Director, Application & Data Technology Risk

The Hartford

Director of Application & Data Technology Risk providing senior leadership in technology risk management for an insurance company. Focused on application-driven risks and data risk across enterprise applications.

Posted 5/8/2026full-timeColumbus • Connecticut, North Carolina, Ohio • 🇺🇸 United StatesLead💰 $153,600 - $230,400 per yearWebsite

Tech Stack

Tools & technologies

CloudSDLC

About the role

Key responsibilities & impact

Lead the identification and management of application‑level technology risks, including secure design, SDLC controls, configuration weaknesses, dependency risks, and operational resilience.
Provide risk oversight across the end‑to‑end application lifecycle, including requirements, architecture, development, testing, release, and production support.
Assess risks introduced through modern engineering practices, including agile delivery, DevOps, CI/CD pipelines, APIs, cloud‑native services, and third‑party integrations.
Partner with application, platform, and security teams to promote adherence to security, infrastructure, and engineering control expectations.
Evaluate data risk and sensitive data exposure within applications, including unauthorized access, data leakage, improper transmission, retention weaknesses, and aggregation risk.
Provide risk guidance on AI, GenAI, and automation use cases, with emphasis on data sourcing, access governance, explainability, monitoring, and emerging regulatory or ethical risks related to technology.
Maintain awareness of evolving risks associated with AI adoption and emerging technologies, ensuring they are incorporated into application risk assessments and governance.
Maintain strong understanding of infrastructure and cloud dependencies (e.g., identity and access management, logging and monitoring, network security, encryption, resiliency) that directly influence application risk.
Serve as a trusted risk partner to CIOs and senior technology leaders, supporting informed decision‑making while enabling delivery.
Own and deliver application and data technology risk reporting for senior leadership, highlighting trends, concentration risk, and systemic control gaps.
Lead, coach, and develop a team of technology risk professionals focused on application and emerging technology risk.

Requirements

What you’ll need

10+ years of experience in technology risk management, application security, IT audit, engineering, or related domains.
Strong working knowledge of application architectures, SDLC, DevOps practices, and CI/CD pipelines.
Demonstrated experience assessing data risks and data exposure within application environments.
Practical understanding of AI and automation risks, including model governance, data usage, and control considerations.
Solid familiarity with cloud and infrastructure control domains (IAM, logging, encryption, network security, resiliency).
Proven ability to communicate effectively with senior leaders and translate technical issues into executive‑level insights.
Experience working with industry frameworks (e.g., NIST, CIS Controls, COBIT, secure SDLC standards).

Benefits

Comp & perks

Short-term or annual bonuses
Long-term incentives
On-the-spot recognition

ATS Keywords

✓ Tailor your resume

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

technology risk managementapplication securityIT auditSDLCDevOpsCI/CD pipelinesdata risk assessmentAI risk managementautomation riskcloud infrastructure controls

Soft Skills

communicationleadershipcoachingdecision-makingteam developmentrisk oversightexecutive-level insights