Position Details

Salary $115K – $144K USD / year

Type Not Specified

Experience executive

Exp. Years 9+ Years of experience

Education Bachelor's Degree in Arts/Sciences (BA/BS) or equivalent in computer science, information systems, engineering, or a related field

Category Cybersecurity

About this role

This role supports the VP, Technology Risk by performing comprehensive assessments across key IT domains to identify and mitigate cyber and technology risks. The director will implement enterprise-aligned IT risk management standards and provide executive-level risk reporting to support the organization’s resilience.

Key Responsibilities

Support the VP, Technology Risk with comprehensive risk assessments of IT domains
Lead implementation of globally aligned Enterprise IT Risk Management framework standards and policies
Provide subject matter expertise and technical guidance to technology-aligned process owners
Collaborate to develop and implement automated risk reporting (KRIs, control indicators) for executive insights
Support compliance requirements for OSFI, DORA, NYDFS, MAS and mitigate compliance/operational risks

Technical Overview

The position focuses on cyber and technology risk management across IT asset management, encryption/cryptography, network infrastructure, cloud security, IT service management, disaster recovery, vulnerabilities, patch and configuration management, and AI risks. It includes building automated risk reporting using key risk indicators (KRIs) and control indicators and aligning risk frameworks across the enterprise.

Ideal Candidate

The ideal candidate is a senior technology and cyber risk professional with 9+ years of experience in 1st line cyber and tech technical roles, IT risk management, audit, and risk programs process automation. They have strong technical knowledge across IT domains (including cloud security, vulnerabilities, patching, and disaster recovery) and can lead the implementation of an Enterprise IT Risk Management framework while delivering executive-ready risk reporting.

Must-Have Skills

9+ Years of experience in 1st line cyber and tech technical rolesIT risk managementauditrisk programs process automationStrong technical competence and in-depth understanding of IT domainsrisk frameworks and emerging risksAbility to identify and resolve technicaloperationaland organizational problemsEnterprise IT Risk Management framework standards and policies implementationSupports the VPTechnology Risk with comprehensive risk assessments of IT domains

Tools & Platforms

automated risk reportingkey risk indicators (KRIs)

Required Skills

IT asset managementcryptographyencryptionnetwork infrastructurecloud securityIT service managementdisaster recoveryvulnerabilitiespatch and configuration managementAI risksEnterprise IT Risk Management framework standardsrisk assessmentsrisk treatmentkey risk indicators (KRIs)control indicatorsautomated risk reportingOSFIDORANYDFSMAS

Hard Skills

IT asset managementcryptographyencryptionnetwork infrastructurecloud securityIT service managementdisaster recoveryvulnerabilitiespatch and configuration managementAI risksEnterprise IT Risk Management framework standardsrisk managementrisk assessmentsrisk treatmentkey risk indicators (KRIs)control indicatorsautomated risk reportingcompliance risk managementOSFIDORANYDFSMAS

Soft Skills

collaborationstakeholder managementsubject matter expertisetechnical guidanceproblem-solvingability to guideinfluenceand persuade otherschallenge and validate risk assessmentscommunicating executive-level insightscross-functional collaboration

Industry & Role

Industry Insurance

Job Function Lead enterprise cyber and technology risk management, assessments, and automated risk reporting across IT domains and regulatory frameworks.

Role Subtype Security Architect

Tech Domains Cybersecurity, ITSM / ServiceNow, Azure

Keywords for Your Resume

DirectorTechnology Riskcyber and technology riskIT risk managementrisk assessmentsrisk treatmentEnterprise IT Risk Managementrisk frameworkskey risk indicators (KRIs)control indicatorsautomated risk reportingIT asset managementcryptographyencryptionnetwork infrastructurecloud securityIT service managementdisaster recoveryvulnerabilitiespatch and configuration managementAI risksOSFIDORANYDFSMAS

Deal Breakers

Bachelor's Degree in Arts/Sciences (BA/BS) or equivalent in computer science, information systems, engineering, or a related field, 9+ Years of experience in 1st line cyber and tech technical roles, Strong technical competence and in-depth understanding of IT domains, risk frameworks and emerging risks, Must be able to identify and resolve technical, operational, and organizational problems

Apply for this Position →

Get matched to jobs like this

Luna finds roles that fit your skills and career goals — no endless scrolling required.

Create a Free Profile

Director, Technology Risk

Get matched to jobs like this