ZipRecruiter

Log In

1

Technology Risk Manager Jobs in Oregon (NOW HIRING)

Upstart

OR

As the Senior Manager, Technology Risk you will lead the second-line technology and information security risk oversight program for Upstart Bank. You will establish the bank's 2LOD technology risk ...

Montefiore

IT Security Risk Management Analyst

Odell, OR · On-site

... ation Security Governance Work Shift: Day Work Days: MON-FRI Scheduled Hours: 8:30 AM-5 PM Scheduled Daily Hours: 8 HOURS Pay Range: $96,000.00-$120,000.00 The Security Risk Management Analyst will ...

Upstart

Principal Program Manager, Tech Risk (BC/DR)

OR · On-site +1

Drive cross-functional execution across Technology, Security, Office Operations, Vendor Management, Enterprise Risk Management, Compliance, and business process owners to ensure continuity and ...

Aptive

Job Summary Aptive is seeking a registered nurse risk manager. IHSC's mission is to provide medical ... We specialize in applying technology, creativity and human-centered services to optimize mission ...

Munich Re

The JD reads Cyber and Tech Risk UW SR

Portland, OR · On-site +1

$103K - $122K/yr

... and technology risk. We combine underwriting expertise, cyber risk intelligence, and advanced ... Our cyber offerings are supported by proactive risk management services and data driven insights ...

Concora Credit Inc.

Manager, Risk

Beaverton, OR · On-site

... Technology preferred. * Successful in implementing a credit risk management function. Has built or ... rebuilt the organization, infrastructure, processes, and systems/tools to be best in class.

Concora Credit Inc.

Manager, Risk

Beaverton, OR

... Technology preferred. * Successful in implementing a credit risk management function. Has built or ... rebuilt the organization, infrastructure, processes, and systems/tools to be best in class.

Concora Credit Inc.

Manager, Risk

Beaverton, OR

... Technology preferred. * Successful in implementing a credit risk management function. Has built or ... rebuilt the organization, infrastructure, processes, and systems/tools to be best in class.

Concora Credit Inc.

Manager, Risk

Beaverton, OR

... Technology preferred. * Successful in implementing a credit risk management function. Has built or ... rebuilt the organization, infrastructure, processes, and systems/tools to be best in class.

next page

Showing results 1-20

All JobsTechnology Risk Manager JobsTechnology Risk Manager Jobs in Oregon

Technology Risk Manager information

See Oregon salary details

$54.5K

$117.9K

$179.7K

How much do technology risk manager jobs pay per year?

As of Jun 20, 2026, the average yearly pay for technology risk manager in Oregon is $117,947.00, according to ZipRecruiter salary data. Most workers in this role earn between $95,200.00 and $136,400.00 per year, depending on experience, location, and employer.

What is the difference between Technology Risk Manager vs Cybersecurity Analyst?

AspectTechnology Risk ManagerCybersecurity Analyst
CertificationsCRISC, CISSP, CISACISSP, CEH, Security+
Work EnvironmentRisk assessment, policy development, complianceMonitoring security threats, incident response, vulnerability analysis
Industry UsageFinancial, healthcare, technology firmsIT security teams, government agencies, corporations

The Technology Risk Manager focuses on identifying and mitigating overall technology risks and ensuring compliance, while the Cybersecurity Analyst concentrates on protecting systems from security threats and responding to incidents. Both roles require similar certifications and often work within the same industries, but their core responsibilities differ in scope and focus.

What are some common challenges Technology Risk Managers face when working across different departments?

Technology Risk Managers often encounter challenges in aligning risk management strategies with the priorities of various business units. Departments may have differing levels of risk tolerance, technical understanding, and resource availability, which can make establishing consistent policies and controls difficult. Success in the role relies on strong communication and negotiation skills, as well as the ability to educate stakeholders about the importance of risk mitigation while balancing business objectives. Building collaborative relationships and maintaining flexibility are key to overcoming these cross-departmental challenges.

What are the key skills and qualifications needed to thrive as a Technology Risk Manager, and why are they important?

To thrive as a Technology Risk Manager, you need expertise in risk assessment, cybersecurity principles, and regulatory compliance, often supported by a degree in information security or related fields. Familiarity with risk management frameworks (such as NIST or ISO 27001), GRC (governance, risk, and compliance) tools, and certifications like CISM or CISSP are typically required. Strong analytical thinking, communication, and stakeholder management skills help you translate technical risks into business terms and coordinate mitigation efforts. These abilities are critical to proactively identifying threats and ensuring organizational resilience against evolving technology risks.

What are Technology Risk Managers?

