1

Technology Risk Jobs in Colorado (NOW HIRING)

Position Overview The Director, Cyber Risk leads Asurion's cyber and technology risk management discipline and is accountable for a consistent, outcome-driven program the business can rely on for ...

Cyber and Tech Risk UW SR

Arvada, CO · On-site +1

$100K - $119K/yr

HSB, a Munich Re company, is a specialty insurer and risk solutions provider focused on cyber and technology risk. We combine underwriting expertise, cyber risk intelligence, and advanced analytics ...

Cyber and Tech Risk UW SR

Denver, CO · On-site

$101K - $119K/yr

HSB, a Munich Re company, is a specialty insurer and risk solutions provider focused on cyber and technology risk. We combine underwriting expertise, cyber risk intelligence, and advanced analytics ...

Enterprise Risk Management Specialist

Denver, CO · On-site

$100K/yr

With our significant investment in technology and infrastructure, we strive to maximize the value ... Overview We are seeking an Enterprise Risk Management Specialist to join the Decision Support ...

Enterprise Risk Management Specialist

Aurora, CO · On-site

$100K/yr

With our significant investment in technology and infrastructure, we strive to maximize the value ... Overview We are seeking an Enterprise Risk Management Specialist to join the Decision Support ...

Wilson Sonsini is the premier legal advisor to technology, life sciences, and other growth ... The Senior AI Risk Advisor, under the direction of the Manager of Risk Operations, sits at the ...

Qualifications Required: * 8-10 years of experience in cybersecurity, IT risk, or threat analysis roles. * Foundational knowledge of vulnerability management, CVEs, CVSS, and exploitability metrics.

next page

Showing results 1-20

Technology Risk information

See Colorado salary details

$15

$31

$77

How much do technology risk jobs pay per hour?

As of Jul 10, 2026, the average hourly pay for technology risk in Colorado is $31.90, according to ZipRecruiter salary data. Most workers in this role earn between $20.48 and $40.67 per hour, depending on experience, location, and employer.

What are some common challenges faced by professionals working in Technology Risk roles?

Professionals in Technology Risk often encounter challenges such as keeping up with rapidly evolving cyber threats, ensuring regulatory compliance across different jurisdictions, and effectively communicating technical risks to non-technical stakeholders. Balancing proactive risk mitigation with the need to support business innovation can also be demanding. Collaboration with IT, legal, and business units is essential to identify vulnerabilities and implement practical controls without hindering productivity.

What are the key skills and qualifications needed to thrive in Technology Risk, and why are they important?

To thrive in Technology Risk, you need a solid understanding of IT systems, cybersecurity principles, risk management frameworks, and often a degree in information technology or a related field. Familiarity with tools like GRC (Governance, Risk, and Compliance) platforms, vulnerability assessment software, and certifications such as CISA, CISSP, or CRISC are commonly required. Strong analytical thinking, attention to detail, and effective communication skills help professionals assess threats and convey complex risk issues to diverse stakeholders. These skills ensure organizations can proactively identify, assess, and mitigate technology risks to protect assets and maintain regulatory compliance.

What jobs are at risk due to technology?

Technology risk professionals are concerned that automation, artificial intelligence, and evolving cybersecurity threats could impact roles such as manual data entry, basic IT support, and routine compliance tasks. These jobs may be increasingly automated or require advanced technical skills to adapt to changing technology environments.

What is the difference between Technology Risk vs Cybersecurity Analyst?

AspectTechnology RiskCybersecurity Analyst
Primary FocusIdentifying and managing technology-related risks to business operationsProtecting systems and data from cyber threats and attacks
CertificationsCRISC, CISSP, CISACISSP, CEH, Security+
Work EnvironmentRisk management teams, compliance departmentsSecurity operations centers, IT security teams
Industry UsageFinance, healthcare, technology firmsAny industry with digital assets, especially finance and government

Technology Risk professionals focus on assessing and mitigating risks associated with technology systems and processes, ensuring compliance and reducing potential disruptions. Cybersecurity Analysts primarily work to defend systems from cyber threats, focusing on security measures and incident response. While both roles involve technology and security, their core objectives and daily tasks differ significantly.

What tech jobs are safe?

Technology Risk professionals focus on identifying and mitigating risks related to IT systems, cybersecurity, and data protection. These roles are generally stable due to ongoing cybersecurity threats and regulatory requirements, and often require skills in risk assessment, compliance, and familiarity with security tools. Continuous learning and certifications like CISSP or CISA can enhance job security in this field.

What is an example of a technology risk?

A technology risk for a Technology Risk professional involves potential threats to information systems, such as cybersecurity breaches, data loss, or system failures. These risks can result from vulnerabilities in hardware, software, or network security, and managing them requires skills in risk assessment, controls, and compliance frameworks like ISO 27001.

What is Technology Risk?

Technology risk refers to the potential for losses or disruptions in an organization due to failures, vulnerabilities, or misuse of technology systems and infrastructure. Professionals in technology risk assess, manage, and mitigate risks related to cybersecurity, data privacy, IT systems, and compliance with regulations. Their work is crucial for protecting sensitive information, ensuring business continuity, and maintaining trust with clients and stakeholders.

What is the technology risk role?

A technology risk role involves identifying, assessing, and managing risks related to information technology systems and infrastructure. Professionals in this field analyze vulnerabilities, implement controls, and ensure compliance with security standards, often using tools like risk assessment frameworks and cybersecurity certifications. The role supports organizations in minimizing technology-related threats and ensuring operational resilience.
What are the most commonly searched types of Technology Risk jobs in Colorado? The most popular types of Technology Risk jobs in Colorado are:
What are popular job titles related to Technology Risk jobs in Colorado? For Technology Risk jobs in Colorado, the most frequently searched job titles are:
Director, Cyber Risk

Other

Posted 10 days ago


Asurion rating

7.2

Company rating: 7.2 out of 10

Based on 84 frontline employees who took The Breakroom Quiz

121st of 208 rated it services


Job description

Position Overview

The Director, Cyber Risk leads Asurion's cyber and technology risk management discipline and is accountable for a consistent, outcome-driven program the business can rely on for decision-making. This strategic, cross-functional leader owns the end-to-end cyber risk lifecycle-identification, assessment, quantification, treatment, acceptance, monitoring, and reporting-along with the cyber risk register, risk appetite and tolerance framework, control assurance, and issues management. The Director partners closely with first-line control owners across security and technology, Portfolio Information Security Officers (PISOs), and key stakeholders in Enterprise Risk Management, Internal Audit, Legal, and Privacy. This role sets the standard for sound risk judgment, develops a high-performing team, and translates complex cyber risk into clear, defensible narratives for senior leadership and the board. This is a salaried, leadership role with enterprise impact, guiding a multi-year maturity uplift from ad hoc practices to scalable, evidence-based risk management.

Key Responsibilities
  • Own and continuously improve the cyber and technology risk management framework, methodology, taxonomy, and lifecycle aligned to NIST CSF 2.0, ISO 27001/27005, and applicable regulatory obligations.
  • Define standards, procedures, and rating scales for consistent enterprise-wide risk identification, assessment, and reporting; partner with the PISO model to ensure common language and practices across portfolios.
  • Lead enterprise cyber risk assessments across technology, business, regulatory, and emerging-risk domains to produce consistent, defensible determinations.
  • Establish and operate a cyber risk quantification capability (e.g., FAIR-based) to express risk in business and financial terms and inform prioritization and investment decisions.
  • Maintain the enterprise cyber risk register; ensure risks are well-described, owned, rated, and tracked to acceptable residual levels; develop and manage KRI/KCI programs for forward-looking posture.
  • Operationalize the risk appetite and tolerance framework with the CISO and senior leadership; own risk acceptance and exception governance with clear, auditable documentation and time-bound approvals.
  • Govern cyber risk policy structure, ownership, review cadence, and exception handling; chair or support cyber risk forums and escalate decisions to appropriate authority levels.
  • Lead second-line, risk-based assurance over design and operating effectiveness of key cyber controls in coordination with first-line and Internal Audit; identify thematic weaknesses and drive structural remediation.
  • Own issues and remediation management-intake, prioritization, owner assignment, tracking to closure, and escalation of aging items.
  • Define and report outcome-focused metrics (e.g., residual risk trends, out-of-appetite reduction, early-versus-late finding ratios, incidents tied to accepted risk) in executive- and board-ready formats.
  • Serve as primary point of contact for cyber risk in regulatory exams, audits, and carrier-partner due diligence.
  • Integrate cyber risk into Enterprise Risk Management to ensure consistency in enterprise risk reporting and governance; partner with Legal, Privacy, Procurement, and technology leaders to embed risk-informed decisions.
  • Oversee vendor/third-party risk within the cyber risk portfolio to ensure supply-chain risk is governed in line with enterprise practices.
  • Build, lead, and develop a team of senior managers and analysts; set objectives, manage performance, and scale capacity through process improvement, tooling, and appropriate AI-assisted workflows.
Education and Experience
  • Bachelor's degree in a related field or equivalent professional experience.
  • 10+ years in cybersecurity, IT/technology risk, or GRC, including 5+ years leading managers or multiple teams/domains.
  • Proven experience designing, leading, or substantially maturing an end-to-end enterprise cyber/IT risk management program.
  • Deep knowledge of NIST CSF 2.0, ISO 27001/27005, relevant regulatory regimes, and the three-lines-of-defense model.
  • Experience operating a risk register, risk appetite/tolerance framework, and risk acceptance/exception governance.
  • Hands-on experience with GRC/IRM platforms (e.g., ServiceNow IRM, Archer, OneTrust, or comparable).
  • Excellent executive communication skills with a track record of briefing senior leadership and boards.
  • Strong cross-functional influence partnering across security, technology, legal, privacy, and business teams.
  • Preferred: CRISC, CISSP, CISM, or CISA; FAIR-based quantification experience; background in regulated or consumer-facing environments; experience with ERM integration and executive/board risk committees; Master's degree in a related field.
Knowledge, Skills, and Abilities
  • Strategic risk leadership with the ability to connect cyber risk to business outcomes and investment decisions.
  • Sound, defensible judgment under uncertainty; skilled in risk trade-offs and acceptance decisions.
  • Expertise in risk quantification, KRI/KCI design, and outcome-based program metrics.
  • Strong governance and policy acumen, including appetite/tolerance, exceptions, and escalation pathways.
  • Proficiency in second-line control assurance and issues management, driving thematic remediation.
  • Exceptional written and verbal communication; translates complex risk into clear, actionable narratives for executives and the board.
  • Team leadership and talent development; builds high-performance teams and next-level leaders.
  • Change agent mindset with process improvement, tooling, and automation competencies, including appropriate use of AI-assisted workflows.
  • Collaboration and influence across ERM, Internal Audit, Legal, Privacy, Procurement, and technology organizations.
Travel Requirements

N/A

Physical Demands
  • Stationary Position: Frequently
  • Vision: 20/20 corrected vision
  • Hearing: Receive detailed information if spoken to

What Asurion employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom