Plan and conduct supplier cyber & resilience assessments, identify risks, document risk assessments in standard report deliverable, and support implementation of risk mitigation strategies.
Plan and conduct supplier cyber & resilience assessments, identify risks, document risk assessments in standard report deliverable, and support implementation of risk mitigation strategies.
Vendor Risk Manager
Westport, CT · Hybrid
Lead holistic vendor risk assessments across cybersecurity, AI risk, privacy, financial, AML/CFT ... Apply FAIR or comparable quantitative methods for high-impact vendor decisions, expressing cyber ...
Vendor Risk Manager
Westport, CT · Hybrid
Lead holistic vendor risk assessments across cybersecurity, AI risk, privacy, financial, AML/CFT ... Apply FAIR or comparable quantitative methods for high-impact vendor decisions, expressing cyber ...
Vendor Risk Manager
Westport, CT · Hybrid
Lead holistic vendor risk assessments across cybersecurity, AI risk, privacy, financial, AML/CFT ... Apply FAIR or comparable quantitative methods for high-impact vendor decisions, expressing cyber ...
Vendor Risk Manager
Westport, CT · Hybrid
Lead holistic vendor risk assessments across cybersecurity, AI risk, privacy, financial, AML/CFT ... Apply FAIR or comparable quantitative methods for high-impact vendor decisions, expressing cyber ...
Vendor Risk Manager
Westport, CT · On-site
Lead holistic vendor risk assessments across cybersecurity, AI risk, privacy, financial, AML/CFT ... Apply FAIR or comparable quantitative methods for high-impact vendor decisions, expressing cyber ...
Vendor Risk Manager
Westport, CT · On-site
Lead holistic vendor risk assessments across cybersecurity, AI risk, privacy, financial, AML/CFT ... Apply FAIR or comparable quantitative methods for high-impact vendor decisions, expressing cyber ...
Vendor Risk Manager
Westport, CT · On-site
Lead holistic vendor risk assessments across cybersecurity, AI risk, privacy, financial, AML/CFT ... Apply FAIR or comparable quantitative methods for high-impact vendor decisions, expressing cyber ...
Vendor Risk Manager
Westport, CT · On-site
Lead holistic vendor risk assessments across cybersecurity, AI risk, privacy, financial, AML/CFT ... Apply FAIR or comparable quantitative methods for high-impact vendor decisions, expressing cyber ...
Cyber Data Protection Manager
Hartford, CT · Remote
$112K - $151K/yr
If so, consider joining Deloitte & Touche LLP's growing Cyber Risk Digital Trust & Privacy practice ... Serve as a subject matter expert and trusted advisor to clients, helping them assess strategic and ...
Cyber Data Protection Manager
Hartford, CT · Remote
$112K - $151K/yr
If so, consider joining Deloitte & Touche LLP's growing Cyber Risk Digital Trust & Privacy practice ... Serve as a subject matter expert and trusted advisor to clients, helping them assess strategic and ...
Cyber Data Protection Manager
Stamford, CT · Remote
$118K - $159K/yr
If so, consider joining Deloitte & Touche LLP's growing Cyber Risk Digital Trust & Privacy practice ... Serve as a subject matter expert and trusted advisor to clients, helping them assess strategic and ...
Cyber Data Protection Manager
Stamford, CT · Remote
$118K - $159K/yr
If so, consider joining Deloitte & Touche LLP's growing Cyber Risk Digital Trust & Privacy practice ... Serve as a subject matter expert and trusted advisor to clients, helping them assess strategic and ...
Monitor and communicate Microsoft product updates; assess and advise on impacts on the environment ... Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident ...
Monitor and communicate Microsoft product updates; assess and advise on impacts on the environment ... Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident ...
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat ... Monitor and communicate Microsoft product updates; assess and advise on impacts on the environment ...
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat ... Monitor and communicate Microsoft product updates; assess and advise on impacts on the environment ...
Includes design of the cyber organization, governance, and risk assessments. Qualifications Required: * Bachelor's degree in Cybersecurity, Information Security, Engineering, Computer Science ...
Includes design of the cyber organization, governance, and risk assessments. Qualifications Required: * Bachelor's degree in Cybersecurity, Information Security, Engineering, Computer Science ...
