Information technology (IT) is now an essential part of most large corporations and institutions. With this new dependence on IT comes a certain level of risk in terms of both the day-to-day operations of the company's computers and the security of the data on those computers, particularly any proprietary data.
The introduction of new technology can also have a significant impact on the way a company functions and upon staffing and budgeting. A career in IT risk management will take all of these factors into account when planning corporate- or organization-wide projects.
Information Technology Risk Management Careers
The main IT risk management careers will be as an IT project manager or as an IT risk management consultant. Depending on which career path is chosen, there are various educational requirements and qualifications which can be obtained. Salary will be based on qualifications and hands-on experience and can entail ranges from above average to extremely generous compensation depending on the size of company. Salary and benefits will also depend on the amount of technology and therefore inherent risk involved in the corporation or institution and whether the person is an employee or a special consultant.
Information Technology Risk Management Education and Qualifications
The Project Management Institute Risk Management Professional (PMI-RMP) certificate is accepted around the world as evidence the holder has knowledge and expertise in the area of assessing and identifying project risks while trying to minimize these risks to make the most of the opportunities presented by the project.
PMI-RMP candidates must have a high school diploma or equivalent and 4,500 hours of project risk management experience, plus 40 hours of project risk management education or a bachelor's degree with 3,000 hours of experience and 30 hours of project education. Both types of candidate will need to complete a 170-question multiple choice exam administered by the PMi at one of their recognized test centers. The questions will assess the candidate's ability in risk communication, analysis, response planning and risk governance.
People interested in a technology risk management career will usually also have an IT background, most commonly a Bachelor's degree or higher. They may also choose to pursue an MBA in IT risk management if they wish to reach the top of the IT risk management career ladder quickly.
IT Project Manager
An IT project manager will usually be responsible for the introduction and management of new IT-related projects within a corporation. S/he will make recommendations about the technologies available; perform cost-benefit analysis for each proposed solution; conduct risk assessment for the implementation of any new solution; and help oversee the implementation of the chosen new technology. S/he may be solely in charge of the project, or work in conjunction with an overall project manager.
IT Risk Management Consultant
An IT risk management consultant will usually be part of a specialized consulting firm. S/he might also be an independent contractor who will be hired on a per-project basis by a corporation or institution to assess either its current risk level or new IT risk level if new technology is to be adopted.
Consultants can specialize in particular industries within IT risk management, for example in the financial industry or the health care industry, to be certain that all proprietary data is protected and the company or organization is in compliance with all federal rules governing the protection and security of such privileged information.
Information Technology Risk Management Professional Characteristics
An IT risk management professional must be analytical with great attention to detail. S/he must be able to communicate clearly both expertise in IT and any risks identified. S/he must keep up to date with regulations and guidelines governing the storage and management of data within the country the corporation is operating in, and within the state or local region.
An IT risk management professional must balance the needs of data accessibility within an organization with those of data security and confidentiality. S/he must also keep up to date on the latest computer risks such as viruses, malware and spyware that can affect IT systems.
An IT risk management professional should be proficient with project management software, databases and spreadsheets, and other reporting tools in order to ensure smooth communication and good record keeping for all projects being worked on.
Project Management Institute: PMI-RMP Certification Handbook
PayScale.com: Risk Management Consultancy Jobs
Robinson College MBA in Information Technology Risk Management
Accenture Risk Management Consulting: The New Financial Metrics, Risk Management and Cost Control
University of Virginia Information Technology Security Risk Management (ITS-RM) Program
Evelyn Trimborn - Evelyn Trimborn is a freelance writer who frequently contributes to a number of blogs, including: healthful-goddess.com, ...
Join the Conversation