Print / Save PDF Back to job

Principal IT Risk Management Analyst

Capella University · United States

How to use this kit

Ground every answer in facts on this page and the original listing. We never invent Glassdoor-style reviews or salaries that are not in our data.

Company facts (cached)

Website: capellauniversity.com

Public cache only — not an employee review.

Role overview (listing rewrite)

Join Capella University as a Principal IT Risk Management Analyst, spearheading enterprise-level IT risk management strategy in the United States. This full-time leadership role focuses on identifying, assessing, and managing technology risks at the organizational level—setting itself apart from compliance or audit functions through emphasis on risk strategy and business impact. The Opportunity As a senior risk leader at Capella University, you'll shape how we identify, quantify, and respond to IT and technology risks. Working closely with executive leadership, you'll define our risk strategy, evaluate emerging threats to our technology infrastructure, and ensure technology decisions align with organizational risk appetite. This role requires both technical depth—understanding security controls and vulnerabilities—and business acumen to translate technical findings into strategic insights that guide executive decisions. Responsibilities Drive the development and continuous improvement of our IT security risk management program, ensuring alignment with organizational goals and risk tolerance Identify, assess, and quantify technology risks using qualitative and quantitative methodologies, applying NIST CSF and CIS Controls v8 Establish and maintain the enterprise IT risk register, overseeing risk scoring, ownership, lifecycle management, and ongoing updates Execute comprehensive risk assessments across our technology environment, examining cybersecurity threats, operational vulnerabilities, and emerging technology risks Oversee the risk exception management process, evaluating requests, documenting decisions, and approving risk acceptance within organizational tolerance levels Create and manage risk metrics, key risk indicators (KRIs), and executive dashboards that translate complex risk data into strategic insights for leadership and board audiences Deliver risk-informed recommendations on technology initiatives carrying significant risk, including artificial intelligence and machine learning initiatives Embed IT security risk management practices into business and technology operations across the organization Mentor junior analysts and lead specific risk workstreams, guiding team members in cross-functional settings Pursue and operationalize automation opportunities and efficiency improvements throughout risk management workflows and systems What We're Looking For 5+ years of IT risk management experience, with proven expertise in risk assessment, risk quantification, and enterprise risk register management 3+ years of experience leading or mentoring analysts, with demonstrated success owning and delivering discrete risk programs or initiatives Comprehensive understanding of NIST CSF, CIS Controls v8, and…

Full job on Get A Job.AI

Questions to ask them

Generated for personal interview prep · 2026-07-16 UTC · getajob.ai