Includes design of the cyber organization, governance, and risk assessments. Qualifications Required: * Bachelor's degree in Cybersecurity, Information Security, Engineering, Computer Science ...
Includes design of the cyber organization, governance, and risk assessments. Qualifications Required: * Bachelor's degree in Cybersecurity, Information Security, Engineering, Computer Science ...
Risk Manager - Insurance
$110K - $145K/yr
Risk Assessment: Conduct comprehensive risk evaluations across property, casualty, liability, professional, cyber, and related exposures to identify risk profiles. * Exposure Analysis: Analyze loss ...
Risk Manager - Insurance
$110K - $145K/yr
Risk Assessment: Conduct comprehensive risk evaluations across property, casualty, liability, professional, cyber, and related exposures to identify risk profiles. * Exposure Analysis: Analyze loss ...
Senior Analyst/Analyst, ERM
Greenwich, CT · On-site
... with assessment of exposure to cyber insurance risk and climate change • Assist with research of artificial intelligence and other emerging risks and evaluate their potential implications on ...
Senior Analyst/Analyst, ERM
Greenwich, CT · On-site
... with assessment of exposure to cyber insurance risk and climate change • Assist with research of artificial intelligence and other emerging risks and evaluate their potential implications on ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Stamford, CT · Remote
Risk Assessment & Vulnerability Management * Perform consequence-based risk assessments for OT environments, utilizing methodologies such as Cyber Process Hazards Analysis (Cyber PHA) to identify ...
Cyber Operational Technology/ Industrial Control Systems (OT/ICS) Senior Consultant
Stamford, CT · Remote
Risk Assessment & Vulnerability Management * Perform consequence-based risk assessments for OT environments, utilizing methodologies such as Cyber Process Hazards Analysis (Cyber PHA) to identify ...
... with assessment of exposure to cyber insurance risk and climate change • Assist with research of artificial intelligence and other emerging risks and evaluate their potential implications on ...
... with assessment of exposure to cyber insurance risk and climate change • Assist with research of artificial intelligence and other emerging risks and evaluate their potential implications on ...
Senior Consultant - Digital Assets Enterprise Strategy, Risk and Operating Model Design
Stamford, CT · On-site
Assess new and emerging digital asset technologies, and design mitigation strategies for related ... AML, cyber, operational, blockchain, and financial risks. * Identify strategic risks and ...
Senior Consultant - Digital Assets Enterprise Strategy, Risk and Operating Model Design
Stamford, CT · On-site
Assess new and emerging digital asset technologies, and design mitigation strategies for related ... AML, cyber, operational, blockchain, and financial risks. * Identify strategic risks and ...
Cyber Data Protection/PKI Manager
$118K - $159K/yr
Includes design of the cyber organization, governance, and risk assessments. Qualifications Required: * Bachelor's degree in Cybersecurity, Information Security, Engineering, Computer Science ...
Cyber Data Protection/PKI Manager
$118K - $159K/yr
Includes design of the cyber organization, governance, and risk assessments. Qualifications Required: * Bachelor's degree in Cybersecurity, Information Security, Engineering, Computer Science ...
Cyber Data Protection/PKI Manager
Hartford, CT · On-site
$112K - $151K/yr
Includes design of the cyber organization, governance, and risk assessments. Qualifications Required: * Bachelor's degree in Cybersecurity, Information Security, Engineering, Computer Science ...
Cyber Data Protection/PKI Manager
Hartford, CT · On-site
$112K - $151K/yr
Includes design of the cyber organization, governance, and risk assessments. Qualifications Required: * Bachelor's degree in Cybersecurity, Information Security, Engineering, Computer Science ...
Cyber Security Specialist
Stamford, CT · On-site
... enterprise cyber risk and strengthen security controls • Develop and implement security ... assessments and risk classification • Monitor compliance with cybersecurity frameworks such as ...
Cyber Security Specialist
Stamford, CT · On-site
... enterprise cyber risk and strengthen security controls • Develop and implement security ... assessments and risk classification • Monitor compliance with cybersecurity frameworks such as ...
Assess and manage AI-related risks including data leakage, model misuse, IP exposure, bias ... Own enterprise cyber risk management and third-party risk due diligence & oversight in close ...
Assess and manage AI-related risks including data leakage, model misuse, IP exposure, bias ... Own enterprise cyber risk management and third-party risk due diligence & oversight in close ...
Cyber Risk Assessment information
What is the difference between Cyber Risk Assessment vs Cyber Security Analyst?
| Aspect | Cyber Risk Assessment | Cyber Security Analyst |
|---|---|---|
| Primary Focus | Identifying and evaluating cybersecurity risks and vulnerabilities | Monitoring, detecting, and responding to security threats |
| Certifications | CompTIA Security+, CISSP, CISA | CompTIA Security+, CEH, CISSP |
| Work Environment | Risk management teams, consulting firms, security departments | Security operations centers, IT departments, incident response teams |
| Responsibilities | Risk analysis, vulnerability assessments, compliance | Threat detection, incident response, security monitoring |
While both roles involve cybersecurity, Cyber Risk Assessments focus on evaluating potential risks and vulnerabilities to inform security strategies, whereas Cyber Security Analysts actively monitor and respond to ongoing security threats. Understanding these differences helps organizations assign the right roles for comprehensive cybersecurity management.
How much does a cyber risk analyst make?
What is a cyber risk assessment?
What are some common challenges faced by professionals in Cyber Risk Assessment, and how can they be addressed?
What are the key skills and qualifications needed to thrive as a Cyber Risk Assessor, and why are they important?
Can you make $200,000 in cyber security?
Is SOC an entry level job?
Can you make $500,000 a year in cyber security?

Full-time
Medical, Dental, Vision, Life, Retirement, PTO
Posted 8 days ago
RTX rating
8.1
Based on 84 frontline employees who took The Breakroom Quiz
33rd of 61 rated aerospace companies
Job description
Date Posted:
2026-05-07Country:
United States of AmericaLocation:
US-CT-REMOTEPosition Role Type:
RemoteU.S. Citizen, U.S. Person, or Immigration Status Requirements:
This job requires a U.S. Person. A U.S. Person is a lawful permanent resident as defined in 8 U.S.C. 1101(a)(20) or who is a protected individual as defined by 8 U.S.C. 1324b(a)(3). U.S. citizens, U.S. nationals, U.S. permanent residents, or individuals granted refugee or asylee status in the U.S. are considered U.S. persons. For a complete definition of “U.S. Person” go here: https://www.ecfr.gov/current/title-22/chapter-I/subchapter-M/part-120/subpart-C/section-120.62Security Clearance Type:
None/Not RequiredSecurity Clearance Status:
Not RequiredAt RTX, the world largest aerospace and defense company, 185,000 great minds are united by purpose and inspired to make a difference solving the world’s most complex problems. With our three market leading businesses, world-class operations and investments in research and development, we offer capabilities and opportunity no one else can. Together, we push the boundaries of known science and find new ways to connect and protect our world. Join us and help shape the future of aerospace and defense.
RTX is seeking a highly experienced, strategic and proactive leader to serve as the Senior Manager - Supplier Cyber Risk & Resilience. This role will be responsible for developing, implementing, and managing a comprehensive supplier cyber risk management function in collaboration with RTX's supply chain and product security teams. The ideal candidate will have a strong background in cybersecurity, supply chain risk management, and leadership, with the ability to drive cross-functional initiatives and ensure compliance with regulatory and corporate standards.
The Senior Manager – Supplier Cyber Risk & Resilience reports to the Director – Digital Risk and is responsible for managing the supplier cyber risk & resilience program for Enterprise Services, Pratt Whitney, Collins Aerospace and Raytheon. The role will require a deep understanding of supplier cyber risk & resilience management, the ability to lead through transformation, and successfully partner with key Enterprise functions, Internal Audit and RTX business units.
What You Will Do:
-
Establish and operationalize a robust supplier cyber risk & resilience management program to identify, assess, and support resolution of cyber and resilience risks across RTX’s supply chain.
-
Identify, implement and maintain processes, methodology, tools and technologies to support supplier cyber risk and resilience management.
-
Plan and conduct supplier cyber & resilience assessments, identify risks, document risk assessments in standard report deliverable, and support implementation of risk mitigation strategies.
-
Document and manage findings and remediation plans in RTX’s authoritative source of record throughout the entire finding lifecycle.
-
Support evaluation of supplier compliance with RTX cybersecurity policies, industry standards, and government regulations (e.g., NIST, CMMC, DFARS).
-
Build strong relationships with suppliers to promote cybersecurity best practices and drive continuous improvement in supplier cyber risk management.
-
Lead efforts to address supplier-related cybersecurity incidents, including root cause analysis and corrective actions.
-
Develop and maintain key performance indicators (KPIs) and dashboards to measure the effectiveness of the supplier cyber risk management program.
-
Provide regular status update on program health to Director - Digital Risk.
-
Drive supplier and internal awareness programs to enhance understanding of cybersecurity risks and requirements.
-
Partner with RTX supply chain, product security, and other relevant teams to align supplier cyber risk management strategies with corporate objectives.
-
Partner with cross-functional teams, including IT, Cyber Defense, Internal Audit, Legal, and Compliance, to ensure a cohesive and integrated approach to digital risk management.
-
Partner with other GRC functions to drive the development and implementation of risk-based policies and controls to safeguard digital assets and ensure compliance with industry standards and regulations.
-
Stay updated on industry trends, regulatory changes, and best practices related to digital risk.
-
Must be willing occasionally travel onsite in Dallas, TX or Farmington, CT.
Qualification You Must Have:
-
A University Degree in and a minimum of 10 years of prior relevant experience, or an Advanced Degree in a related field and a minimum of 7 years of relevant experience.
-
Prior relevant work experience must include digital risk management, cybersecurity, or a related discipline.
-
Experience working in a global, heavily regulated industry.
Qualifications We Prefer:
-
3+ years of experience in a risk advisory or consulting firm.
-
Strong understanding of digital risk management frameworks, standards, and best practices (e.g., NIST 800-53, NIST 800-171, ISO 27001, CMMC).
-
Proven track record of successfully building or transforming supplier cyber risk management programs in large, complex organizations, preferably within the Aerospace and Defense or Financial Services industries.
-
Proven ability to lead cross-functional teams and manage complex projects in a matrixed organization.
-
Familiarity with supply chain processes and product security requirements.
-
Ability to communicate with all levels of management verbally and written, facilitate effective meetings, build effective working relationships and partnerships, and strong interpersonal skills
-
Excellent analytical, problem-solving, and decision-making skills
-
Relevant certifications such as CISSP, CISM, CRISC, or similar are desirable.
-
Highly proficient in Microsoft Office products with experience in preparing presentations and presenting to executive leadership.
-
General knowledge of IT, Artificial Intelligence and cybersecurity with experience in the following areas: incident response, business continuity/ disaster recovery, vulnerability management, application security, database security, identity & access management, OT security, cloud security, third-party & supply chain risk management.
-
Excellent analytical, problem-solving, and decision-making skills.
What We Offer:
Whether you’re just starting out on your career journey or are an experienced professional, we offer a robust total rewards package with compensation; healthcare, wellness, retirement and work/life benefits; career development and recognition programs. Some of the benefits we offer include parental (including paternal) leave, flexible work schedules, achievement awards, educational assistance and child/adult backup care.
Location:
Please ensure the role type defined below is appropriate for your needs before applying to this role. This position is classified as:
Remote: Employees who are working in Remote roles will work primarily offsite (from home).
As part of our commitment to maintaining a secure hiring process, candidates may be asked to attend select steps of the interview process in-person at one of our office locations, regardless of whether the role is designated as on-site, hybrid or remote.
The salary range for this role is 132,400 USD - 251,600 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate’s work experience, location, education/training, and key skills. Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement. Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company’s performance. This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply. RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window.RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans’ Readjustment Assistance Act.
Privacy Policy and Terms:
Click on this link to read the Policy and Terms
About RTX
Sourced by ZipRecruiter
Industry
Engineering professional services
Company size
10,000+ Employees
Headquarters location
Arlington, VA, US
Year founded
2020