1

It Risk Manager Jobs in Texas (NOW HIRING)

Broad knowledge of information and technology risk management policies, methods, standards, tools, and processes (e.g. ISO, COSO, COBIT) as well as knowledge of compliance, legal, internal / external ...

This position will manage day-to-day IT audit activities including managing IT resources, executing risk-based IT SOX testing, performing internal audits, and leading audit automation and data and ...

Senior Director, Enterprise Risk Management Overview We are seeking a forward-thinking Enterprise ... Work closely with IT, Cybersecurity, Compliance, and Audit teams to embed AI-enabled risk practices ...

Risk Manager, Endpoint Security Capital One is one of the fastest growing organizations in the ... TDRM makes sure they have the tech and data risk information they need to make good decisions.

Enterprise Architect (IT)

Dallas, TX · On-site +1

$64.50 - $83.25/hr

Partner with cybersecurity, technology risk, compliance, infrastructure, application, data, and operations teams to support holistic IT risk management. * Facilitate alignment across application ...

next page

Showing results 1-20

It Risk Manager information

See Texas salary details

$48K

$103.9K

$158.4K

How much do it risk manager jobs pay per year?

As of Jul 4, 2026, the average yearly pay for it risk manager in Texas is $103,932.00, according to ZipRecruiter salary data. Most workers in this role earn between $83,800.00 and $120,200.00 per year, depending on experience, location, and employer.

What are some common challenges faced by IT Risk Managers when implementing risk mitigation strategies across different departments?

IT Risk Managers often encounter challenges such as varying levels of risk awareness among departments, resistance to new controls or procedures, and balancing business objectives with security requirements. Successful risk mitigation requires clear communication, stakeholder buy-in, and tailored training to ensure all teams understand the importance of compliance. Building strong relationships and fostering a culture of shared responsibility are key to overcoming these hurdles and ensuring effective risk management across the organization.

What are the key skills and qualifications needed to thrive as an IT Risk Manager, and why are they important?

To thrive as an IT Risk Manager, you need a solid understanding of risk assessment, information security, and compliance frameworks, often backed by a bachelor's degree in information technology or related fields. Familiarity with tools such as risk management software, GRC platforms, and certifications like CISSP, CISM, or CRISC is typically required. Strong analytical thinking, communication skills, and the ability to influence stakeholders are crucial soft skills in this role. These skills ensure effective identification, mitigation, and communication of IT risks, supporting organizational resilience and compliance.

What is the highest salary for a risk manager?

The highest salary for an IT Risk Manager can exceed $150,000 annually, especially for those with extensive experience, advanced certifications like CRISC or CISSP, and working in large organizations or financial institutions. Senior risk managers or those in managerial or executive roles may earn even higher compensation, including bonuses and benefits.

What does an IT Risk Manager do?

An IT Risk Manager is responsible for identifying, assessing, and mitigating risks that could impact an organization's information technology systems and data. They develop and implement risk management strategies, policies, and procedures to protect against cybersecurity threats, data breaches, and compliance violations. IT Risk Managers also work closely with other departments to ensure security best practices are followed and often lead risk assessments, audits, and incident response planning.

Is risk a good career?

A career as an IT Risk Manager is considered stable and in demand, as organizations prioritize cybersecurity and risk mitigation. The role requires strong analytical skills, knowledge of security frameworks, and often certifications like CISSP or CRISC. It offers opportunities for advancement and specialization in a growing field.

What is the difference between It Risk Manager vs Cybersecurity Analyst?

AspectIt Risk ManagerCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCISSP, Security+, CEH
Work EnvironmentOversees risk management strategies across IT systemsMonitors and responds to security threats and incidents
Industry UsageUsed in organizations with complex IT infrastructuresCommon in security-focused roles across industries

The It Risk Manager focuses on identifying and managing IT risks at an organizational level, ensuring compliance and risk mitigation strategies. In contrast, a Cybersecurity Analyst primarily monitors security threats and responds to incidents. While both roles require similar certifications and work within the IT security domain, the It Risk Manager has a broader scope related to risk management policies, whereas the Cybersecurity Analyst concentrates on threat detection and response.

How much does a risk manager get paid?

A risk manager's average salary varies by experience and location but typically ranges from $80,000 to $150,000 annually. Senior risk managers or those with specialized certifications like FRM or CRM can earn higher salaries, especially in large organizations or financial sectors.

What is the role of IT risk manager?