Technology Risk Managers are professionals responsible for identifying, assessing, and mitigating risks associated with information technology systems and processes within an organization. They ensure that IT operations comply with regulations and best practices while safeguarding data and technology assets from threats such as cyberattacks, data breaches, and system failures. Their work involves developing risk management strategies, conducting risk assessments, and collaborating with other departments to ensure the organization's technology infrastructure is secure and resilient.
Technology Risk Manager jobs near you
Infographic showing various Technology Risk Manager job openings in Oregon as of June 2026, with employment types broken down into 67% Full Time, and 33% Contract. Highlights an 100% In-person job distribution, with an average salary of $117,947 per year, or $56.7 per hour.
Senior Manager, Technology Risk

Senior Manager, Technology Risk

Upstart

OR

Other

Posted 12 days ago

Job description

The Team: 

Upstart's Risk team is enhancing its second line of defense function in support of our application to establish Upstart Bank, N.A., a de novo national bank. The Risk team is responsible for Upstart's enterprise risk management program and risk governance, and for providing independent oversight and credible challenge across all core risk categories- including operational risk, third party risk, technology and information security risk, and treasury risk. We partner with first-line business functions, senior and executive leadership, and the board of directors to ensure effective identification, assessment, monitoring, reporting, and control of material risks, in alignment with OCC, FDIC, and FFIEC regulatory expectations.

As the Senior Manager, Technology Risk you will  lead the second-line technology and information security risk oversight program for Upstart Bank. You  will establish the bank's 2LOD technology risk framework-  leveraging and enhancing Upstart's existing technology and information security risk infrastructure to meet bank regulatory standards- and will provide independent oversight and credible challenge of the first-line technology and information security functions across all technology domains, including IT operations, cybersecurity, cloud infrastructure, affiliate-provided technology, and core banking systems. This role reports to the head of third party and technology risk and manages a team of two technology and security risk professionals. 

How you'll make an impact

  • Provide independent second-line review and credible challenge of first-line technology and information security activities, including but not limited to: cybersecurity controls, software development lifecycle (SDLC) and incident response programs, technology resiliency  and third-party arrangements
  • Oversee completion of the FFIEC Cybersecurity Assessment Tool (CAT) or equivalent framework; conduct technology and security  risk assessments; and provide independent oversight of technology and security risks in alignment with OCC guidance on cloud computing
  • Serve as a primary second-line point of contact for OCC examiners, internal audit, and other external stakeholders on technology risk and information security program topics and inquiries; prepare and deliver technology risk reporting to risk committees, the CRO, and the board. 
  • Build and lead a growing Technology Risk team, shaping how the bank identifies, prioritizes, and responds to its most important technology and security risks in alignment with applicable industry regulations
  • Partner with first-line IT and cybersecurity teams, TPRM, ERM, Legal, and Compliance to ensure technology and information security risk is integrated into enterprise risk programs, cross-functional risk assessments, and the bank's overall 2LOD reporting and governance structure

Minimum Qualifications 

  • Bachelor's degree or equivalent practical experience in information technology, cybersecurity, or a related field
  • 8+ years of experience in technology risk, information security risk management, IT audit, or GRC in a banking or financial services environment
  • 3+ years of direct people management experience leading technology risk, information security governance, risk, and compliance, or information technology audit professionals
  • Demonstrated experience applying FFIEC IT Examination Handbook standards and OCC guidance on technology risk and information security in a bank or federally regulated institution
  • Experience engaging banking regulators (OCC, FDIC, or Federal Reserve) on technology risk, cybersecurity, or IT controls examination matters

Preferred Qualifications

  • Experience building or significantly enhancing a technology risk or information security GRC program in a de novo bank, early-stage bank, or similar environment where the program required meaningful design and build-out
  • Knowledge of cloud risk management and OCC/FFIEC guidance on cloud computing (OCC Bulletin 2020-46), particularly in cloud-native or fintech-adjacent technology environments
  • Familiarity with affiliate technology risk oversight, including independent oversight of bank-affiliate technology service arrangements, associated data segregation requirements, and Regulation W implications
  • Experience with GRC tool implementation or administration in a bank regulatory context
  • Current professional certification in information security or technology risk management (CISSP, CISA, CRISC, CISM, or comparable)
  • Knowledge of AI/ML technology risk and related governance considerations in a fintech, lending, or model-intensive operating environment

Position location This role is available in the following locations: Remote 

Travel requirements As a digital first company, the majority of your work can be accomplished remotely. The majority of our employees can live and work anywhere in the U.S but are encouraged to to still spend high quality time in-person collaborating via regular onsites. The in-person sessions' cadence varies depending on the team and role; most teams meet once or twice per quarter for 2-4 consecutive days at a time.

#LI-REMOTE

#LI-MidSenior 

Apply