IT Governance & Risk Manager

HIGH DemandLOW AI RiskGROWING in SL· Rs.160k+ /mo

Ideal for those who enjoy creating structured systems, managing uncertainty, and ensuring organizations operate within ethical and legal boundaries.

About This Role

Ensures IT systems comply with regulations and manages digital risks like cybersecurity and data privacy.

A Day in the Life

Oversee IT governance frameworks, manage technology risks, ensure compliance with regulatory requirements, and align IT policies with business strategy across the organization.

  • Review and update IT governance policies
  • Conduct risk assessments for IT systems and projects
  • Monitor compliance with ISO 27001, COBIT, and local regulations
  • Prepare risk reports for senior management and board
  • Coordinate with audit teams on IT audit findings
  • Evaluate third-party vendor risks
  • Track KRIs (Key Risk Indicators) for IT infrastructure
  • Facilitate IT steering committee meetings

Work Environment

OFFICETeam: SMALLFORMALRemote: MEDIUM

Corporate office environment with regular boardroom presentations. Collaborative work with legal, compliance, and executive teams.

Typical hours: 45h/week · WLB score 7/10 · OCCASIONAL overtime

Generally good work-life balance with predictable hours. Occasional late evenings during audit seasons or incident responses.

Skills Required

Technical Skills

COBIT FrameworkISO 27001IT Risk ManagementGRC PlatformsITILRegulatory ComplianceAudit ManagementBusiness Continuity Planning

Soft Skills

Strategic ThinkingCommunicationStakeholder ManagementAnalytical ThinkingAttention to DetailLeadership

Tools & Software

RSA ArcherServiceNow GRCMetricStreamMicrosoft OfficeJiraConfluencePower BI

Salary in Sri Lanka (LKR / month)

Entry LevelRs.80k – Rs.130k/mo
Mid-LevelRs.200k – Rs.350k/mo
SeniorRs.450k – Rs.750k/mo
Entry: IT Risk AnalystMid: IT Governance ManagerSenior: Chief Risk Officer / VP IT Governance

Typical progression: 4yr to mid · 9yr to senior

Global Salary (USD / year)

Entry Level$55k – $75k/yr
Mid-Level$90k – $130k/yr
Senior$140k – $200k/yr

Top Markets

USAUKSingaporeAustraliaUAE

Market Outlook

GROWING

Growing demand driven by increasing regulatory requirements (CBSL, SEC), digital transformation in banking and finance, and rising cybersecurity threats.

Hiring: LOW

Commercial BankHatton National BankDialog AxiataJohn Keells HoldingsLOLC HoldingsSampath BankSriLankan Airlines

GROWING

High demand globally as enterprises face increasing regulatory scrutiny, data protection laws (GDPR), and complex IT landscapes.

Entry Requirements

Sri Lanka

Min. EducationBachelor's in IT, Computer Science, or Business
Experience3-5 years in IT or risk management roles

Preferred

CRISCCISMCGEIT certification preferred

Global

Min. EducationBachelor's in Information Systems, IT, or Risk Management
Experience5+ years in IT governance, risk, or compliance

Preferred

CRISCCGEITCISAMBA

Helpful Certifications

CRISCCISMCGEITCISAISO 27001 Lead ImplementerITIL v4 Managing Professional

Entrepreneurship & Freelancing

Freelance: LOWRemote: MEDIUMCapital: LOW

Freelance earnings: $50–$150/mo (USD)

Platforms (SL)

LinkedInLocal consulting firms

Business Ideas

  • IT Governance Consulting Firm
  • Compliance Advisory Services
  • Risk Management Training Academy
  • GRC Software Reseller/Implementer

Side Income Ideas

Corporate training on IT governanceCRISC/CISM exam coachingWriting governance policy templatesWebinar facilitation

Growing market for independent IT compliance consultants, especially for SMEs navigating digital transformation.

Risks & Challenges

AI / Automation Risk

LOW

LONG TERM

Burnout Risk

MEDIUM

Job Security (SL)

HIGH

High-level strategic and judgment-based role. GRC tools automate data collection but human oversight, stakeholder management, and strategic decision-making remain critical.

Burnout Causes

Pressure from regulatory deadlinesManaging multiple stakeholder expectationsOn-call during security incidentsNavigating organizational politics

Physical Health Risks

Sedentary desk workEye strain from screen time

Mental Health Risks

Responsibility for organizational riskAudit pressure periodsCompliance deadline stress

How to Mitigate

  • Stay current with regulatory changes
  • Maintain professional certifications
  • Build strong relationships with legal and compliance teams

Is This Career For You?

Detail-oriented students who enjoy both technology and business, are good communicators, and thrive in roles that require balancing risk with opportunity.

Personality Types

INTJISTJENTJ

Core Motivations

Protecting the organizationCreating order from complexityInfluencing strategyEnsuring fairness and compliance

What You'll Love

  • High organizational influence
  • Respected senior role
  • Intellectually stimulating
  • Directly impacts company security

What's Challenging

  • Often blamed when things go wrong
  • Resistance to governance initiatives
  • Navigating bureaucracy
  • Keeping up with evolving regulations

At a Glance

SL Salary (entry)Rs.80k – Rs.130k/mo
SL Salary (senior)Rs.450k – Rs.750k/mo
Global (senior)$140k – $200k/yr
SL DemandGROWING
WLB Score7/10
Hours/week~45h
Remote WorkMEDIUM

AI Replacement Risk

LOW

LONG TERM

Sectors

Private

Reviews & Ratings

Loading reviews…