1

Technology Risk Manager Jobs in Philadelphia, PA

The Zoetis Tech & Digital (ZTD) Global Technology Risk Management (TRM) Organization is responsible for protecting Zoetis' information resources. Within TRM, the global Identity, Directory & Access ...

Manager, IT Audit

Wilmington, DE · On-site

$105K - $167K/yr

The role designs IT risk assessments and audit programs, oversees engagement execution and quality ... The Manager also supports the Audit, Risk and Compliance Committee reporting and assists the ...

next page

Showing results 1-20

Technology Risk Manager information

See Philadelphia, PA salary details

$49.2K

$106.6K

$162.5K

How much do technology risk manager jobs pay per year?

As of Jul 15, 2026, the average yearly pay for technology risk manager in Philadelphia, PA is $106,617.00, according to ZipRecruiter salary data. Most workers in this role earn between $86,000.00 and $123,300.00 per year, depending on experience, location, and employer.

What is the difference between Technology Risk Manager vs Cybersecurity Analyst?

AspectTechnology Risk ManagerCybersecurity Analyst
CertificationsCRISC, CISSP, CISACISSP, CEH, Security+
Work EnvironmentRisk assessment, policy development, complianceMonitoring security threats, incident response, vulnerability analysis
Industry UsageFinancial, healthcare, technology firmsIT security teams, government agencies, corporations

The Technology Risk Manager focuses on identifying and mitigating overall technology risks and ensuring compliance, while the Cybersecurity Analyst concentrates on protecting systems from security threats and responding to incidents. Both roles require similar certifications and often work within the same industries, but their core responsibilities differ in scope and focus.

What are some common challenges Technology Risk Managers face when working across different departments?

Technology Risk Managers often encounter challenges in aligning risk management strategies with the priorities of various business units. Departments may have differing levels of risk tolerance, technical understanding, and resource availability, which can make establishing consistent policies and controls difficult. Success in the role relies on strong communication and negotiation skills, as well as the ability to educate stakeholders about the importance of risk mitigation while balancing business objectives. Building collaborative relationships and maintaining flexibility are key to overcoming these cross-departmental challenges.

What are the key skills and qualifications needed to thrive as a Technology Risk Manager, and why are they important?

To thrive as a Technology Risk Manager, you need expertise in risk assessment, cybersecurity principles, and regulatory compliance, often supported by a degree in information security or related fields. Familiarity with risk management frameworks (such as NIST or ISO 27001), GRC (governance, risk, and compliance) tools, and certifications like CISM or CISSP are typically required. Strong analytical thinking, communication, and stakeholder management skills help you translate technical risks into business terms and coordinate mitigation efforts. These abilities are critical to proactively identifying threats and ensuring organizational resilience against evolving technology risks.

What are Technology Risk Managers?

Technology Risk Managers are professionals responsible for identifying, assessing, and mitigating risks associated with information technology systems and processes within an organization. They ensure that IT operations comply with regulations and best practices while safeguarding data and technology assets from threats such as cyberattacks, data breaches, and system failures. Their work involves developing risk management strategies, conducting risk assessments, and collaborating with other departments to ensure the organization's technology infrastructure is secure and resilient.
Infographic showing various Technology Risk Manager job openings in Philadelphia, PA as of July 2026, with employment types broken down into 75% Full Time, 23% Part Time, 1% Temporary, and 1% Contract. Highlights an 84% Physical, 4% Hybrid, and 12% Remote job distribution, with an average salary of $106,617 per year, or $51.3 per hour.
IT SOX Audit Senior Controls Manager

IT SOX Audit Senior Controls Manager

Vanguard Group

Malvern, PA • On-site

Full-time

Posted 2 days ago

New


Vanguard rating

8.7

Company rating: 8.7 out of 10

Based on 62 frontline employees who took The Breakroom Quiz

17th of 148 rated financial services


Job description

Vanguard's Internal Audit & SOX department is seeking an IT SOX Audit Senior Controls Manager to join the SOX Audit Services (SAS) team. SAS serves as Vanguard's centralized ICFR (internal control over financial reporting) assurance and audit function. In this role, you will oversee and review activities across the ICFR audit cycle including IT risk assessments, system walkthroughs and scoping, testing of IT and automated business process controls, deficiency evaluations, and audit reporting.
This role offers the opportunity to deepen expertise in IT and automated business process controls, technology risk, ICFR assurance, and SOX governance through audit lifecycle management and critical stakeholder engagement. You will focus on controls and processes at the intersection of financial reporting and technology risk, helping Vanguard navigate a control environment shaped by AI, automation, advanced analytics, and digital transformation. You will lead ongoing efforts to leverage automation, analytics, and AI in the audit lifecycle.
We are seeking an individual with strong critical and conceptual thinking skills, exceptional project and relationship management capabilities, strong communication, judgment, and decision-making skills, and strong technology, data, and automation acumen.
Responsibilities
  • Lead engagement with IT and business control owners and stakeholders to identify and understand relevant technology and financial reporting risks, review documentation of end-to-end processes and data flows, and ensure effective internal controls aligned with SOX and ICFR objectives.
  • Review, challenge and approve key audit documentation, including IT systems and control scoping and risk ratings, process flowcharts, testing workpapers, and control issue assessments.
  • Evaluate control exceptions and lead remediation efforts, diagnosing root causes, advising on corrective actions, and providing insights on trends for internal and external reporting.
  • Serve as a trusted partner to IT and business control stakeholders, offering guidance on certifications, issue remediation, process optimization, and effective control design while fostering strong cross-functional relationships.
  • Lead coordination across Internal Audit, SOX, Risk, Technology, Business and External Audit teams to enable timely advancement of SOX campaign objectives throughout the audit lifecycle.
  • Support technology risk mitigation strategies related to new system implementations, third-party product adoptions, control automation, and emerging technology risks that may impact Vanguard's financial reporting control environment.
  • Drive continuous improvement initiatives that enhance the use of technology, automation, and data analytics to strengthen and improve efficiency of ICFR audit execution.
  • Lead and contribute to matrixed teams, providing timely feedback, coaching, and development opportunities.
  • Drive accountability for SOX campaign execution and outcomes, proactively managing timelines, risks, and dependencies, while escalating issues to senior leadership as appropriate.
  • Participate in special projects and perform other duties as assigned.

Qualifications
  • Undergraduate degree required; advanced degree or professional certification, such as CPA, CIA, CISSP, or CISA, is a plus.
  • Minimum of five years of related work experience with knowledge of SOX concepts, practices, and procedures, as well as IT subject-matter proficiency, including automated financial controls, IT logical access, change management, and operations; audit experience within public accounting and/or internal audit is ideal.
  • Experience with controls, audit, or risk work, including IT and automated controls testing, internal audits, operational audits, advisory, consulting, or compliance, within the financial services industry, corporate finance functions, technology, or risk management ideal.
  • Experience leveraging automation, data analytics, and full population testing in the execution of audits is ideal.
  • Experience with the system development lifecycle (SDLC) and evaluating technology implementation risk is preferred.
  • Experience testing, designing, or evaluating IT and business processes and data workflows is preferred.
  • Proven ability to think critically and conceptually, exercise sound judgment, influence stakeholders, and make effective decisions in a dynamic environment.
  • Excellent project management, communication, and relationship management skills, with the ability to collaborate across Technology, Finance, Risk, external audit, and other stakeholders.

Special factors
  • This is a hybrid role - candidates must be commutable to Vanguard's Malvern, PA office.

Special Factors
Sponsorship
Vanguard is not offering visa sponsorship for this position.
About Vanguard
At Vanguard, we don't just have a mission-we're on a mission.
To work for the long-term financial wellbeing of our clients. To lead through product and services that transform our clients' lives. To learn and develop our skills as individuals and as a team. From Malvern to Melbourne, our mission drives us forward and inspires us to be our best.
How We Work
Vanguard has implemented a hybrid working model for the majority of our crew members, designed to capture the benefits of enhanced flexibility while enabling in-person learning, collaboration, and connection. We believe our mission-driven and highly collaborative culture is a critical enabler to support long-term client outcomes and enrich the employee experience.

What Vanguard employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom