ZipRecruiter

Log In

1

Junior Risk Manager Jobs in Colorado (NOW HIRING)

True Anomaly

Senior Enterprise Risk Manager

Denver, CO · On-site

Enterprise Risk Management (ERM) and Third-Party Vendor Risk Management (TPVRM). This is a ... Build, mentor, and provide technical guidance to junior risk team members and project contributors ...

Carepool

Junior Project Manager

Denver, CO · Hybrid

As a Junior Project Manager, you will assist in the planning, execution, and monitoring of projects ... Conduct risk assessments and develop mitigation strategies - Facilitate meetings with project ...

Carepool

Junior Project Manager

Denver, CO · On-site

As a Junior Project Manager, you will assist in the planning, execution, and monitoring of projects ... Conduct risk assessments and develop mitigation strategies - Facilitate meetings with project ...

EMERGE SOLUTIONS GROUP LLC

Jr. Program Manager

Aurora, CO · On-site

$100K - $105K/yr

Junior Program Manager Schedule: Starting in August 2026 , Full Time 100% ONSITE SUPPORT Location ... This includes technical changes related to web applications, Cybersecurity requirements for Risk ...

New

EMERGE SOLUTIONS GROUP LLC

Jr. Program Manager

Aurora, CO · On-site

$100K - $105K/yr

Junior Program Manager Schedule: Starting in August 2026 , Full Time 100% ONSITE SUPPORT Location ... This includes technical changes related to web applications, Cybersecurity requirements for Risk ...

New

Deloitte

Consulting Manager - SAP Treasury

Denver, CO · On-site

Join us to empower clients to become strategic business partners, manage risk, and unlock new ... Foster a culture of excellence by mentoring and developing junior professionals, sharing expertise ...

Carepool

Junior Digital Project Manager

Denver, CO

... risk management to minimize project risks - Monitor and report on project progress to stakeholders - Implement and manage project changes and interventions to achieve project outputs - Conduct ...

Carepool

Junior Digital Project Manager

Denver, CO · On-site

... risk management to minimize project risks - Monitor and report on project progress to stakeholders - Implement and manage project changes and interventions to achieve project outputs - Conduct ...

Deloitte

Financial Risk Senior Consultant

Denver, CO · On-site

$119.90K/yr

Support management of workstreams on complex engagements, partnering with client counterparts and ... Support junior team members through knowledge sharing, peer review, and on-the-ground project ...

GHD

Junior Project Director (Upstream)

Golden, CO · On-site

Demonstrated leadership of complex or high-risk projects within regulated environments. * Strong ... Experience managing multi-disciplinary teams, vendors, and subcontractors. * Strong planning ...

next page

Showing results 1-20

People also search for

All JobsJunior Risk Manager JobsJunior Risk Manager Jobs in Colorado

Junior Risk Manager information

See Colorado salary details

$20K

$55.2K

$92.5K

How much do junior risk manager jobs pay per year?

As of May 29, 2026, the average yearly pay for junior risk manager in Colorado is $55,164.00, according to ZipRecruiter salary data. Most workers in this role earn between $37,900.00 and $60,500.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Junior Risk Manager, and why are they important?

To thrive as a Junior Risk Manager, you need strong analytical abilities, attention to detail, and a background in finance, business, or risk management—often supported by a relevant bachelor's degree. Familiarity with risk assessment tools, data analysis software (such as Excel), and sometimes certifications like FRM or PRM are typically expected. Excellent communication, problem-solving, and organizational skills help you collaborate effectively and present risk findings clearly. These competencies are crucial for accurately identifying risks, supporting senior risk management decisions, and maintaining the organization's financial and operational integrity.

What are the typical responsibilities of a Junior Risk Manager, and how does the role interact with other departments?

As a Junior Risk Manager, you will typically be responsible for assisting in identifying, assessing, and monitoring risks across the organization. Your day-to-day tasks may include conducting risk assessments, preparing reports, analyzing data, and supporting the implementation of risk mitigation strategies. Collaboration is key in this role; you'll work closely with departments such as compliance, finance, and operations to gather information, ensure policies are followed, and communicate risk findings. This cross-functional teamwork helps build a comprehensive understanding of the company's risk profile and offers valuable learning opportunities for career growth.

What does a Junior Risk Manager do?

A Junior Risk Manager supports the identification, analysis, and mitigation of potential risks that could impact a company's operations or financial performance. Their responsibilities often include gathering data, conducting risk assessments, preparing reports, and assisting senior risk managers with the implementation of risk management strategies. They help ensure that the organization complies with regulations and develops policies to minimize risk exposure. This role is typically entry-level and offers opportunities to learn about risk management frameworks and industry best practices.

What is the difference between Junior Risk Manager vs Risk Analyst?

