1

Technology Risk Analyst Jobs (NOW HIRING)

Senior IT Risk Analyst (First Line of Defense) Rockland Trust is seeking a Senior IT Risk Analyst to advance the Bank's First Line of Defense IT Risk Management Program. This is a hybrid role, 3 days ...

IT Risk Analyst Location: Larkin Bldg @ Exchange Street Location of Job : US:NY:Buffalo Work Type : Full-Time Shift 1 As the IT Risk Analyst, you will report to the CISO and play a key role in the ...

IT Risk Analyst

San Diego, CA ยท On-site

$79K - $102K/yr

Position Summary The position of IT Risk Analyst is responsible for participating in IT compliance and risk management initiatives. The candidate should demonstrate a basic understanding of IT risk, ...

Senior Technology Risk Analyst

O Fallon, MO ยท On-site

$88K - $141K/yr

Title and Summary Senior Technology Risk Analyst Perform due diligence reviews and questionnaire support for Mastercard globally with a focus on APT Test & Learn and APT generally. This includes ...

... the analyst continuously evaluates the assurance of the risk management program.The Senior Technology RiskAnalyst tracks remediation progressvalidates the accuracy of riskentries andenforces ...

... the analyst continuously evaluates the assurance of the risk management program.The Senior Technology RiskAnalyst tracks remediation progressvalidates the accuracy of riskentries andenforces ...

Our client is seeking a Compliance & Risk Analyst to support technology audit, compliance, and operational risk initiatives within its technology organization. This individual will partner with ...

Our client is seeking a Compliance & Risk Analyst to support technology audit, compliance, and operational risk initiatives within its technology organization. This individual will partner with ...

next page

Showing results 1-20

Technology Risk Analyst information

See salary details

$15

$40

$65

How much do technology risk analyst jobs pay per hour?

As of Jul 9, 2026, the average hourly pay for technology risk analyst in the United States is $40.49, according to ZipRecruiter salary data. Most workers in this role earn between $29.81 and $49.28 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Technology Risk Analyst, and why are they important?

To thrive as a Technology Risk Analyst, you need a strong background in information security, risk assessment methodologies, and a relevant degree such as in computer science or cybersecurity. Familiarity with risk management frameworks (like NIST or ISO 27001), GRC tools, and certifications such as CISA or CRISC are typically required. Analytical thinking, attention to detail, and effective communication are crucial soft skills for identifying risks and collaborating with stakeholders. These skills are vital for proactively mitigating technology risks and ensuring organizational compliance and resilience.

What is the difference between Technology Risk Analyst vs Cybersecurity Analyst?

AspectTechnology Risk AnalystCybersecurity Analyst
CertificationsCRISC, CISSP (optional)CISSP, CEH, Security+
Work EnvironmentRisk management, compliance, policy developmentSecurity monitoring, incident response, threat analysis
Industry UsageFinancial, healthcare, technology sectorsIT security firms, corporate IT departments

The main difference is that a Technology Risk Analyst focuses on identifying and managing technology-related risks and ensuring compliance, while a Cybersecurity Analyst concentrates on protecting systems from security threats and responding to incidents. Both roles require similar certifications and often work within the same industries, but their core responsibilities differ in scope and focus.

What does a Technology Risk Analyst do?

A Technology Risk Analyst is responsible for identifying, assessing, and mitigating risks associated with an organization's technology systems. They evaluate IT processes, monitor security controls, and ensure compliance with industry regulations to protect sensitive data and systems from threats such as cyberattacks or data breaches. These professionals often work closely with IT, security, and business teams to recommend improvements and help implement risk management strategies.

How does a Technology Risk Analyst collaborate with other departments to manage and mitigate risks?

Technology Risk Analysts regularly work alongside IT, compliance, and business units to identify and address potential security threats. They facilitate risk assessments, share findings with stakeholders, and help develop strategies for risk mitigation that align with organizational goals. Effective communication and teamwork are essential, as analysts often need to explain technical risks in business terms and ensure that action plans are understood and implemented across departments.
More about Technology Risk Analyst jobs
What cities are hiring for Technology Risk Analyst jobs? Cities with the most Technology Risk Analyst job openings:
What states have the most Technology Risk Analyst jobs? States with the most job openings for Technology Risk Analyst jobs include:
What job categories do people searching Technology Risk Analyst jobs look for? The top searched job categories for Technology Risk Analyst jobs are:
Infographic showing various Technology Risk Analyst job openings in the United States as of July 2026, with employment types broken down into 1% Locum Tenens, 1% Internship, 86% Full Time, 6% Part Time, 1% Temporary, and 5% Contract. Highlights an 82% Physical, 5% Hybrid, and 13% Remote job distribution, with an average salary of $84,210 per year, or $40.5 per hour.
Senior IT Risk Analyst

Senior IT Risk Analyst

Rockland Trust

Plymouth, MA โ€ข Hybrid

Other

Medical, Dental, Life, Retirement, PTO

Re-posted 26 days ago


Job description

Senior IT Risk Analyst (First Line of Defense)

Rockland Trust is seeking a Senior IT Risk Analystย to advance the Bank's First Line of Defense IT Risk Management Program.ย 

This is a hybrid role, 3 days Mon-Wed in the Plymouth office then remaining days working remotely.ย 

This senior professional contributes to the identification, assessment, and mitigation of technology risks, providing informed recommendations to IT and business stakeholders. The role emphasizes accountability for high-quality risk assessments, strong judgment in interpreting results, and proactive contributions to process improvement and risk awareness across the organization.

This role serves as a resource and mentor to less-experienced colleagues, supporting development and consistent execution of sound risk management practices. The Senior IT Risk Analyst works closely with stakeholders across IT and business areas to ensure risks are adequately identified and managed, controls are designed and operating effectively, and necessary remediation activities are completed in a timely manner.

Key Responsibilities

IT Risk Assessment & Control Evaluation

  • Lead comprehensive IT risk assessments across applications, infrastructure, and IT processes, including inherent and residual risk evaluations.
  • Evaluate the design and operating effectiveness of controls, ensuring assessments are evidence-based and aligned with internal methodologies and regulatory requirements.
  • Conduct detailed walkthroughs and interviews with IT and business stakeholders to validate processes and risks, identify control gaps, and obtain and evaluate appropriate documentation and evidence.
  • Analyze risk and control data to identify trends, recurring issues, or systemic weaknesses to translate findings into actionable insights.
  • Maintain sufficient documentation of assessments performed, tests conducted, and issues noted in the Bank's systems of record, ensuring clarity, completeness, and alignment with Bank and regulatory methodology and requirements.

Risk Communication & Issue Resolution

  • Communicate findings, risk implications, control gaps, or other such issues to stakeholders in a professional, credible, and constructive manner.
  • Support, advise, and challenge remediation plans to ensure proposed actions effectively mitigate identified risks.
  • Coordinate responses to audit, regulatory, or other internal inquiries, ensuring timely and accurate resolution of outstanding issues.
  • Track and monitor remediation efforts and key milestones to facilitate risk closure, proactively identifying potential bottlenecks or emerging risks.

Program Support & Mentorship

  • Provide guidance and informal coaching to junior team members, reviewing work products to ensure adherence to risk assessment standards and quality expectations.
  • Contribute to continuous improvement initiatives for IT risk assessment methodologies, reporting practices, and other opportunities.
  • Serve as a trusted resource for IT and business teams on risk-related topics, fostering a risk-aware culture and promoting best practices.
  • Stay current with regulatory guidance, industry standards, and emerging risks to support program maturity and long-term risk management effectiveness.

Required Qualifications

  • Bachelor's degree in Information Technology, Computer Science, Cybersecurity, Accounting, Finance, or a related field with equitable risk and controls experience.
  • Minimum of 5 years of professional experience in IT risk management, technology audit, or control testing, including execution of risk assessments, control evaluation, and reporting.
  • Must be able to work the hybrid schedule:ย  3 days Mon-Wed in the Plymouth office then remaining days work remotely.ย 
  • Experience with GRC platforms (e.g., Archer) and risk reporting tools (e.g., PowerBI dashboards).
  • Familiarity with risk and control frameworks such as NIST, CIS, COBIT, FFIEC, or ISO.
  • Demonstrated ability to effectively communicate, both written and verbally, complex IT risk and control concepts effectively to technical and non-technical stakeholders.
  • Experience navigating highly regulated or matrixed environments, interacting with audit, compliance, and/ or regulatory stakeholders.
  • Strong analytical skills, attention to detail, and ability to make independent, informed decisions.
  • Proven ability to influence outcomes and drive follow-through on risk identification and mitigation activities.

Highly preferred:

  • Professional certifications: CISA, CRISC, CISM, CISSP, or equivalent.
  • Financial services industry experience.

Required Qualifications

  • Bachelor's degree in Information Technology, Computer Science, Cybersecurity, Accounting, Finance, or a related field with equitable risk and controls experience.
  • Minimum of 5 years of professional experience in IT risk management, technology audit, or control testing, including execution of risk assessments, control evaluation, and reporting.
  • Must be able to work the hybrid schedule: 3 days Mon-Wed in the Plymouth office then remaining days work remotely.
  • Experience with GRC platforms (e.g., Archer) and risk reporting tools (e.g., PowerBI dashboards).
  • Familiarity with risk and control frameworks such as NIST, CIS, COBIT, FFIEC, or ISO.
  • Demonstrated ability to effectively communicate, both written and verbally, complex IT risk and control concepts effectively to technical and non-technical stakeholders.
  • Experience navigating highly regulated or matrixed environments, interacting with audit, compliance, and/ or regulatory stakeholders.
  • Strong analytical skills, attention to detail, and ability to make independent, informed decisions.
  • Proven ability to influence outcomes and drive follow-through on risk identification and mitigation activities.

Highly preferred:

  • Professional certifications: CISA, CRISC, CISM, CISSP, or equivalent.
  • Financial services industry experience.

Our goal is to offer our colleagues the most generous benefits package possible. We strive to provide colleagues with a comprehensive benefits package and an environment that supports a healthy work-life balance. Benefits include: Competitive compensation with performance incentive awards, Health Insurance, Dental Insurance, a 401K and DC Plan for your retirement, LTD & Life Insurance, Vacation Time, Day Care Reimbursement, Tuition Assistance for graduate and undergraduate programs, an Award Winning Wellness program and much more!

At Rockland Trust you'll find a respectful and inclusive environment where everyone is given the chance to succeed. We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.

Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

Key Responsibilities

IT Risk Assessment & Control Evaluation

  • Lead comprehensive IT risk assessments across applications, infrastructure, and IT processes, including inherent and residual risk evaluations.
  • Evaluate the design and operating effectiveness of controls, ensuring assessments are evidence-based and aligned with internal methodologies and regulatory requirements.
  • Conduct detailed walkthroughs and interviews with IT and business stakeholders to validate processes and risks, identify control gaps, and obtain and evaluate appropriate documentation and evidence.
  • Analyze risk and control data to identify trends, recurring issues, or systemic weaknesses to translate findings into actionable insights.
  • Maintain sufficient documentation of assessments performed, tests conducted, and issues noted in the Bank's systems of record, ensuring clarity, completeness, and alignment with Bank and regulatory methodology and requirements.

Risk Communication & Issue Resolution

  • Communicate findings, risk implications, control gaps, or other such issues to stakeholders in a professional, credible, and constructive manner.
  • Support, advise, and challenge remediation plans to ensure proposed actions effectively mitigate identified risks.
  • Coordinate responses to audit, regulatory, or other internal inquiries, ensuring timely and accurate resolution of outstanding issues.
  • Track and monitor remediation efforts and key milestones to facilitate risk closure, proactively identifying potential bottlenecks or emerging risks.

Program Support & Mentorship

  • Provide guidance and informal coaching to junior team members, reviewing work products to ensure adherence to risk assessment standards and quality expectations.
  • Contribute to continuous improvement initiatives for IT risk assessment methodologies, reporting practices, and other opportunities.
  • Serve as a trusted resource for IT and business teams on risk-related topics, fostering a risk-aware culture and promoting best practices.
  • Stay current with regulatory guidance, industry standards, and emerging risks to support program maturity and long-term risk management effectiveness.