1

Cyber Risk Analyst Jobs (NOW HIRING)

Collaborate with Risk Solutions and Analytics leadership to define future cyber analytics initiatives and enhance digital solutions (e.g. Associate Hub) with cyber-specific value. * Continuously ...

Manager, Cyber Risk & Analysis As a Manager, you will apply your technical expertise, risk management acumen, and project management skills to drive Risk Management Strategy for a major technology ...

Experience performing cyber risk analysis, risk quantification, or security measurement ... Expertise in one or more quantitative disciplines such as statistics, mathematics, econometrics ...

Experience performing cyber risk analysis, risk quantification, or security measurement ... Expertise in one or more quantitative disciplines such as statistics, mathematics, econometrics ...

Position Overview The Director, Cyber Risk leads Asurion's cyber and technology risk management ... Build, lead, and develop a team of senior managers and analysts; set objectives, manage performance ...

Position Overview The Director, Cyber Risk leads Asurion's cyber and technology risk management ... Build, lead, and develop a team of senior managers and analysts; set objectives, manage performance ...

next page

Showing results 1-20

Cyber Risk Analyst information

See salary details

$44.5K

$107.5K

$151K

How much do cyber risk analyst jobs pay per year?

As of Jul 13, 2026, the average yearly pay for cyber risk analyst in the United States is $107,522.00, according to ZipRecruiter salary data. Most workers in this role earn between $91,500.00 and $126,500.00 per year, depending on experience, location, and employer.

What does a cyber risk analyst do?

A cyber risk analyst evaluates an organization's cybersecurity threats and vulnerabilities to identify potential risks. They analyze security data, develop risk mitigation strategies, and often use tools like risk assessment frameworks and security information and event management (SIEM) systems to protect digital assets.

What is the difference between Cyber Risk Analyst vs Cyber Security Analyst?

AspectCyber Risk AnalystCyber Security Analyst
CertificationsCertified Information Systems Security Professional (CISSP), Certified Risk and Information Systems Control (CRISC)CompTIA Security+, Certified Ethical Hacker (CEH)
Work EnvironmentRisk assessment, policy development, complianceNetwork monitoring, threat detection, incident response
Employer & IndustryFinancial, healthcare, government sectors focusing on risk managementIT departments, cybersecurity firms, tech companies

While both roles focus on cybersecurity, a Cyber Risk Analyst primarily assesses and manages potential risks to an organization’s information assets, whereas a Cyber Security Analyst concentrates on defending systems from threats and responding to security incidents. The roles often overlap but differ in their core focus areas.

Can you make $500,000 a year in cyber security?

Cyber Risk Analysts typically earn between $70,000 and $150,000 annually, depending on experience, certifications, and location. Reaching a $500,000 salary usually requires senior roles such as Chief Information Security Officer or specialized consulting positions, often combined with extensive experience and advanced skills in areas like threat management and security architecture.

Is 30 too late for cyber security?

Cyber Risk Analysts and other cybersecurity professionals can enter the field at any age, including 30 or older. Success often depends on acquiring relevant skills, certifications, and experience, which can be achieved through training programs, self-study, or prior related work experience.

Can you make $200,000 in cyber security?

Cyber Risk Analysts and other cybersecurity professionals can earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP, and in senior or specialized roles. Salaries vary based on industry, location, and level of expertise, with high-demand areas offering higher compensation.

What are the key skills and qualifications needed to thrive as a Cyber Risk Analyst, and why are they important?

To thrive as a Cyber Risk Analyst, you need a solid understanding of information security principles, risk assessment methodologies, and often a degree in cybersecurity, computer science, or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), vulnerability assessment tools, and security information and event management (SIEM) systems is typically required, along with certifications like CISSP or CISM. Analytical thinking, attention to detail, and strong communication skills are essential soft skills for this role. These competencies ensure accurate identification, evaluation, and mitigation of cyber risks to protect organizational assets and maintain regulatory compliance.

How does a Cyber Risk Analyst typically collaborate with other departments to improve an organization's security posture?

Cyber Risk Analysts work closely with various departments, such as IT, compliance, and business units, to identify and assess potential security threats. They often facilitate risk assessments, conduct training sessions to raise awareness, and help develop incident response plans. Regular communication and collaboration are essential, as analysts must ensure that security recommendations align with business goals and regulatory requirements. This cross-functional teamwork creates a more resilient security environment and helps integrate cybersecurity best practices throughout the organization.
More about Cyber Risk Analyst jobs
What cities are hiring for Cyber Risk Analyst jobs? Cities with the most Cyber Risk Analyst job openings:
What states have the most Cyber Risk Analyst jobs? States with the most job openings for Cyber Risk Analyst jobs include:
Infographic showing various Cyber Risk Analyst job openings in the United States as of July 2026, with employment types broken down into 1% Locum Tenens, 1% Internship, 86% Full Time, 6% Part Time, 1% Temporary, and 5% Contract. Highlights an 82% Physical, 5% Hybrid, and 13% Remote job distribution, with an average salary of $107,522 per year, or $51.7 per hour.
AVP, Cyber Analytics

AVP, Cyber Analytics

Lockton, Inc.

Overland Park, KS • On-site

Full-time

Re-posted 11 hours ago


Lockton rating

9.1

Company rating: 9.1 out of 10

Based on 46 frontline employees who took The Breakroom Quiz

23rd of 281 rated insurance


Job description

Job Summary:
The AVP - Cyber Analytics will lead Lockton's cyber analytics strategy, delivering advanced insights to help clients navigate complex cyber risk landscapes. This role combines deep cyber expertise, data-driven decision-making, and AI-first mindset, and innovative solution development to strengthen Lockton's position as a leader in cyber risk advisory.
Core Responsibilities
Growth & Client Impact
  • Lead high-value prospect and client conversations to demonstrate Lockton's differentiated cyber analytics capabilities.
  • Provide actionable insights on emerging cyber threats, regulatory changes, and competitor offerings to inform Lockton's cyber product roadmap.

Innovation & Product Development
  • Collaborate with Risk Solutions and Analytics leadership to define future cyber analytics initiatives and enhance digital solutions (e.g. Associate Hub) with cyber-specific value.
  • Continuously assess client needs related to cyber risk modeling, threat intelligence, and vulnerability analysis to drive solution enhancements.
  • Support development of new insurance products with innovative cyber analytics capabilities.

Adoption & Training
  • Design and deliver training programs for brokerage teams focused on cyber risk analytics, modeling methodologies, and technology tools.
  • Establish transparency into adoption metrics for cyber analytics tools and develop strategies to increase engagement.

Communication & Thought Leadership
  • Equip client teams with compelling messaging and positioning strategies for Lockton's cyber analytics capabilities.
  • Integrate cyber risk insights into prospecting materials and maintain a structured cadence of data-driven updates on cyber trends and best practices.

Data Analysis & Technology Leadership
  • Serve as a subject matter expert (SME) in analyzing cyber-related datasets, including threat intelligence feeds, incident data, and vulnerability metrics, transforming raw data into actionable client insights.
  • Act as an SME for Digital / Analytics technology initiatives such, ensuring cyber analytics features align with business value and client needs.

Requirements:
  • Education: Bachelor's degree in Cybersecurity, Data Analytics, Risk Management, or related field;
  • Experience: 7+ years in cyber risk analytics, cybersecurity consulting, or insurance-related roles;
  • Technical Skills: Familiarity with cyber risk modeling tools, threat intelligence platforms, and data visualization tools (e.g., Power BI, Tableau), with an understanding of enterprise data strategy, data governance, and how analytics capabilities scale across platforms and stakeholders. Experience with Azure and Databricks is preferred.
  • Industry Knowledge: Deep understanding of cyber risk frameworks (NIST, ISO), regulatory requirements, and cyber insurance market dynamics.
  • Leadership: Proven ability to lead cross-functional teams and influence senior stakeholders.

Core Competencies
  • Strategic thinking with a focus on cyber risk mitigation/quantification
  • Strong communication and presentation skills
  • Ability to translate complex cyber data into actionable insights
  • Collaborative mindset with a focus on innovation
    Success Metrics
  • Identification and growth of data-driven revenue opportunities for cyber including cross-selling, analytics-supported insurance product development (e.g. cyber triggered physical damage, technology E&O, media E&O, etc.), industry vertical-specialized analytics.
  • Increased adoption of cyber analytics tools across brokerage teams
  • Growth in cyber analytics-driven client engagements
  • Positive feedback from clients on cyber risk advisory and analytics initiatives
  • Timely delivery of cyber-focused product enhancements and training programs

#LI-JM

What Lockton employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom