1

Technology Risk Jobs in California (NOW HIRING)

Manager, Technology Risk

San Francisco, CA ยท On-site

$198K - $250K/yr

About the Role The Technology Risk Manager is a senior individual contributor responsible for driving Hinge Health's technology risk posture across security, infrastructure, and IT. You'll act as the ...

Overview Senior Consultant (IT Risk) USA: Los Angeles, CA | Hybrid At MGO (Macias, Gini & O'Connell LLP), we put people first-because when our talent thrives, so do our clients. We serve innovative ...

Overview Senior Consultant (IT Risk) USA: Los Angeles, CA | Hybrid At MGO (Macias, Gini & O'Connell LLP), we put people first-because when our talent thrives, so do our clients. We serve innovative ...

Senior Consultant (IT Risk) USA: Los Angeles, CA | Hybrid At MGO (Macias, Gini & O'Connell LLP), we put people first--because when our talent thrives, so do our clients. We serve innovative ...

IT Risk Analyst

San Diego, CA ยท On-site

$79K - $102K/yr

Position Summary The position of IT Risk Analyst is responsible for participating in IT compliance and risk management initiatives. The candidate should demonstrate a basic understanding of IT risk, ...

This high-impact position in the Governance, Risk & Compliance function sits at the center of the firm's technology, security, and operational ecosystem.Managing a small team, you willwork closely ...

next page

Showing results 1-20

Technology Risk information

See California salary details

$14

$29

$73

How much do technology risk jobs pay per hour?

As of Jul 9, 2026, the average hourly pay for technology risk in California is $29.94, according to ZipRecruiter salary data. Most workers in this role earn between $19.23 and $38.17 per hour, depending on experience, location, and employer.

What are some common challenges faced by professionals working in Technology Risk roles?

Professionals in Technology Risk often encounter challenges such as keeping up with rapidly evolving cyber threats, ensuring regulatory compliance across different jurisdictions, and effectively communicating technical risks to non-technical stakeholders. Balancing proactive risk mitigation with the need to support business innovation can also be demanding. Collaboration with IT, legal, and business units is essential to identify vulnerabilities and implement practical controls without hindering productivity.

What are the key skills and qualifications needed to thrive in Technology Risk, and why are they important?

To thrive in Technology Risk, you need a solid understanding of IT systems, cybersecurity principles, risk management frameworks, and often a degree in information technology or a related field. Familiarity with tools like GRC (Governance, Risk, and Compliance) platforms, vulnerability assessment software, and certifications such as CISA, CISSP, or CRISC are commonly required. Strong analytical thinking, attention to detail, and effective communication skills help professionals assess threats and convey complex risk issues to diverse stakeholders. These skills ensure organizations can proactively identify, assess, and mitigate technology risks to protect assets and maintain regulatory compliance.

What jobs are at risk due to technology?

Technology risk professionals are concerned that automation, artificial intelligence, and evolving cybersecurity threats could impact roles such as manual data entry, basic IT support, and routine compliance tasks. These jobs may be increasingly automated or require advanced technical skills to adapt to changing technology environments.

What is the difference between Technology Risk vs Cybersecurity Analyst?

AspectTechnology RiskCybersecurity Analyst
Primary FocusIdentifying and managing technology-related risks to business operationsProtecting systems and data from cyber threats and attacks
CertificationsCRISC, CISSP, CISACISSP, CEH, Security+
Work EnvironmentRisk management teams, compliance departmentsSecurity operations centers, IT security teams
Industry UsageFinance, healthcare, technology firmsAny industry with digital assets, especially finance and government

Technology Risk professionals focus on assessing and mitigating risks associated with technology systems and processes, ensuring compliance and reducing potential disruptions. Cybersecurity Analysts primarily work to defend systems from cyber threats, focusing on security measures and incident response. While both roles involve technology and security, their core objectives and daily tasks differ significantly.

What tech jobs are safe?

Technology Risk professionals focus on identifying and mitigating risks related to IT systems, cybersecurity, and data protection. These roles are generally stable due to ongoing cybersecurity threats and regulatory requirements, and often require skills in risk assessment, compliance, and familiarity with security tools. Continuous learning and certifications like CISSP or CISA can enhance job security in this field.

What is an example of a technology risk?

A technology risk for a Technology Risk professional involves potential threats to information systems, such as cybersecurity breaches, data loss, or system failures. These risks can result from vulnerabilities in hardware, software, or network security, and managing them requires skills in risk assessment, controls, and compliance frameworks like ISO 27001.

What is Technology Risk?

Technology risk refers to the potential for losses or disruptions in an organization due to failures, vulnerabilities, or misuse of technology systems and infrastructure. Professionals in technology risk assess, manage, and mitigate risks related to cybersecurity, data privacy, IT systems, and compliance with regulations. Their work is crucial for protecting sensitive information, ensuring business continuity, and maintaining trust with clients and stakeholders.

What is the technology risk role?

A technology risk role involves identifying, assessing, and managing risks related to information technology systems and infrastructure. Professionals in this field analyze vulnerabilities, implement controls, and ensure compliance with security standards, often using tools like risk assessment frameworks and cybersecurity certifications. The role supports organizations in minimizing technology-related threats and ensuring operational resilience.
What are the most commonly searched types of Technology Risk jobs in California? The most popular types of Technology Risk jobs in California are:
What job categories do people searching Technology Risk jobs in California look for? The top searched job categories for Technology Risk jobs in California are:
Infographic showing various Technology Risk job openings in California as of July 2026, with employment types broken down into 1% As Needed, 86% Full Time, 10% Part Time, 1% Temporary, and 2% Contract. Highlights an 89% Physical, 3% Hybrid, and 8% Remote job distribution, with an average salary of $62,273 per year, or $29.9 per hour.
Manager, Technology Risk

Manager, Technology Risk

Hinge Health, Inc

San Francisco, CA โ€ข On-site

$198K - $250K/yr

Full-time

Medical, Dental, Vision, Life, Retirement

Posted 28 days ago


Job description

About the Role
The Technology Risk Manager is a senior individual contributor responsible for driving Hinge Health's technology risk posture across security, infrastructure, and IT. You'll act as the primary owner for technology risk across multiple teams rather than as a pure advisor. The role has broad exposure to Security , IT, Engineering leadership, and you're expected to confidently surface risks, drive clear risk evaluations, and collaborate with partners to land practical remediation decisions.
You'll work closely with Application Security, Engineering , Security, and IT to translate technical vulnerabilities into business risk, maintain the Technology Risk Register, and ensure high-quality, timely remediation in a PHI-handling and heavily regulated environment.
What You'll Do
  • Maintain and continuously refine the Technology Risk Register, documenting cyber, operational, and regulatory risks with clear ratings, owners, and mitigation plans.
  • Track and drive remediation progress across engineering and IT teams, escalating and unblocking as needed to ensure risk treatment plans meet agreed SLAs.
  • Regulatory Compliance & Governance (SOX & HIPAA).
  • Serve as a primary interface for internal and external auditors on SOX IT General Controls (ITGC) and related technology control testing, documentation, and evidence collection.
  • Coordinate and track remediation of SOX ITGC findings, ensuring clear ownership, high-quality corrective actions, and timely closure to prevent control deficiencies and material weaknesses.
  • Partner with Security, Accounting, Legal/Compliance, and IT to ensure risk and control practices support HIPAA and other healthcare regulatory requirements.
  • Partner with Application Security, SRE, and Infrastructure teams to aggregate, prioritize, and track code vulnerabilities, penetration-testing findings, and infrastructure risks across the SDLC.
  • Analyze vulnerability trends (by system, control, and data sensitivity) to help teams focus on the highest-impact remediation work.
  • Drive consistent, high-quality documentation of risk decisions, mitigations, and compensating controls.
  • Design and maintain risk and control dashboards that provide senior leadership with clear insight into security posture, compliance status, and remediation velocity.
  • Produce recurring executive-ready reports and narratives that translate complex technical risk into clear, non-technical language for decision-makers and risk committees.
  • Recommend and refine KPIs/KRIs that measure technology risk, SOX ITGC health, and vulnerability reduction over time.

What You Bring
  • 2+ years of experience in technology risk, IT audit, cybersecurity, or information security, with recent, hands-on in SOX-driven or heavily regulated environments (e.g. public/pre-IPO, company, Big 4 IT audit/risk advisory, financial services or healthcare).
  • Proven track record as a senior IC leading complex, cross-functional risk or compliance programs with high visibility to engineering and IT leadership.
  • Deep experience with SOX IT General Controls (design, testing, and remediation) in cloud-first environments.
  • Strong understanding of access management, change management, computer operations, and related control frameworks.
  • Comfort working in PHI-handling or similarly sensitive data environments.
  • Demonstrated ability to influence senior engineering and IT stakeholders: you can surface uncomfortable risks, keep discussions anchored in facts and impact, and help teams arrive at well-documented decisions.
  • Excellent relationship-builder who balances assertiveness with partnership-able to challenge, negotiate trade-offs, and still maintain trust.
  • Exceptional written and verbal communication skills; you distill complex technical risk into concise, executive-ready narratives and clear action plans.
Preferred Qualifications
  • Certifications such as CISA, CISSP, or equivalent.
  • Prior Big 4 (or similar) experience in IT audit, SOX, or technology risk.
  • Experience with SOX IT General Controls and broader security frameworks.

Hinge Health Hybrid Model This is a hybrid role based in the San Francisco office, requiring in-person attendance three days per week for a full 8-hour business day. On remote days, employees are expected to work during core business hours with flexibility. The office is part of a dog-friendly workplace program, and while travel is not regularly required, occasional off-site/on-site events may occur. Physical demands are minimal and primarily involve standard office activities such as sitting, typing, and video conferencing.
About Hinge Health
At Hinge Health, we're using technology to scale and automate the delivery of healthcare - starting with musculoskeletal (MSK) conditions, which affect over 1.7 billion people worldwide. With an AI-powered human-centered care model, Hinge Health leverages cutting-edge technology to improve outcomes, experiences and costs to help people move beyond their pain. The platform addresses a broad spectrum of MSK care - from acute injury, to chronic pain, to post-surgical rehabilitation - through personalized, evidence-based care.
As the preferred partner to 50+ health plans, PBMs and other ecosystem partners, Hinge Health is available to over 20 million people across more than 2,550 employers. The company is headquartered in San Francisco with additional offices in Montreal and Bangalore. Learn more at http://www.hingehealth.com
What You'll Love About Us
  • Inclusive healthcare and benefits: On top of comprehensive medical, dental, and vision coverage, we offer employees and their family members help with gender-affirming care, tools for family and fertility planning, and travel reimbursements if healthcare isn't available where you live.
  • Planning for the future: Start saving for the future with our traditional or Roth 401k retirement plan options which include a 2% company match.
  • Modern life stipends: Manage your own learning and development
  • Grow with us through discounted company stock through our ESPP with easy payroll deductions.

Culture & Engagement
Hinge Health is an equal opportunity employer and prohibits discrimination and harassment of any kind. We make employment decisions without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, age, veteran status, disability status, pregnancy, or any other basis protected by federal, state or local law. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. We provide reasonable accommodations for candidates with disabilities. If you feel you need assistance or an accommodation due to a disability, let us know by reaching out to your recruiter.
By submitting your application you are acknowledging we are using your personal data as outlined in the personnel and candidate privacy policy.
Beware of Phishing Attempts: We've noticed an increase in phishing where fraudsters impersonate employees and send fake job offers to steal sensitive information. We'll never ask for financial details during the hiring process and only use "@hingehealth.com" emails. If you receive a suspicious offer, stop communication and report it to the US FBI Internet Crime Complaint Center. To verify an email from our recruiting team, forward it to security@hingehealth.com.