1

Certified Risk Manager Jobs (NOW HIRING)

Certified Information Systems Auditor (CISA) * Certified Information Security Manager (CISM) * Certified in Risk and Information Systems Control (CRISC) * Familiarity with Information Technology ...

Certified in Healthcare Risk Management (CPHRM) or able to obtain within two (2) years of employment Experience / Knowledge / Skills: * Minimum of five (5) years of progressive experience in a ...

Certified Information Systems Auditor (CISA) * Certified Information Security Manager (CISM) * Certified in Risk and Information Systems Control (CRISC) * Familiarity with Information Technology ...

Risk Manager (RN/LPN)-Multi-Facility Coverage Catholic Health Services South Florida Protect ... Maintain required certifications and mandatory skill updates. * Comply with all policies, local ...

DCS is searching for a performanceโ€‘driven Risk Manager to support US Army programs. A focus on ... Certified Logistics Professional certification. Desired Skills: Ability to obtain a secret ...

Completion of Certified Professional in Healthcare Risk Management (CPHRM) is preferred or must be obtained within six (6) months of meeting eligibility requirements.

Certified in Healthcare Risk Management (CPHRM) or able to obtain within two (2) years of employment Experience / Knowledge / Skills: * Minimum of five (5) years of progressive experience in a ...

Risk Manager

Keene, NH ยท Hybrid

Certified Professional in Healthcare Risk Management (CPHRM), Associate in Risk Management (ARM ... or Certified Professional in Patient Safety (CPPS). One designation must be achieved within one ...

Be Seen First

Risk Manager

Saint Louis, MO ยท On-site

$140K - $190K/yr

Professional certifications are a plus; CRIS (Construction Risk and Insurance Specialist) is most relevant, followed by CIC (Certified Insurance Counselor) and ARM (Associate in Risk Management)

New

Completion of Certified Professional in Healthcare Risk Management (CPHRM) is preferred or must be obtained within six (6) months of meeting eligibility requirements.

Certification in risk management is welcome but not required . * Excellent communication and leadership skills to guide staff education and policy implementation. What We Offer TLC Nursing Center ...

Risk Manager

WA ยท On-site

DCS is searching for a performance-driven Risk Manager to support US Army programs. A focus on ... Certified Logistics Professional certification. Desired Skills: Ability to obtain a secret ...

Risk Manager

Tacoma, WA ยท On-site

DCS is searching for a performancedriven Risk Manager to support US Army programs. A focus on ... Certified Logistics Professional certification. Desired Skills: Ability to obtain a secret ...

Risk Manager

Manhattan, NY ยท On-site

$136K - $154K/yr

Title: Risk Manager Location: Midtown Org Unit: Risk Management and Insurance Work Days: Weekly ... Licenses and Certifications Working Conditions/Physical Demands * This position may require ...

Risk Manager

Key West, FL ยท On-site

$91K - $146K/yr

Oversees review and approval of certificates of insurance for compliance with contract requirements and Risk Management standards. Delegates to Paralegal - Risk Management as needed. Advises and ...

Risk Manager

Addison, TX ยท On-site

$50K/yr

The Risk Manager will serve as the primary liaison between our practice and insurance carriers ... Certificate of Insurance Management: Manage the issuance, review, and maintenance of annual and ...

next page

Showing results 1-20

People also search for

Certified Risk Manager information

See salary details

$51.5K

$111.6K

$170K

How much do certified risk manager jobs pay per year?

As of Jul 7, 2026, the average yearly pay for certified risk manager in the United States is $111,556.00, according to ZipRecruiter salary data. Most workers in this role earn between $90,000.00 and $129,000.00 per year, depending on experience, location, and employer.

How does a Certified Risk Manager typically collaborate with other departments to manage organizational risk?

Certified Risk Managers work closely with teams across finance, operations, compliance, and executive leadership to identify, assess, and mitigate potential risks. They often lead cross-functional risk assessments and facilitate communication between departments to ensure everyone understands the organization's risk appetite and control measures. Collaboration is key, as risk managers translate complex risk data into actionable strategies that align with overall business objectives. Regular meetings and training sessions are common to keep all teams informed and engaged in proactive risk management.

Is the certified risk manager certification worth IT?

The Certified Risk Manager (CRM) certification is valuable for risk management professionals, as it demonstrates expertise in identifying and managing risks, which can enhance job prospects and earning potential. It is recognized by employers in industries such as insurance, finance, and corporate risk management, and often complements skills in risk assessment tools and regulatory compliance.

What is a Certified Risk Manager?

A Certified Risk Manager (CRM) is a professional who has completed specialized education and training in identifying, analyzing, controlling, financing, and administering risks within an organization. The CRM designation is awarded after successfully completing a series of courses and exams covering key areas of risk management. CRMs typically work in industries such as insurance, finance, and corporate risk management, helping organizations minimize losses and improve their overall risk strategies. This certification demonstrates a high level of expertise and commitment to best practices in risk management.

What are the key skills and qualifications needed to thrive as a Certified Risk Manager, and why are they important?

To thrive as a Certified Risk Manager, you need expertise in risk assessment, regulatory compliance, and enterprise risk management, typically supported by a bachelor's degree and a CRM certification. Familiarity with risk management software, data analysis tools, and industry-specific regulatory systems is essential. Strong analytical thinking, decision-making, and communication skills enable effective collaboration and leadership in identifying and mitigating risks. These competencies are crucial for protecting organizational assets, ensuring compliance, and supporting strategic business objectives.

What is the highest salary for a risk manager?

The highest salary for a risk manager can exceed $150,000 annually, especially for those with extensive experience, advanced certifications like CRM or FRM, and leadership roles in large organizations. Salaries vary based on industry, location, and level of responsibility.

What is the difference between Certified Risk Manager vs Risk Analyst?

AspectCertified Risk ManagerRisk Analyst
CertificationsCertified Risk Manager (CRM), other risk management certificationsOften holds certifications like FRM or CRM, but not always
Work EnvironmentCorporate risk management departments, consulting firmsFinancial institutions, insurance companies, corporate risk teams
Primary FocusDeveloping risk management strategies, mitigation plansAnalyzing data to identify and assess risks

The main difference is that Certified Risk Managers focus on creating and implementing risk management strategies, while Risk Analysts primarily analyze data to identify potential risks. CRM professionals often hold specialized certifications and work in strategic roles, whereas Risk Analysts focus on data analysis within various industries. Both roles are essential in managing organizational risks but serve different functions within the risk management process.

What can I do with a risk management certification?

A risk management certification qualifies individuals for roles such as risk manager, risk analyst, or compliance officer, where they identify, assess, and mitigate risks within organizations. It enhances skills in risk assessment, decision-making, and the use of risk management tools, often leading to increased job opportunities and salary potential in various industries.

How do I become a certified risk manager?

To become a certified risk manager, you typically need to gain relevant work experience in risk management, complete a professional certification program such as the Certified Risk Manager (CRM) or Associate in Risk Management (ARM), and pass the corresponding exam. Continuing education and maintaining certification requirements are also important for career advancement in this field.
More about Certified Risk Manager jobs
What cities are hiring for Certified Risk Manager jobs? Cities with the most Certified Risk Manager job openings:
What states have the most Certified Risk Manager jobs? States with the most job openings for Certified Risk Manager jobs include:
Infographic showing various Certified Risk Manager job openings in the United States as of July 2026, with employment types broken down into 1% Locum Tenens, 2% As Needed, 76% Full Time, 16% Part Time, and 5% Contract. Highlights an 97% Physical, 1% Hybrid, and 2% Remote job distribution, with an average salary of $111,556 per year, or $53.6 per hour.
Risk Manager

Full-time

Re-posted 10 days ago


Job description

Overview

CVP is seeking an Cybersecurity Risk Managerย for a large government agency enterprise-level cybersecurity program. The Cybersecurity Risk Manager will work directly with the Cybersecurity Program Manager and the agency's CIO and CISO in cybersecurity tasks such as information security policy development and implementation; security compliance monitoring; security audit management; risk assessment; system authorization; security reporting; and other information security-related tasks.

Responsibilities
  • Identify, evaluate, and develop strategies for handling risks to reduce information security and privacy risk across the agency.
  • Provide recommendations, guidance, planning, and implementation support for agency risk management activities and tools, and provide support as needed to enhance the agency's Information Security Program related to governance, optimizations, automation, and supporting tools.
  • Developing an agency Information Security Risk Management Strategy in accordance with the latest released versions of NIST Special Publications (SPs) such as SP 800-37, Risk Management Framework for Information Systems and Organizations and SP 800-39, Managing Information Security Risk (as revised).
  • Conducting an enterprise risk assessment and developing an agency Information Security Risk Assessment Report that addresses all findings from the assessment
  • Developing an agency Privacy and Security Roadmap that recommends privacy and information security capabilities based on risks identified in the agency's Information Security Risk Assessment Report
  • Developing an agency Information Security Risk Management Plan that addresses how the agency will implement and perform risk management activities regarding risk tolerance, risk assessment, risk response, risk monitoring, and risk capabilities
  • Providing risk management guidance to the agency offices for A&A activities as required, ensuring continuous risk monitoring of information security control implementation effectiveness and required information security compliance requirements
  • Support the Information Security and Assurance Office (ISAO) in implementing and overseeing the organization's information security risk management and security assessment and authorization (A&A) activities.
  • Advise the agency on how best to tailor the revised A&A process to handle non-traditional technologies including, but not limited to, cloud, mobile, and Internet of Things.
  • Provide the agency recommendations on how it can continuously monitor and assess the security posture of agency information systems over time and alert agency decision makers when an information system presents an increased risk or eminent threat to agency data and/or operations.
  • Develop guidance, templates, other tools, and advice to the program offices to support their risk management and ATO activities.
  • Provide risk management and information security continuous monitoring program implementation recommendations to program offices
  • Track and review Plans of Actions and Milestones (POA&Ms) agency-wide to identify areas of risk as a result of unimplemented POA&Ms, a buildup of risk-based decisions, or other cross-cutting issues observed as a result of its risk management support.
  • Track the A&A status for all divisions and programs that have information systems to validate they meet the requirements to protect the agency's data and operations.
  • Develop the required artifacts to complete security accreditation packages for OCIO information systems and perform any required assessments, as requested. The Contractor shall provide oversight and advisory support to agency program office personnel for completion of information system A&A packages, as requested.
  • Follow NIST Federal Information Processing Standards (FIPS) and Special Publications (SPs) to include, but not limited to, FIPS 199 and 200, SP 800-39, SP 800-37, SP 800-137, SP 800-60, SP 800-53, SP 800-53A, SP 800-34, SP 800-30, and SP 800-18. The Contractor shall comply with all agency IT security and Privacy policies and standards including, and the agency Privacy Impact Assessment (PIA) requirements and associated templates.
Qualifications
  • Minimum of six years' experience in cybersecurity. 10+ years' experience is preferred.
  • Minimum of six years' experience leading and delivering in FISMA-based and FedRAMP Assessment and Authorization (A&A) programs for comparably sized federal agencies and programs. Seven plus years' experience is preferred.
  • Shall have at least one of the following industry-recognized certifications:
    • Certified Information System Security Professional (CISSP)
    • Certified Information Systems Auditor (CISA)
    • Certified Information Security Manager (CISM)
    • Certified in Risk and Information Systems Control (CRISC)
  • Familiarity with Information Technology Infrastructure Library (ITIL) Foundation Compliance (GRC) tool, continuous monitoring, and vulnerability management tools or services. Note: NIH currently uses CSAM.
  • Demonstrated experience managing cybersecurity teams including personnel, workload, priorities, scheduling, and risks.
  • Proven experience bringing innovative approaches to help reduce the FISMA workload and time to authorization/reauthorization through such methods as boundary consolidation, common control identification and re-use, automation, assessment readiness reviews, and digital transformation.

Desired Skills

  • PMP Certification
  • CISSP Certification
  • Experience with Security Assessment Tools (Tenable Nessus, DBProtect, Wireshark, WebInspect)
  • NIH/HHS experience

Location

  • Rockville, MD (Hybrid)

Salary Band: $155-165k (Depending on experience)

About CVP

CVP is an award-winning healthcare and next-gen technology and consulting services firm solving critical problems for healthcare, national security, and public sector clients. We help organizations achieve lasting transformation.CVP is an Equal Opportunity Employer dedicated to actively recruiting individuals and providing advancement opportunities based on merit and legitimate job qualifications. We ensure that all associates receive equal opportunities based on their personal qualifications and job requirements. CVP strictly prohibits any form of discrimination or harassment.At CVP, we cultivate a work environment that encourages fairness, teamwork, and respect among all associated. We are committed to maintaining a workplace where everyone can grow both personally and professionally.

Employment Type: FULL_TIME