×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
IT Business Analyst Cybersecurity IT Consultant Information Security

Senior IT Risk Manager - Operational Risk Management

Job in St. Paul, Saint Paul, Ramsey County, Minnesota, 55118, USA
Listing for: Voya Financial, Inc.
Full Time position
Listed on 2026-06-21
Job specializations:
  • IT/Tech
    IT Business Analyst, Cybersecurity, IT Consultant, Information Security
Salary/Wage Range or Industry Benchmark: 150000 - 200000 USD Yearly USD 150000.00 200000.00 YEAR
Job Description & How to Apply Below
Location: St. Paul

Overview

The Senior IT Risk Manager reports to the head of IT Risk Management (ITRM) within the firm's Operational Risk Management (ORM) function. The role involves comprehensive oversight of IT risks across all technology layers and processes, with a special emphasis on AI risk management.

Responsibilities
  • Forge Strong Partnerships:
    Actively engage with IT stakeholders and senior leadership to foster a robust risk culture, including regular interaction and collaboration at various organizational levels.
  • AI Risk Management Expertise:
    Serve as a subject matter expert in AI risk management, playing a pivotal role in the identification, assessment, and mitigation of AI‑related risks and supporting the enterprise AI governance program in line with risk principles and regulatory requirements.
  • Real‑Time Risk Advisory:
    Provide subject matter expertise and advice on IT‑related risks and remediation/mitigation of risk exposures. Real‑time risk advisory and risk measurement are key elements of this role.
  • Risk and Control Framework:
    Define and maintain IT risk and control standards, ensuring a comprehensive and up‑to‑date framework is in place.
  • Risk Identification and Assessment:
    Lead IT risk identification and assessment activities that include IT process reviews, top‑down risk assessments, targeted risk and control assessments, development of key risk indicators (KRI), risk event management, trend analysis, and controls compliance.
  • Incident Analysis and Optimization:
    Monitor the IT risk and control environment including root cause analysis of issues and incidents to identify process improvement, control optimization, and risk reduction opportunities.
  • Risk Reporting:
    Develop Board and senior leadership risk reporting and risk committee materials.
  • Regulatory Compliance:
    Assist with assessments concerning compliance with applicable laws and regulations impacting IT.
  • Business Impact Assessments:
    Work closely with line of business ORM teams to characterize potential IT risks and trends, assessing business impact and articulating criticality and implications to business stakeholders.
  • Strategic Development:
    Assist with ongoing development and maintenance of IT Risk Management strategy and framework, and education of stakeholders.
  • Travel:
    Occasional travel to Voya office locations for collaboration purposes.
Qualifications
  • Bachelor’s degree in Computer Science, MIS or related field; or equivalent work experience. Master’s degree desirable.
  • Minimum 8‑15 years of relevant experience with a strong background in IT, IT audit, and/or IT risk management, including minimum 4 years of financial services experience in Asset, Wealth, Investment Management, Retirement Benefits, and Employee Benefits lines of business.
  • In‑depth knowledge of IT technical and operational processes, and associated risks and controls, with a strong emphasis on AI risk management.
  • CISA, CISSP, CISM, CRISC or other related IT risk certification is preferred, including security, cloud platform, and AI certifications.
  • Technical knowledge of risk management frameworks, applicable standards, and regulatory requirements including NIST, COBIT, ITIL, ISO
    27000, and other relevant IT governance frameworks.
  • Familiarity and experience using eGRC solutions.
  • Ability to communicate complex information technology risks and issues to non‑technical business stakeholders to ensure a clear understanding of criticality and implications.
  • Ability to discern and measure business‑relevant risk from IT risks and issues, and identify the corresponding remediation that is adequate, balanced, and cost‑effective to mitigate business impact.
  • Critical thinker and ability to express risk themes from data that will serve to inform and guide leadership decisions and actions.
  • Ability to operate independently with limited supervision and thrive in a dynamic, fast‑paced setting.
  • Ability to collaborate within ITRM and ORM as well as across functions in partnership with IT, business teams and other risk functions.
  • Strong problem‑solving, decision‑making, communication, and facilitation skills.
  • Proficient with Microsoft Office suite of products and automated reporting tools.
  • Ability to produce professional…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search