Sr. Manager, IT Risk Management
3 days ago
Do you want to play a key role in enhancing the Cybersecurity program for a Fortune 200 company and national brand that has also been listed on the Fortune 100 Best Places to Work for the past 20 years in a row. Do you enjoy working in a collaborative environment where your experience and ideas can shape the direction and development of critical cybersecurity information risk management capabilities?
Do you want to work with a team of talented professionals that have highly advanced technical knowledge and be the subject matter expert in information security risk management, third party risk management, and business continuity?
Then your job search begins and ends here….
I. BRIEF POSITION SUMMARY:
The Information Risk Manager is a critical leadership role that demands a comprehensive blend of technical expertise and strategic relationship management across information risk functions, including information security risk management, third party risk management, privacy operations, and business continuity. This individual is tasked with leading the development, implementation, and continuous refinement of an Information Risk Management framework, aligning with industry standards such as ISO 27001/2 and NIST 80030. Beyond technical responsibilities, this role is pivotal in fostering strong relationships with stakeholders, including business owners, regulatory bodies, third-party vendors, and internal teams, to ensure cohesive risk management strategies. The Information Risk Manager will oversee security policies, conduct risk assessments, manage security awareness training, and lead initiatives in business continuity, third-party security due diligence, and cyber regulatory readiness. This role serves as the information risk subject matter expert and strategic advisor in all facets of information risk management to all levels across the organization.
II. THE DAY TO DAY
- Lead the adoption and adaptation of a comprehensive information risk management framework, integrating privacy operations, security controls design & implementation, and continuous improvement mechanisms, while maintaining strong leadership and stakeholder relationships.
- Develop and manage security policies and procedures, ensuring compliance with legal, regulatory, and industry standards.
- Conduct thorough risk assessments, identifying potential threats and vulnerabilities, and implement robust security measures to protect organizational assets, with a focus on transparent communication and collaboration with stakeholders.
- Oversee the design and delivery of security awareness training and communications programs, enhancing the security culture within the organization and engaging with stakeholders to ensure widespread adoption and understanding.
- Manage business continuity risk & resiliency planning, ensuring the organization's ability to operate during and recover from adverse events, while working closely with stakeholders to align continuity plans with business needs.
- Conduct third-party security due diligence and vendor risk assessments to safeguard against third-party risks, collaborating with stakeholders to ensure third-party practices align with organizational security standards.
- Lead cyber regulatory readiness initiatives, preparing the organization for compliance with current and future security and privacy regulations, and engaging with regulatory stakeholders to ensure alignment and readiness.
- Engage in strategic board reporting, providing insights and updates on the organization's security posture and risk management efforts, and fostering strong relationships with leadership to support informed decision-making.
- Foster a culture of continuous improvement, regularly reviewing and enhancing security and risk management practices, with a focus on stakeholder feedback and collaboration to drive organizational resilience and security.
III. EDUCATION AND/OR EXPERIEINCE
- Bachelor’s degree in Technology, Computer Science, Business, or a related field.
- Master’s degree or relevant professional certification (e.g., CRISC, CIA, CIPP, CISM, GIAC, CISSP) is preferred. CRISC and CISA required.
- A minimum of 10 years of leadership experience in information risk management or a similar role, with a focus on leadership and stakeholder management.
- Proven expertise in information security, information risk management, and compliance frameworks (NIST, CIS, ISO27001/2, etc.).
- Demonstrated leadership in privacy operations, security awareness training, business continuity, and third-party risk management, with a track record of successful stakeholder engagement and collaboration.
- Strong understanding of cyber regulatory environments and experience in senior leadership reporting and communication, with the ability to build and maintain effective stakeholder relationships.
- Extensive experience in information risk assessment, policy development, and incident response management, with a focus on strategic stakeholder communication and collaboration.
- Excellent communication skills, with the ability to effectively lead teams, influence stakeholders, and drive organizational change through strong leadership and stakeholder relationships.
- Excellent analytical, problem-solving, and decision-making skills; high level of accuracy and attention to detail.
- Strong leadership and organizational skills; ability to manage multiple projects and teams in a fast-paced environment.
- Exceptional interpersonal and communication skills, both written and verbal, with the ability to explain complex compliance issues to stakeholders at all levels.
