Technology Risk Management Lead

To Apply for this Job Click Here

Job Title: Technology Risk Management Lead

? Location: Remote

? Employment Type: Full-Time

? Department: Risk & Compliance / Technology Governance

? Reports To: VP, Technology Risk Management

? Overview

We are seeking a dynamic and experienced Technology Risk Management Lead to spearhead our enterprise-wide technology risk initiatives. This role is ideal for a strategic thinker with a strong foundation in public accounting, operational risk, and IT governance. You will be responsible for identifying, assessing, and mitigating technology-related risks across the organization, ensuring alignment with regulatory requirements and industry best practices.

? Key Responsibilities

• Risk Strategy & Frameworks
  • Develop and maintain the enterprise technology risk management framework, policies, and procedures.
  • Align risk strategy with business objectives and regulatory expectations (e.g., SOX, FFIEC, NIST, ISO 27001).
• Risk Assessment & Controls
  • Lead risk assessments across infrastructure, applications, cloud environments, and emerging technologies.
  • Evaluate and enhance internal controls related to IT operations, cybersecurity, data governance, and third-party risk.
• Audit & Assurance
  • Serve as the primary liaison for internal and external audits, including coordination with public accounting firms.
  • Support SOX ITGC testing and remediation efforts, ensuring timely closure of audit findings.
• Operational Risk Integration
  • Collaborate with enterprise risk and business units to integrate technology risk into broader operational risk programs.
  • Monitor key risk indicators (KRIs) and develop dashboards for senior leadership.
• Governance & Reporting
  • Present risk posture and mitigation strategies to executive leadership and risk committees.
  • Maintain documentation and reporting for regulatory bodies and board-level oversight.
• Stakeholder Engagement

• Partner with IT, cybersecurity, compliance, and legal teams to ensure cohesive risk management.
• Provide training and awareness programs to promote a risk-conscious culture.

? Qualifications

Required:

• Bachelor’s degree in Accounting, Information Systems, or related field
• 7+ years of experience in technology risk, IT audit, or operational risk
• Background in public accounting (Big Four or similar), with exposure to IT audit or advisory services
• Strong understanding of operational risk frameworks and control environments
• Familiarity with regulatory requirements (e.g., SOX, GLBA, GDPR, HIPAA)

Preferred:

• CISA, CRISC, or CISSP certification
• Experience with GRC platforms (e.g., Archer, ServiceNow, MetricStream)
• Knowledge of cloud risk (AWS, Azure), DevOps, and

To Apply for this Job Click Here

Equal Employment Opportunity Statement
Gravity IT Resources is an Equal Opportunity Employer. We are committed to creating an inclusive environment for all employees and applicants. We do not discriminate on the basis of race, color, religion, sex (including pregnancy, sexual orientation, or gender identity), national origin, age, disability, genetic information, veteran status, or any other legally protected characteristic. All employment decisions are based on qualifications, merit, and business needs.