An IT risk manager is responsible for identifying, assessing, and mitigating information technology risks within an organization. They develop security policies, implement controls, and ensure compliance with industry standards to protect digital assets and infrastructure. Strong knowledge of cybersecurity, risk management frameworks, and relevant certifications like CISSP or CISM are often required.
What job categories do people searching It Risk Manager jobs in Texas look for? The top searched job categories for It Risk Manager jobs in Texas are:
What cities in Texas are hiring for It Risk Manager jobs? Cities in Texas with the most It Risk Manager job openings:
Infographic showing various It Risk Manager job openings in Texas as of June 2026, with employment types broken down into 82% Full Time, 14% Part Time, 2% Contract, and 2% Nights. Highlights an 95% Physical, 1% Hybrid, and 4% Remote job distribution, with an average salary of $103,932 per year, or $50 per hour.
Director, Technology Risk

Director, Technology Risk

Fidelity Investments

Westlake, TX • On-site

Full-time

Posted 10 days ago


Fidelity Investments rating

8.7

Company rating: 8.7 out of 10

Based on 266 frontline employees who took The Breakroom Quiz

16th of 146 rated financial services


Job description

Job Description:

Position Description:

Develops and implements IT controls (including IT Audit and IT security controls) and strategies to further the protection of customer data. Ensures adequate IT control coverage using Public Accounting (IT Audit) and Controls expertise. Develops an understanding of the IT landscape using IT system, control, and process owners. Manages and develops a team of analysts and ensures comprehensive responses to client technology audits and security assessments. Regularly meets with executives and senior representatives from clients, across all market segments, to discuss the IT control environment, and how the enterprise protects data and retirement plan participant accounts. Discusses and promotes enterprise technology and security capabilities with stakeholders.

Primary Responsibilities:

  • Supports the development, enhancement, and implementation of Governance, Risk, and Compliance (GRC) tools.

  • Develops and maintains risk and control assurance methodologies, policies and control frameworks, and risk register in GRC platform tools.

  • Executes and manages certifications in relation to information security standards for the Information Security Management System (ISMS).

  • Coordinates and manages the activities of a cross-functional governance forum for the oversight and management of key deliverables for the ISMS.

  • Maintains the centralized controls inventory and manages the periodic controls verification/certification process with Control Owners.

  • Performs controls normalization to develop a standard set of controls across audits and programs.

  • Designs and implements ongoing risk and controls trainings to Control Owners and Managers.

  • Provides support for the management of annual enterprise audits.

  • Oversees internal and external audit engagements.

  • Oversees the IT controls program and identifies control deficiencies and workarounds.

  • Supports the development and integration of a centralized platform for risk and controls management.

  • Designs, develops, and maintains processes for modules and functionalities.

  • Diagnoses, troubleshoots, and resolves hardware, software, or other network and system problems.

  • Replaces defective components when necessary.

Education and Experience:

Bachelor's degree in Computer Science, Engineering, Information Technology, Information Systems, or a closely related field (or foreign education equivalent) and six (6) years of experience as a Director, Technology Risk (or closely related occupation) evaluating Information Produced by the Entity (IPE) in a financial auditing environment, using IT general controls, IT application controls, and IT dependent manual controls.

Or, alternatively, Master's degree in Computer Science, Engineering, Information Technology, Information Systems, or a closely related field (or foreign education equivalent) and four (4) years of experience as a Director, Technology Risk (or closely related occupation) evaluating Information Produced by the Entity (IPE) in a financial auditing environment, using IT general controls, IT application controls, and IT dependent manual controls.

Skills and Knowledge:

Candidate must also possess:

  • Demonstrated Expertise ("DE") executing risk assessment audits of large-scale IT systems (including Enterprise Resource Planning (ERP) systems, cybersecurity, and Cloud computing systems); and developing reports and presentations for senior management with recommended mediation and corrective actions, using Archer to mitigate security and financial risk.

  • DE performing IT risk assessments and audits to ensure compliance with General Data Protection Regulation (GDPR), SOX 404, and Accounting Standard 606 regulatory requirements; and drafting reports for senior executives on audit results and corrective actions (Security Policy, Access Control, and Change Controls), using access management tools (Access Hub and SailPoint), configuration management tools (ServiceNow), and data analytic tools (PowerBI and Alteryx).

  • DE performing application audits, vendor system assessments, and pre and post system implementation assessments according to auditing software development methodologies -- Agile, Scrum, Scaled Agile Framework, and DevOps; and performing technology audits using industry frameworks -- Payment Card Industry (PCI), Control Objectives for Information and Related Technologies (COBIT), National Institute of Standards and Technology (NIST), and ISO 27001.

  • DE performing information security audits of data, programs, and source code, using Audit Command Language (ACL) data analytics tool within UNIX/Linux, Windows, and Relational Database Management Systems (Oracle, Sybase and SQL Server) environments.

#PE1M2

#LI-DNI

Certifications:Category:Information Technology

Please be advised that Fidelity's business is governed by the provisions of the Securities Exchange Act of 1934, the Investment Advisers Act of 1940, the Investment Company Act of 1940, ERISA, numerous state laws governing securities, investment and retirement-related financial activities and the rules and regulations of numerous self-regulatory organizations, including FINRA, among others. Those laws and regulations may restrict Fidelity from hiring and/or associating with individuals with certain Criminal Histories.


What Fidelity Investments employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom