Technology Risk Management Lead

To Apply for this Job Click Here

Job Title: Technology Risk Management Lead

? Location: Remote

? Employment Type: Full-Time

? Department: Risk & Compliance / Technology Governance

? Reports To: VP, Technology Risk Management

? Overview

We are seeking a dynamic and experienced Technology Risk Management Lead to spearhead our enterprise-wide technology risk initiatives. This role is ideal for a strategic thinker with a strong foundation in public accounting, operational risk, and IT governance. You will be responsible for identifying, assessing, and mitigating technology-related risks across the organization, ensuring alignment with regulatory requirements and industry best practices.

? Key Responsibilities

• Risk Strategy & Frameworks
  • Develop and maintain the enterprise technology risk management framework, policies, and procedures.
  • Align risk strategy with business objectives and regulatory expectations (e.g., SOX, FFIEC, NIST, ISO 27001).
• Risk Assessment & Controls
  • Lead risk assessments across infrastructure, applications, cloud environments, and emerging technologies.
  • Evaluate and enhance internal controls related to IT operations, cybersecurity, data governance, and third-party risk.
• Audit & Assurance
  • Serve as the primary liaison for internal and external audits, including coordination with public accounting firms.
  • Support SOX ITGC testing and remediation efforts, ensuring timely closure of audit findings.
• Operational Risk Integration
  • Collaborate with enterprise risk and business units to integrate technology risk into broader operational risk programs.
  • Monitor key risk indicators (KRIs) and develop dashboards for senior leadership.
• Governance & Reporting
  • Present risk posture and mitigation strategies to executive leadership and risk committees.
  • Maintain documentation and reporting for regulatory bodies and board-level oversight.
• Stakeholder Engagement

• Partner with IT, cybersecurity, compliance, and legal teams to ensure cohesive risk management.
• Provide training and awareness programs to promote a risk-conscious culture.

? Qualifications

Required:

• Bachelor’s degree in Accounting, Information Systems, or related field
• 7+ years of experience in technology risk, IT audit, or operational risk
• Background in public accounting (Big Four or similar), with exposure to IT audit or advisory services
• Strong understanding of operational risk frameworks and control environments
• Familiarity with regulatory requirements (e.g., SOX, GLBA, GDPR, HIPAA)

Preferred:

• CISA, CRISC, or CISSP certification
• Experience with GRC platforms (e.g., Archer, ServiceNow, MetricStream)
• Knowledge of cloud risk (AWS, Azure), DevOps, and

To Apply for this Job Click Here