IT Risk Manager

As an IT Risk Manager, you will get the opportunity to grow and contribute to our clients' business needs by helping them understand their business risks and assist in addressing risk in both proactive and responsive contexts for the Risk, Compliance & Controls Practice – all with the resources, environment, and support to help you excel. You’ll collaborate with teams to execute and report on risk management, internal control and internal audit engagements that develop, assess, or improve the design and operating effectiveness of IT risk management and internal control activities. 
 
From day one, you’ll be empowered by the greater Risk team to help clients make the moves that will help them achieve their vision and help you achieve more, confidently.  

 

Your day-to-day may include: 

• Perform engagement management responsibilities, including performance reviews, task delegation, project scheduling, project economics and financials, quality review and client management
• Manage business development activities, such as proposals, capture, account teams, whitepapers, conferences, and/or other thought leadership material 
• Adhere to the highest degree of professional standards and strict client confidentiality 
• Understand and manage firm risk on audits and proposals 
• Working with organizations to identify and manage IT risks within their strategy execution model. 
• Assist clients in applying key frameworks such as COBIT, NIST & ISO 
• Developing IT components with enterprise risk management programs 
• Leading IT risk assessments ranging from internal audits, system implementations and specialized IT areas (security, basis, access provisioning, etc.) 
• Leading and executing IT audits and IT SOX engagements 
• Apply current knowledge of IT trends and systems processes to identify security and risk management issues  
• Manage the evaluation and testing of IT processes, system controls and identification of areas of risk 
• Manage internal auditing outsourcing and co-sourcing engagements for clients 
• Meet or exceed targeted billing hours (utilization) and meet or exceed sales targets for new and follow-on work 
• Work closely with Grant Thornton managers and partners to promptly identify and resolve client concerns 
• Manage, develop, train, and mentor staff on projects, assess performance for engagement and year-end reviews 
• Interview campus and/or experienced candidates 
• Other duties as assigned 

You have the following technical skills and qualifications: 

• Bachelor’s degree in Accounting, Finance, Information Technology, MIS, or a related field is required 
• Minimum 6 years of related work experience in a similar consulting practice or function servicing cross-industry clients at a national level 
• Certification required, CIA,CISA, CISSP, CISM, CPA license/certification preferred 
• Experience performing technology risk assessments and audits, operational internal audits, and process control reviews and strong familiarity with IIA’s Standards 
• Expertise in one or more of the following: access control software, security architecture and administration, Internet use/firewalls, network security awareness and enforcement, security policies and standards, database security auditing, operating systems (Windows, UNIX, AS400) 
• Strong experience in staff and audit management in an integrated client service team 
• Exceptional client service, communication, analytical, organizational and project management skills  
• Ability to execute multiple engagements and completing priorities in a rapidly growing team environment 
• Strong leadership, business development, recruiting, training, coaching, and mentoring skills 
• Can travel as needed 

The base salary range for this position in Los Angeles and Newport beach offices only is between $129,600 to 194,400. 

#ITRisk  #Hybrid 

At Grant Thornton, we believe in making business more personal and building trust into every result – for our clients and you. Here, we go beyond your expectations of a career in professional services by offering a career path with more: more opportunity, more flexibility, and more support. It’s what makes us different, and we think being different makes us better. 

In the U.S., Grant Thornton delivers professional services through two specialized entities: Grant Thornton LLP, a licensed, certified public accounting (CPA) firm that provides audit and assurance services ― and Grant Thornton Advisors LLC (not a licensed CPA firm), which exclusively provides non-attest offerings, including tax and advisory services.

In 2025, Grant Thornton formed a multinational, multidisciplinary platform with Grant Thornton Ireland. The platform offers a premier Trans-Atlantic advisory and tax practice, as well as independent American and Irish audit practices. With $2.7 billion in revenues and more than 50 offices spanning the U.S., Ireland and other territories, the platform delivers a singular client experience that includes enhanced solutions and capabilities, backed by powerful technologies and a roster of 12,000 quality-driven professionals enjoying exceptional career-growth opportunities and a distinctive cross-border culture.

Grant Thornton is part of the Grant Thornton International Limited network, which provides access to its member firms in more than 150 global markets.