- Demonstrated leadership - ability to gain consensus across teams without direct reporting responsibility.
- Strong leadership skills, with the ability to manage and mentor a team of risk management professionals.
- Dedication and commitment to top-quality service and to exceeding customer expectations.
- Proven ability to influence without authority the information risk management direction of others.
- Ability to build relationships that help overcome obstacles and time constraints to successfully deliver remediation to completion.
IV. WORK ENVIRONMENT
This role operates in a dynamic, fast-paced office setting, reporting directly to the VP, Chief Information Security Officer. The environment demands high levels of focus, collaboration, adaptability, and strategic stakeholder engagement to manage multiple, simultaneous demands and ensure the organization's security risk and compliance posture.
-
Sr. Manager, IT Risk Management
2 months ago
Richmond, United States CarMax Full timeDo you want to play a key role in enhancing the Cybersecurity program for a Fortune 200 company and national brand that has also been listed on the Fortune 100 Best Places to Work for the past 20 years in a row. Do you enjoy working in a collaborative environment where your experience and ideas can shape the direction and development of critical...
-
Sr. Manager, EPX Risk Leader
2 months ago
Richmond, United States Capital One Full timeCenter 3 (19075), United States of America, McLean, VirginiaSr. Manager, EPX Risk LeaderWe are growing! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Tech, Enterprise Product & Experience, Brand, Enterprise Supplier Management, Capital One Ventures, External Affairs, and Capital One...
-
Sr Manager, IT Risk Management
4 weeks ago
Richmond, VA, United States Carmax Full time8116 - Midtown Office - 2220 W. Broad Street, Richmond, Virginia, 23220 CarMax, the way your career should be! Do you want to play a key role in enhancing the Cybersecurity program for a Fortune 200 company and national brand that has also been listed on the Fortune 100 Best Places to Work for the past 20 years in a row? Do you enjoy working in a...
-
Cybersecurity Risk Management Specialist
4 weeks ago
Richmond, California, United States eTek IT Services, Inc. Full timeAbout the RoleeTek IT Services, Inc. is seeking a highly skilled Cybersecurity Risk Management Specialist to join our team in Richmond, Virginia. This 12-month contract position offers a high potential for extension and provides an excellent opportunity for professional growth.Job SummaryThe successful candidate will be responsible for supporting the VDOT...
-
Technology Risk Senior Manager
2 weeks ago
Richmond, United States Capital One Full timeWest Creek 4 (12074), United States of America, Richmond, VirginiaTechnology Risk Senior ManagerWe are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace...
-
Sr. Associate, Risk Management
4 weeks ago
Richmond, United States Capital One Full timeWest Creek 1 (12071), United States of America, Richmond, VirginiaSr. Associate, Risk Management - Card ACT TeamRisk Managers at Capital One are highly motivated Risk Management professionals with excellent organizational and communication skills. They have a high level of exposure across lines of business and have the opportunity to work with Executives to...
-
Actuary - Risk Management
3 weeks ago
Richmond, California, United States Argonaut Management Services, Inc Full timeAbout the RoleArgo Group, a leading specialty insurance company, seeks an experienced Actuary to join its Financial Lines Reserving team. As an Actuary-Reserving with Argo Group International Holdings, Inc., you will play a crucial role in analyzing and managing financial risks.Responsibilities:Perform reserve reviews under the direction of the Head of...
-
Technology Risk Manager
2 weeks ago
Richmond, United States Capital One Full timeWest Creek 4 (12074), United States of America, Richmond, VirginiaTechnology Risk ManagerWe are hiring! The Enterprise Services Business Risk Office provides risk management support to several lines of business including: Brand, Enterprise Supplier Management, Enterprise Products & Experience (EPX), Software, External Affairs, eData, Global Workplace...
-
Risk Management Strategist
4 weeks ago
Richmond, Virginia, United States Capital One Full timeServe as a key member of the Capital One team, responsible for leading risk management practices and driving data-driven decision-making. With a focus on quality and timeliness, you will analyze data to identify risks and trends, and develop processes to mitigate them.About the RoleThis Senior Manager, Data Management (ES Risk) role involves collaborating...
-
IT Risk Management Project Manager
1 month ago
Richmond, United States Ampcus Full timeAmpcus Inc. is a certified global provider of a broad range of Technology and Business consulting services. We are in search of a highly motivated candidate to join our talented Team.Job Title: IT Risk Management Project ManagerLocation(s): Richmond, VAJob Description: IT Risk Management (ITRM) Project Manager will support and manage multiple cybersecurity...
-
Sr Audit Manager
3 weeks ago
Richmond, United States Truist Full timeThe position is described below. If you want to apply, click the Apply Now button at the top or bottom of this page. After you click Apply Now and complete your application, you'll be invited to create a profile, which will let you see your application status and any communications. If you already have a profile with us, you can log in to check status.Need...
-
Senior Risk Manager
2 months ago
RICHMOND, United States Capital One Careers Full timeWest Creek 1 (12071), United States of America, Richmond, VirginiaSenior Risk Manager (Card) (Hybrid)Do you like working in the spotlight? Are you ready to work on the front line of a top 10 Bank? Can you build relationships as well as develop and implement innovative risk management solutions at the forefront of Technology? As a Senior Risk Manager at...
-
Richmond, United States Capital One Full timeWest Creek 3 (12073), United States of America, Richmond, VirginiaSenior Manager, Methodologies and Practices, Technology Risk ManagementCapital One is one of the fastest growing organizations in the world today, powered by our passion for our customers. We are serious about technology, we dream big, and we execute: Capital One moved our entire enterprise to...
-
IT Assurance Risk Manager
4 weeks ago
Richmond, California, United States Centene Corporation Full timeCompany Overview">Centene Corporation is a diversified, national organization dedicated to improving health outcomes for 28 million members worldwide. As a technology-driven company, we empower our professionals to make a meaningful impact through innovative solutions.">Job Description">We are seeking an experienced IT Assurance Risk Manager to direct the...
-
Risk Management and Compliance Specialist
1 week ago
Richmond, California, United States Ampcus Full timeRisk Management and Compliance SpecialistAmpcus Inc. is a certified global provider of technology and business consulting services.We are seeking an experienced risk management specialist to join our team in Richmond, VA.Job Responsibilities:The Risk Management and Compliance Specialist will manage multiple cybersecurity projects within the ITRM...
-
Commercial Risk Manager
5 days ago
Richmond Heights, Virginia, United States Haile Lytton - State Farm Agent Full timeAs a seasoned Commercial Risk Manager, you will be responsible for identifying and mitigating potential risks that may impact our clients' businesses. This critical role requires a deep understanding of commercial insurance products and the ability to develop tailored solutions that address the unique needs of each client.Estimated Salary Range: $70,000 -...
-
Risk Management Specialist
4 weeks ago
Richmond, California, United States Alchemy Financial Group Full timeAbout Alchemy Financial GroupWe are a dynamic financial services company seeking an experienced Insurance Broker to join our team. In this role, you will be responsible for driving business development activities and promoting our insurance plans to current and potential clients.Job SummaryThe successful candidate will have a proven track record of building...
-
Manager, Business
5 months ago
Richmond, United States Capital One Full timeWest Creek 4 (12074), United States of America, Richmond, VirginiaManager, Business & Technology Process Management (ES Risk)At Capital One, we're building a leading information-based technology company. Still founder-led by Chairman and Chief Executive Officer Richard Fairbank, Capital One is on a mission to help our customers succeed by bringing ingenuity,...
-
Risk Management Consultant
2 weeks ago
Richmond, California, United States National Guard Employment Network Full time**About Us**VetJobs is a leading organization that works with partner companies to source qualified talent for their open roles. We pride ourselves on maintaining a culture that is rooted in innovation and thrives on collaboration.**Compensation Package**The estimated annual salary for this position is $134,350 - $224,100, depending on location, experience,...
-
Richmond Hill, New York, United States OpenText Full timeJob OverviewWe are seeking an experienced Global Security Strategist and Risk Management Leader to join our team at OpenText. In this pivotal role, you will be responsible for shaping and executing the strategic direction of our physical security program and associated risk management initiatives.About the RoleThe Sr. Director, Physical Security & Risk...
