financial institutions. Senior risk managers or those in managerial or executive roles may earn even higher compensation, including bonuses and benefits.

What does an IT Risk Manager do?

An IT Risk Manager is responsible for identifying, assessing, and mitigating risks that could impact an organization's information technology systems and data. They develop and implement risk management strategies, policies, and procedures to protect against cybersecurity threats, data breaches, and compliance violations. IT Risk Managers also work closely with other departments to ensure security best practices are followed and often lead risk assessments, audits, and incident response planning.

Is risk a good career?

A career as an IT Risk Manager is considered stable and in demand, as organizations prioritize cybersecurity and risk mitigation. The role requires strong analytical skills, knowledge of security frameworks, and often certifications like CISSP or CRISC. It offers opportunities for advancement and specialization in a growing field.

What is the difference between It Risk Manager vs Cybersecurity Analyst?

AspectIt Risk ManagerCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCISSP, Security+, CEH
Work EnvironmentOversees risk management strategies across IT systemsMonitors and responds to security threats and incidents
Industry UsageUsed in organizations with complex IT infrastructuresCommon in security-focused roles across industries

The It Risk Manager focuses on identifying and managing IT risks at an organizational level, ensuring compliance and risk mitigation strategies. In contrast, a Cybersecurity Analyst primarily monitors security threats and responds to incidents. While both roles require similar certifications and work within the IT security domain, the It Risk Manager has a broader scope related to risk management policies, whereas the Cybersecurity Analyst concentrates on threat detection and response.

How much does a risk manager get paid?

A risk manager's average salary varies by experience and location but typically ranges from $80,000 to $150,000 annually. Senior risk managers or those with specialized certifications like FRM or CRM can earn higher salaries, especially in large organizations or financial sectors.

What is the role of IT risk manager?

An IT risk manager is responsible for identifying, assessing, and mitigating information technology risks within an organization. They develop security policies, implement controls, and ensure compliance with industry standards to protect digital assets and infrastructure. Strong knowledge of cybersecurity, risk management frameworks, and relevant certifications like CISSP or CISM are often required.
What are popular job titles related to It Risk Manager jobs in Ohio? For It Risk Manager jobs in Ohio, the most frequently searched job titles are:
What cities in Ohio are hiring for It Risk Manager jobs? Cities in Ohio with the most It Risk Manager job openings:
Infographic showing various It Risk Manager job openings in Ohio as of July 2026, with employment types broken down into 1% As Needed, 76% Full Time, 20% Part Time, and 3% Contract. Highlights an 94% Physical, 1% Hybrid, and 5% Remote job distribution, with an average salary of $106,056 per year, or $51 per hour.
IT Security Lead - Risk Management

IT Security Lead - Risk Management

Owens Corning

Toledo, OH

Other

Posted 24 days ago


Owens Corning rating

8.0

Company rating: 8.0 out of 10

Based on 98 frontline employees who took The Breakroom Quiz

133rd of 527 rated manufacturers


Job description

PURPOSE OF THE JOB

The IT Security Lead - Risk Management is a critical member of the Owens Corning Global Information Services (GIS) Security team. This role supports the Governance, Risk, and Compliance (GRC) function by executing cybersecurity governance activities, performing risk assessments, maintaining security policies and standards, supporting audits, and enabling compliance across the enterprise.

This role has global responsibility for identifying, analyzing, documenting, and communicating cybersecurity risks and control gaps in support of the cybersecurity risk framework. Strong analytical skills are required to assess complex environments, identify emerging risks and inconsistencies, and translate findings into clear, actionable guidance for risk owners and leadership.

The IT Security Lead - Risk Management also supports cybersecurity compliance activities across projects, programs, facilities, and business functions. This role manages information security communications, including policies, standards, and related requirements, ensuring updates are documented, approved, and communicated in alignment with governance expectations.

Success in this role requires comfort operating in a fastpaced environment, managing multiple priorities, and adjusting to changing business needs. Curiosity, integrity, honesty, and strong attention to detail are essential, particularly when working with regulatory requirements, audit evidence, risk documentation, and enterprise reporting.

Reports to:                          IT Security Leader - Governance, Risk and Compliance

Span of Control:            Individual Contributor

JOB RESPONSIBILITIES

Knowing Our Businesses and their Strategies

  • Maintain strong awareness of evolving security standards, regulatory requirements, and industry best practices, and assess their impact on organizational risk posture and compliance obligations.
  • Enable effective governance and audit readiness for Business Continuity and Disaster Recovery (BCP/DR) controls, aligned with information security, incident response, and compliance requirements.
  • Identify opportunities to align security and compliance initiatives with strategic business programs (e.g., digital transformation, AI adoption, operational resilience), ensuring security is embedded as a business enabler rather than a constraint.
  • Provide governance support for AI and machinelearning capabilities by maintaining and evolving security, governance, and responsibleAI policies aligned to enterprise objectives; executing AI security and risk assessments to identify control gaps and emerging risks; coordinating with Legal, Privacy, and business stakeholders to ensure alignment with regulatory, ethical, and compliance expectations; and continuously monitoring regulatory developments, industry trends, and emerging risks to inform and strengthen governance practices.

Executing Strategy

  • Support enterprise cybersecurity governance and compliance efforts, including development and maintenance of information security policies, standards, procedures, and ISO 27001 ISMS documentation.
  • Perform compliance and assurance activities, including internal control reviews and external audit coordination.
  • Perform information security risk assessments in accordance with the cybersecurity risk framework.
  • Identify control gaps, weaknesses, and emerging risks, document findings clearly and consistently.
  • Support risk owners with analysis, impact statements, and documentation.
  • Track and report risk remediation activities and status.
  • Execute thirdparty security assessments aligned with vendor risk management processes.
  • Document vendor risks, control gaps, and remediation actions.
  • Maintain vendor risk documentation and audit evidence.
  • Draft, review, and maintain information security policies, standards, procedures, and guidelines.
  • Ensure policies align with ISO 27001, regulatory requirements, and internal governance standards.
  • Perform ongoing control testing and monitoring activities.
  • Track audit findings, remediation activities, and evidence closure.

Influencing in the Function

  • Collaborate with crossfunctional partners to support security and compliance requirements.
  • Partner with Internal Controls, Internal Audit, and external auditors to provide evidence, documentation, and subject matter expertise.
  • Engage with application and system owners to assess control effectiveness and document risk posture.
  • Communicate findings clearly, distinguishing between required controls and bestpractice recommendations.
  • Prepare accurate, wellarticulated reports on ISMS status, assessment results, and compliance metrics.
  • Support documentation, publication, and communication of approved policy and control changes.
  • Promote a culture of accountability, transparency, and continuous improvement within information security.

Developing Talent

  • Support security awareness activities related to policy understanding and adherence.
  • Mentor and coach team members to build information security knowledge, risk awareness, and governance capabilities.
  • Share knowledge with a broader audience through training sessions, forums, and crossfunctional engagements on information security topics.
  • Proactively communicate security expectations, emerging risks, and best practices to drive awareness and adoption across the organization.
  • Identify opportunities to improve documentation quality, assessment consistency, and governance processes while enabling team learning and growth.

JOB REQUIREMENTS

MINIMUM QUALIFICATIONS

  • Bachelor's degree in computer science, Information Systems, Information Technology; equivalent experience may be considered in lieu of a degree
  • 5+ years of information security experience
  • 3+ years supporting governance, risk, and compliance functions

KNOWLEDGE, SKILLS AND ABILITIES

  • Strong understanding of project and operational execution in complex environments, with a hands-on, delivery-focused approach
  • Strong knowledge of security controls, data classification, regulatory requirements, and privacy standards, including working knowledge of ISO 27001
  • Excellent analytical, documentation, and problem-solving skills, with the ability to translate risks into clear, actionable controls and audit evidence
  • Proven ability to build trust and work effectively across a highly matrixed, global organization, engaging stakeholders with varying levels of technical expertise
  • Proven ability to manage multiple priorities with strong attention to detail
  • Excellent communication, organizational, and interpersonal skills Self-starter with curiosity and a continuous improvement mindset
  • Service-oriented professional with high personal standards and accountability
  • Working knowledge of AI governance, responsible AI principles, and emerging regulatory considerations, with the ability to translate evolving risks into practical security and compliance frameworks
  • Experience supporting business continuity, disaster recovery, or operational resilience initiatives from a security or compliance perspective
  • Demonstrated ability to distinguish between mandatory security requirements and best practices, and clearly articulate that distinction
  • Ability to travel up to 10%, domestically

#LI-JP1

#LI-HYBRID

About Owens Corning  

Owens Corning is a branded building products leader with three complementary market-leading businesses providing roofing, insulation, and doors primarily for residential markets in North America and Europe. The company operates with an integrated go-to-market strategy and a unique set of OC Advantages - including its iconic brand, unparalleled commercial strength, leading technology, and winning cost position - to help customers win and grow in the market. Owens Corning is committed to helping build better and achieve more through winning partnerships, leading performance, and engaging people. Founded in 1938 and headquartered in Toledo, Ohio, Owens Corning is listed on the New York Stock Exchange (NYSE: OC). For more information, visit www.owenscorning.com. 

Owens Corning is an equal opportunity employer. Except in limited circumstances such as formal apprenticeship programs, Owens Corning does not employ anyone under the age of 18.


What Owens Corning employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom


OWENS CORNING logo

About OWENS CORNING

Sourced by ZipRecruiter

Owens Corning (OC) develops, manufactures and markets insulation, roofing, and fiberglass composites. Global in scope and human in scale, the company's market-leading businesses use their deep expertise in materials, manufacturing and building science to develop products and systems that save energy and improve comfort in commercial and residential buildings. Through its glass reinforcements business, the company makes thousands of products lighter, stronger and more durable. Ultimately, Owens Corning people and products make the world a better place. Based in Toledo, Ohio, Owens Corning posted 2017 sales of $6.4 billion and employs 19,000 people in 37 countries. It has been a Fortune 500® company for 64 consecutive years. For more information, please visit www.owenscorning.com. A career at Owens Corning offers the ability to enhance your expertise and achieve your personal and professional aspirations. Through it all, we'll empower you with an environment that encourages open communication and big ideas, competitive pay for your performance, comprehensive benefits, and more opportunities to make your impact.

Industry

Construction materials wholesalers

Company size

10,000+ Employees

Headquarters location

Toledo, OH, US

Social media