AspectJunior Risk ManagerRisk Analyst
Required CredentialsBachelor's degree in finance, risk management, or related field; certifications like FRM or CRM are a plusBachelor's degree in finance, economics, or related field; certifications like FRM are common
Work EnvironmentCorporate risk departments, financial institutions, insurance companiesFinancial firms, consulting agencies, insurance companies
Employer & Industry UsageUsed in industries managing financial, operational, or compliance risksCommonly used in finance, banking, and insurance sectors

While both roles involve assessing and managing risks, a Junior Risk Manager typically has broader responsibilities including risk mitigation strategies and reporting, whereas a Risk Analyst focuses more on data analysis and risk assessment. The Junior Risk Manager often supervises Risk Analysts and implements risk policies, making it a more comprehensive role in risk management teams.

What are the most commonly searched types of Risk Manager jobs in Colorado? The most popular types of Risk Manager jobs in Colorado are:
What are popular job titles related to Junior Risk Manager jobs in Colorado? For Junior Risk Manager jobs in Colorado, the most frequently searched job titles are:
What job categories do people searching Junior Risk Manager jobs in Colorado look for? The top searched job categories for Junior Risk Manager jobs in Colorado are:
What cities in Colorado are hiring for Junior Risk Manager jobs? Cities in Colorado with the most Junior Risk Manager job openings:
Junior Risk Manager jobs near you

Senior Enterprise Risk Manager

True Anomaly

Denver, CO • On-site

Full-time

Medical, Dental, Vision, Retirement, PTO

Posted 4 days ago

Job description

Space is a warfighting domain. True Anomaly seeks those with the talent and ambition to build the technology that secures it.
OUR MISSION
True Anomaly delivers decisive capabilities for space superiority. We build autonomous spacecraft, advanced payloads, mission software, and space-based interceptors - enabling the U.S. and its Allies to secure the space environment and counter threats from the ultimate high ground.
OUR VALUES
  • Be the offset. We create asymmetric advantages with creativity and ingenuity.
  • What would it take? We challenge assumptions to deliver ambitious results.
  • It's the people. Our team is our competitive advantage and we are better together.

Your Mission
We are seeking a Senior Enterprise Risk Manager to build, lead, and mature two distinct but interconnected lines of effort: Enterprise Risk Management (ERM) and Third-Party Vendor Risk Management (TPVRM). This is a foundational leadership role for a seasoned risk professional who thrives in fast-moving, mission-critical environments and understands the unique demands of operating at the intersection of defense, aerospace, and commercial SaaS.
The ideal candidate brings deep experience navigating regulated government environments-including RMF, DoD IL5/IL6, and CMMC-and is fluent in industry-standard risk quantification and assessment methodologies such as FAIR (Factor Analysis of Information Risk) and OCTAVE (Operationally Critical Threat, Asset, and Vulnerability Evaluation). They pair that expertise with a startup mindset that enables them to build programs from the ground up, not just maintain inherited ones. You will work cross-functionally with engineering, security, legal, compliance, product, and executive leadership to identify, assess, communicate, and mitigate risk across the enterprise and its extended supply chain.
Responsibilities:
Enterprise Risk Management
  • Design, implement, and continuously mature a scalable enterprise risk management program aligned to NIST RMF, ISO 31000, and applicable DoD frameworks.
  • Apply FAIR methodology to quantify cyber and operational risk in financial terms, enabling data-driven prioritization and executive-level risk decision-making.
  • Leverage OCTAVE or similar threat-centric methodologies to lead structured risk assessments that identify critical assets, threat profiles, and organizational vulnerabilities.
  • Establish and maintain an enterprise risk register, risk appetite statements, and risk tolerance thresholds in collaboration with executive leadership and the Board (as applicable).
  • Lead recurring risk identification, assessment, and prioritization processes across business units, ensuring alignment between operational risk posture and strategic objectives.
  • Develop and maintain executive-ready risk dashboards, KPI/KRI reporting, and program metrics using tools such as Jira, Confluence, GRC platforms, and MS Project.
  • Conduct and coordinate internal audits and risk assessments to ensure adherence to DoD compliance standards, including NIST SP 800-53 Rev. 5, NIST SP 800-171, RMF (IL5 and IL6), and CMMC Level 3.
  • Support audit readiness activities including pre-assessment preparation, evidence collection, POA&M management, and post-audit remediation planning.
  • Develop, implement, and mature information security and enterprise risk policies, standards, and guidelines based on industry best practices.
  • Serve as a primary point of contact for internal stakeholders, executive leadership, and external assessors, certification bodies, and government partners.

Third-Party Vendor Risk Management
  • Build and lead a formalized Third-Party Vendor Risk Management program, establishing vendor classification tiers, risk assessment methodologies, and ongoing monitoring cadences.
  • Define and operationalize vendor onboarding risk assessments, including security questionnaires, compliance validations, and contractual risk controls (e.g., SLAs, right-to-audit clauses, data handling requirements).
  • Maintain a vendor risk inventory and lifecycle management process covering initial due diligence through offboarding, ensuring continuous visibility into third-party risk exposure.
  • Collaborate with legal, procurement, and supply chain teams to embed risk criteria into vendor selection, contract negotiation, and renewal processes.
  • Monitor third-party vendors for changes in risk posture, including cybersecurity incidents, financial instability, regulatory actions, and ITAR/export control concerns.
  • Develop vendor risk reporting and executive-level dashboards to provide ongoing transparency into third-party exposure across critical suppliers and technology partners.
  • Ensure TPVRM program alignment with applicable regulatory requirements including CMMC supply chain requirements, DFARS clauses, and DoD IL environment authorization boundaries.

Cross-Functional Leadership
  • Build, mentor, and provide technical guidance to junior risk team members and project contributors across both lines of effort.
  • Drive alignment across engineering, security operations, product compliance, IT operations, legal, and business operations teams on risk priorities and remediation timelines.
  • Track program milestones, identify dependencies and blockers, and drive timely course corrections with a bias toward action.
  • Continuously improve program workflows, reporting processes, and team coordination for scalable, repeatable, and consistent risk program execution.
  • Proactively track emerging regulatory, threat, and supply chain risk requirements and update program posture accordingly.

Qualifications
  • 10+ years of experience in enterprise risk management, GRC, cybersecurity risk, or related disciplines, with demonstrated ownership of risk programs at a senior level.
  • Proven track record in startup or high-growth technology environments, with demonstrated ability to build risk programs from the ground up under resource and time constraints.
  • Experience applying FAIR for risk quantification and OCTAVE or similar frameworks for threat and asset-centric risk assessments.
  • Direct experience with U.S. government or defense sector programs, including working knowledge of DoD RMF (IL5 and IL6), NIST SP 800-53, NIST SP 800-171, and CMMC.
  • Hands-on experience leading or significantly contributing to Third-Party/Vendor Risk Management programs, including vendor tiering, due diligence workflows, and ongoing monitoring.
  • Strong proficiency in risk management and GRC documentation tools including Jira, Confluence (Atlassian suite), MS Project, enterprise GRC platforms, and MS Visio or Lucidchart.
  • Excellent communication and stakeholder management skills, with a strong ability to translate technical risk into business language for executives and board-level audiences.
  • Active or ability to obtain SECRET, TS/SCI security clearance.
  • Must be a U.S. citizen, lawful permanent resident, or protected individual per ITAR requirements (8 U.S.C. 1324b(a)(3)).

Preferred Qualifications
  • Background in aerospace, defense technology, or SaaS companies operating in regulated government markets; experience with both commercial and government customer bases strongly preferred.
  • Proficient with creating risk programs in a startup environment, scaling, and adapting to changing organizational structure
  • Experience managing certification or authorization initiatives across one or more of: FedRAMP, SOC 2, DoDIN APL, ISO 27001, CMMC as it pertains to risk.
  • Industry certifications such as:
  • Certified in Risk and Information Systems Control (CRISC)
  • Certified Information Systems Auditor (CISA)
  • Certified Information Systems Security Professional (CISSP)
  • Certified in the Governance of Enterprise IT (CGEIT)
  • Certified ScrumMaster (CSM) or Agile PM certification
  • Experience with cloud environments, particularly Azure Government and/or AWS GovCloud, and understanding of authorization boundary design.
  • Working knowledge of ITAR, EAR, and export control considerations as they apply to vendor and supply chain risk.
  • Familiarity with Agile/Scrum and hybrid project delivery models.
  • Experience with DFARS, FAR, and government contracting compliance requirements.

Compensation
  • Base Salary: Denver - $160,000 to $220,000, Long Beach - $165,000 to $230,000, Washington DC - $165,000 to $230,000
  • Equity + Benefits including Health, Dental, Vision, HRA/HSA options, PTO and paid holidays, 401K, Parental Leave

Your actual level and base salary will be determined on a case-by-case basis and may vary based on the following considerations: job-related knowledge and skills, education, location, and experience.
Additional Requirements
  • Work Location: This role will be onsite at one of our facilities in Centennial, CO, Long Beach, California, or Washington, D.C. #LI-Onsite
  • Work Environment: Standard office setting, working at a desk or in a production factory environment
  • Physical Demands: May include frequent standing, sitting, walking, bending, and lifting or carrying items up to 20 lbs.

This position will be open until it is successfully filled.
To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR), you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.
We value diversity of experience, knowledge, backgrounds, and perspectives and harness these qualities to create extraordinary impact. True Anomaly is committed to equal employment opportunity regardless of sex, race, religion or belief, ethnic or national origin, disability, age, citizenship, marital, domestic or civil partnership status, sexual orientation, gender identity, pregnancy, maternity or related condition (including breastfeeding) or any other basis as protected by applicable law. If you have a disability or additional need that requires accommodation, please do not hesitate to let us know.
To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.
True Anomaly is committed to equal employment opportunity on any basis protected by applicable state and federal laws. If you have a disability or additional need that requires accommodation, please do not hesitate to let us.

Apply