FREE ACCESS
5,000–10,000 jobs/day

See all jobs on JobTailor
Search thousands of fresh jobs every day.
Discover
- Fresh listings
- Fast filters
- No subscription required
Create a free account and start exploring right away.
Tech Stack
Tools & technologiesCyber Security
About the role
Key responsibilities & impact- Lead and evolve the IT security risk management program in alignment with organizational goals, risk appetite, and risk tolerance
- Partner with executive leadership to shape risk strategy and drive enterprise-wide adoption
- Serve as a key advisor on risk posture, translating technical findings into strategic business decisions
- Identify, assess, and quantify technology risks by evaluating cybersecurity threats, operational vulnerabilities, and emerging technology risks using qualitative and quantitative methodologies
- Conduct risk assessments using established frameworks, including NIST CSF and CIS Controls v8
- Translate technical findings into clear, actionable business risk and support risk-based decision making
- Manage and maintain the enterprise IT risk register, including risk ownership, scoring, and lifecycle tracking
- Design and implement IT security risk mitigation strategies and controls aligned with industry standards
- Lead the risk exception management process, including evaluation, documentation, and risk acceptance decisions
- Provide risk-informed guidance for complex technology initiatives, including emerging areas such as artificial intelligence and machine learning
- Integrate IT security risk management practices into business and technology processes
- Define and evolve risk metrics, key risk indicators (KRIs), and risk appetite thresholds
- Develop dashboards and reporting that translate risk data into actionable insights for executive and board-level audiences
- Drive adoption of IT security risk platforms and workflow automation to improve efficiency and scalability
Requirements
What you’ll need- 5+ years of IT risk management experience, with a focus on risk assessment, quantification, and risk register ownership
- 3+ years mentoring or leading team members
- Demonstrated experience mentoring analysts while owning and delivering discrete risk workstreams or program components
- Experience conducting risk assessments aligned to NIST CSF, CIS Controls v8, or similar frameworks
- Experience managing an IT risk register, risk exception processes, and residual risk documentation
- Experience developing risk metrics, dashboards, and executive reporting
- Experience with GRC platforms and workflow automation in a risk context
- Experience managing risks related to emerging technologies, including artificial intelligence
- Bachelor's degree in a relevant discipline required; Master’s degree preferred
- Preferred certifications: CRISC (ISACA), CISSP (ISC²), CISM (ISACA), CompTIA Security+, CompTIA CySA+, CompTIA CASP+, CGEIT (ISACA)
Benefits
Comp & perks- Health insurance
- 401(k) retirement benefit
- Employee Stock Purchase Plan
- Tuition assistance
- Paid time off
- Paid holidays
- Well-being incentives
- Parental leave
- Entertainment and retail discounts
- Overtime pay for non-exempt employees
ATS Keywords
✓ Tailor your resumeApplicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
Risk QuantificationRisk Register ManagementRisk Exception ManagementCybersecurity Threat EvaluationOperational Vulnerability Assessment
Soft Skills
MentoringStrategic AdvisoryCommunication
Certifications
CRISCCISSPCISMCompTIA Security+CompTIA CySA+
