If yes, consider joining Baker Tilly (BT) as an IT Audit, Cybersecurity & Risk Manager (HITRUST) ! Our Risk Advisory practice provides a full spectrum of services to help our clients assess their ...
If yes, consider joining Baker Tilly (BT) as an IT Audit, Cybersecurity & Risk Manager (HITRUST) ! Our Risk Advisory practice provides a full spectrum of services to help our clients assess their ...
The team partners with Engineering, Information Security, Risk & Quantitative Analysis, Internal Audit, and senior technology leaders to establish and mature technology risk management practices that ...
The team partners with Engineering, Information Security, Risk & Quantitative Analysis, Internal Audit, and senior technology leaders to establish and mature technology risk management practices that ...
The team partners with Engineering, Information Security, Risk & Quantitative Analysis, Internal Audit, and senior technology leaders to establish and mature technology risk management practices that ...
The team partners with Engineering, Information Security, Risk & Quantitative Analysis, Internal Audit, and senior technology leaders to establish and mature technology risk management practices that ...
Establish and execute first-line risk governance for technology and information security controls - including vulnerability management, patching, endpoint security, network security, and data ...
Establish and execute first-line risk governance for technology and information security controls - including vulnerability management, patching, endpoint security, network security, and data ...
Director of Technology Risk & Controls
Hamilton, NJ · On-site
$225K - $275K/yr
Establish and execute first-line risk governance for technology and information security controls - including vulnerability management, patching, endpoint security, network security, and data ...
Director of Technology Risk & Controls
Hamilton, NJ · On-site
$225K - $275K/yr
Establish and execute first-line risk governance for technology and information security controls - including vulnerability management, patching, endpoint security, network security, and data ...
Establish and execute first-line risk governance for technology and information security controls - including vulnerability management, patching, endpoint security, network security, and data ...
Establish and execute first-line risk governance for technology and information security controls - including vulnerability management, patching, endpoint security, network security, and data ...
This role focuses on transforming how organizations manage IT risk, controls, and regulatory compliance through operating model optimization, advanced technology enablement, and integrated risk ...
This role focuses on transforming how organizations manage IT risk, controls, and regulatory compliance through operating model optimization, advanced technology enablement, and integrated risk ...
In this role, you will oversee and review activities across the ICFR audit cycle including IT risk ... Drive accountability for SOX campaign execution and outcomes, proactively managing timelines, risks ...
In this role, you will oversee and review activities across the ICFR audit cycle including IT risk ... Drive accountability for SOX campaign execution and outcomes, proactively managing timelines, risks ...
In this role, you will oversee and review activities across the ICFR audit cycle including IT risk ... Drive accountability for SOX campaign execution and outcomes, proactively managing timelines, risks ...
In this role, you will oversee and review activities across the ICFR audit cycle including IT risk ... Drive accountability for SOX campaign execution and outcomes, proactively managing timelines, risks ...
... IT audit, cybersecurity risk, operational risk, or a related field. * Experience assessing ... Experience with third-party risk management, AI risk, or emerging technology risk. * Relevant ...
... IT audit, cybersecurity risk, operational risk, or a related field. * Experience assessing ... Experience with third-party risk management, AI risk, or emerging technology risk. * Relevant ...
Technology Risk Advisor
Malvern, PA · On-site
... IT audit, cybersecurity risk, operational risk, or a related field. * Experience assessing ... Experience with third-party risk management, AI risk, or emerging technology risk. * Relevant ...
Technology Risk Advisor
Malvern, PA · On-site
... IT audit, cybersecurity risk, operational risk, or a related field. * Experience assessing ... Experience with third-party risk management, AI risk, or emerging technology risk. * Relevant ...
The role participates in the Information Security compliance program and is responsible for operating Wawa's technology risk management processes, maintaining Wawa's technology related Information ...
The role participates in the Information Security compliance program and is responsible for operating Wawa's technology risk management processes, maintaining Wawa's technology related Information ...
The role participates in the Information Security compliance program and is responsible for operating Wawa's technology risk management processes, maintaining Wawa's technology related Information ...
The role participates in the Information Security compliance program and is responsible for operating Wawa's technology risk management processes, maintaining Wawa's technology related Information ...
Manager, IT Audit
Wilmington, DE · On-site
$105K - $167K/yr
The role designs IT risk assessments and audit programs, oversees engagement execution and quality ... The Manager also supports the Audit, Risk and Compliance Committee reporting and assists the ...
Manager, IT Audit
Wilmington, DE · On-site
$105K - $167K/yr
The role designs IT risk assessments and audit programs, oversees engagement execution and quality ... The Manager also supports the Audit, Risk and Compliance Committee reporting and assists the ...
IT SOX Senior Auditor
$92K - $121K/yr
Experience testing and evaluating automated business process controls and IT controls within financial services, technology, or risk management environments, including end-to-end process, risk, and ...
IT SOX Senior Auditor
$92K - $121K/yr
Experience testing and evaluating automated business process controls and IT controls within financial services, technology, or risk management environments, including end-to-end process, risk, and ...
Third-Party Risk & Vendor Management * Manage the third-party risk assessment program , ensuring that all vendors with access to PHI or critical systems undergo security evaluation and periodic ...
Third-Party Risk & Vendor Management * Manage the third-party risk assessment program , ensuring that all vendors with access to PHI or critical systems undergo security evaluation and periodic ...
IT SOX Senior Auditor
Malvern, PA · On-site
$92K - $121K/yr
Experience testing and evaluating automated business process controls and IT controls within financial services, technology, or risk management environments, including end-to-end process, risk, and ...
IT SOX Senior Auditor
Malvern, PA · On-site
$92K - $121K/yr
Experience testing and evaluating automated business process controls and IT controls within financial services, technology, or risk management environments, including end-to-end process, risk, and ...
Risk Manager
$75K - $98K/yr
The Risk Manager ensures compliance with applicable federal, Commonwealth of Pennsylvania, and ... the Information Technology Department. Experience supporting or developing cyber liability ...
Risk Manager
$75K - $98K/yr
The Risk Manager ensures compliance with applicable federal, Commonwealth of Pennsylvania, and ... the Information Technology Department. Experience supporting or developing cyber liability ...
Deep experience or equivalent experience in technology risk management, information security and ... cyber with a focus on risk identification, assessment and mitigation * Experience with industry ...
Deep experience or equivalent experience in technology risk management, information security and ... cyber with a focus on risk identification, assessment and mitigation * Experience with industry ...
Deep experience or equivalent experience in technology risk management, information security and ... cyber with a focus on risk identification, assessment and mitigation * Experience with industry ...
Deep experience or equivalent experience in technology risk management, information security and ... cyber with a focus on risk identification, assessment and mitigation * Experience with industry ...
It Risk Manager information
See Philadelphia, PA salary details
$49.2K - $59.5K
4% of jobs
$59.5K - $69.8K
6% of jobs
$69.8K - $80.1K
11% of jobs
$84K is the 25th percentile. Wages below this are outliers.
$80.1K - $90.4K
11% of jobs
The median wage is $98.6K / yr.
$90.4K - $100.7K
23% of jobs
$100.7K - $111K
13% of jobs
$117.8K is the 75th percentile. Wages above this are outliers.
$111K - $121.3K
12% of jobs
$121.3K - $131.6K
8% of jobs
$131.6K - $141.9K
6% of jobs
$141.9K - $152.2K
4% of jobs
$152.2K - $162.5K
2% of jobs
$49.2K
$106.6K
$162.5K
How much do it risk manager jobs pay per year?
What are some common challenges faced by IT Risk Managers when implementing risk mitigation strategies across different departments?
What are the key skills and qualifications needed to thrive as an IT Risk Manager, and why are they important?
What is the highest salary for a risk manager?
What does an IT Risk Manager do?
Is risk a good career?
What is the difference between It Risk Manager vs Cybersecurity Analyst?
| Aspect | It Risk Manager | Cybersecurity Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CISSP, Security+, CEH |
| Work Environment | Oversees risk management strategies across IT systems | Monitors and responds to security threats and incidents |
| Industry Usage | Used in organizations with complex IT infrastructures | Common in security-focused roles across industries |
The It Risk Manager focuses on identifying and managing IT risks at an organizational level, ensuring compliance and risk mitigation strategies. In contrast, a Cybersecurity Analyst primarily monitors security threats and responds to incidents. While both roles require similar certifications and work within the IT security domain, the It Risk Manager has a broader scope related to risk management policies, whereas the Cybersecurity Analyst concentrates on threat detection and response.
How much does a risk manager get paid?
What is the role of IT risk manager?

Full-time
Re-posted yesterday
Job description
Baker Tilly is a leading advisory, tax and assurance firm, providing clients with a genuine coast-to-coast and global advantage in major regions of the U.S. and in many of the world's leading financial centers - New York, London, San Francisco, Los Angeles, Chicago and Boston. Baker Tilly Advisory Group, LP and Baker Tilly US, LLP (Baker Tilly) provide professional services through an alternative practice structure in accordance with the AICPA Code of Professional Conduct and applicable laws, regulations and professional standards. Baker Tilly US, LLP is a licensed independent CPA firm that provides attest services to its clients. Baker Tilly Advisory Group, LP and its subsidiary entities provide tax and business advisory services to their clients. Baker Tilly Advisory Group, LP and its subsidiary entities are not licensed CPA firms.
Baker Tilly Advisory Group, LP and Baker Tilly US, LLP, trading as Baker Tilly, are independent members of Baker Tilly International, a worldwide network of independent accounting and business advisory firms in 141 territories, with 43,000 professionals and a combined worldwide revenue of $5.2 billion. Visitbakertilly.comor join the conversation onLinkedIn,FacebookandInstagram.
Please discuss the work location status with your Baker Tilly talent acquisition professional to understand the requirements for an opportunity you are exploring.
Baker Tilly is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability or protected veteran status, gender identity, sexual orientation, or any other legally protected basis, in accordance with applicable federal, state or local law.
Any unsolicited resumes submitted through our website or to Baker Tilly Advisory Group, LP, employee e-mail accounts are considered property of Baker Tilly Advisory Group, LP, and are not subject to payment of agency fees. In order to be an authorized recruitment agency ("search firm") for Baker Tilly Advisory Group, LP, there must be a formal written agreement in place and the agency must be invited, by Baker Tilly's Talent Attraction team, to submit candidates for review via our applicant tracking system.
Job Description:Responsibilities
Are you interested in joining one of the fastest growingconsulting and accounting firms in the country?
Would you like the ability to join a highly dynamic team focusedon providing exceptional client service in the areas of risk and advisory?
If yes, consider joining Baker Tilly (BT) as an IT Audit, Cybersecurity & Risk Manager (HITRUST)! Our Risk Advisory practice provides a full spectrum of services to help our clients assess their risks, develop strategies to compete in an ever-changing business environment, and achieve their goals and objectives. All of this is accomplished through deep industry knowledge of risk, governance, internal audit, compliance, IT, and cybersecurity best practices.
As one of the fastest growing firms in the nation, BT has the ability to offer you upward career trajectory, flexibility in how and where you get your work done and meaningful relationships with clients, teammates and leadership who truly care about you and your development.
Does this describe you?
You want to continue to expand your work experiences and hone your skills as a comprehensive risk professional in the areas of compliance, enterprise risk management, governance, internal controls, and data analytics
You crave the opportunity to be part of a fast growing, entrepreneurial risk consulting practice where your hard work and creativity will be rewarded
You do your best work when you are part of a talented, down-to-earth team that thrives in collaboration and truly enjoys working together
You feel valued when you are provided the resources and support to continually sharpen your technical skills and build your career now, for tomorrow
What you will do:
Work closely with client executives and management teams to understand their businesses and assist in identifying and managing financial and operational risks within their business processes and systems
Develop in-depth knowledge of clients' businesses and industries by having direct client interaction while working on multiple aspects of an engagement
Think independently and strategically about your clients' business, systems and risks providing recommendations for business and processimprovements based upon knowledge gained relative to the client'soperations, processes and business objectives
Provide strategic business advice to clients by assisting in the implementation of new processes and controls that address key risks
Assess, manage and optimize information technology risk across a wide range of areas, including cybersecurity, IT strategy and governance, IT regulatory and compliance requirements, and business continuity and disaster recovery.
Review clients' processes and controls against industry frameworks, identifying gaps in design and execution, and communicating issues and recommendations to clients
Draft comprehensive executive summaries and final reports for delivery to the client, documenting and reviewing engagement work papers in accordance with industry-accepted internal audit methodologies
Act as a valued business advisor, build relationships and communicateeffectively with the client to provide superior client service
Facilitate professional and effective presentations to internal and external audiences
Continue to develop your knowledge and experience working with a variety of technology environments, platforms, applications and tools/utilities
Assist with managing client engagement staffing, billings/collections, and ensure client profitability targets are met
Utilize your entrepreneurial skills to network and build strong relationships internally and externally with clients and the community
Invest in your professional development individually and through participation in firm wide learning and development programs
Support the growth and development of team members through the Baker Tilly Care and Teach philosophy, helping associates meet their professional goals
Enjoy friendships, social activities and team outings that encourage a work-life balance
Bachelor's degree in accounting, finance, or a related program
CPA, CISA, CCSFP or CISSP designation(s) required
5+ year(s) experience with risk advisory, internal/external audit, business process reengineering, and/or internal controls with focus on IT related subject matter (e.g., SOC 1/2 Exams, HITRUST, HIPAA, NIST CSF, NIST 800-53)
Experience performing HITRUST engagements preferred.Open to candidates willing to obtain HITRUST Certification in the future
Experience with Security+ is preferred
Experience with Cloud audit experience and certifications is preferred
Experience as a client serving professional for a consulting firm desired
Excellent analytical, technical, and problem-solving skills, with strong attention to detail
Exceptional verbal and written communication, collaboration, and time management skills