Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Help organizations reduce cyber risk and improve resilience as part of Deloitte's Cyber Defense & Resilience Continuous Threat Exposure Management (CTEM) team. In this role, you'll support clients in ...
Help organizations reduce cyber risk and improve resilience as part of Deloitte's Cyber Defense & Resilience Continuous Threat Exposure Management (CTEM) team. In this role, you'll support clients in ...
Help organizations reduce cyber risk and improve resilience as part of Deloitte's Cyber Defense & Resilience Continuous Threat Exposure Management (CTEM) team. In this role, you'll support clients in ...
Help organizations reduce cyber risk and improve resilience as part of Deloitte's Cyber Defense & Resilience Continuous Threat Exposure Management (CTEM) team. In this role, you'll support clients in ...
Senior Manager - Cloud Architect
Detroit, MI · On-site
$64.75 - $86.25/hr
Ability to provide clear guidance to others The team Deloitte's Cloud Cyber Risk team helps organizations pursue growth, innovation, and performance through proactive management of cyber risk. The ...
Senior Manager - Cloud Architect
Detroit, MI · On-site
$64.75 - $86.25/hr
Ability to provide clear guidance to others The team Deloitte's Cloud Cyber Risk team helps organizations pursue growth, innovation, and performance through proactive management of cyber risk. The ...
Consultant - Cloud Architect
$64.75 - $86.25/hr
This role offers the opportunity to contribute to cyber engagements, work directly with clients, and help organizations manage cyber risk while enabling innovation. Recruiting for this role ends on ...
Consultant - Cloud Architect
$64.75 - $86.25/hr
This role offers the opportunity to contribute to cyber engagements, work directly with clients, and help organizations manage cyber risk while enabling innovation. Recruiting for this role ends on ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Leading vulnerability and patch management operations across infrastructure, middleware, and ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Leading vulnerability and patch management operations across infrastructure, middleware, and ...
Consultant - Cloud Architect
Detroit, MI · On-site
$58 - $79/hr
This role offers the opportunity to lead portions of client engagements, deliver cloud security solutions, and help organizations manage cyber risk while enabling innovation. Recruiting for this role ...
Consultant - Cloud Architect
Detroit, MI · On-site
$58 - $79/hr
This role offers the opportunity to lead portions of client engagements, deliver cloud security solutions, and help organizations manage cyber risk while enabling innovation. Recruiting for this role ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Leading vulnerability and patch management operations across infrastructure, middleware, and ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Leading vulnerability and patch management operations across infrastructure, middleware, and ...
Senior Consultant - Cloud Architect
Detroit, MI · On-site
$64.25 - $82/hr
Cloud Architect -Manager Join Deloitte's Cloud Cyber Risk practice and help organizations secure cloud transformation at scale. As a Senior Consultant, Strategy, Growth, and Transformation, you will ...
Senior Consultant - Cloud Architect
Detroit, MI · On-site
$64.25 - $82/hr
Cloud Architect -Manager Join Deloitte's Cloud Cyber Risk practice and help organizations secure cloud transformation at scale. As a Senior Consultant, Strategy, Growth, and Transformation, you will ...
This role offers the opportunity to lead portions of client engagements, deliver cloud security solutions, and help organizations manage cyber risk while enabling innovation. Recruiting for this role ...
This role offers the opportunity to lead portions of client engagements, deliver cloud security solutions, and help organizations manage cyber risk while enabling innovation. Recruiting for this role ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Leading vulnerability and patch management operations across infrastructure, middleware, and ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Leading vulnerability and patch management operations across infrastructure, middleware, and ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Leading vulnerability and patch management operations across infrastructure, middleware, and ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Leading vulnerability and patch management operations across infrastructure, middleware, and ...
Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our ...
Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our ...
Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our ...
Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our ...
Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our ...
Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our ...
Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our ...
Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our ...
Vice President of Cybersecurity
Detroit, MI · Hybrid
$148K - $186K/yr
Oversee enterprise risk management, vulnerability assessments, and continuous monitoring * Partner with legal, compliance, and program leadership to manage cyber risk and regulatory exposure
Vice President of Cybersecurity
Detroit, MI · Hybrid
$148K - $186K/yr
Oversee enterprise risk management, vulnerability assessments, and continuous monitoring * Partner with legal, compliance, and program leadership to manage cyber risk and regulatory exposure
Cyber Risk Management information
See Michigan salary details
$16.81 is the 25th percentile. Wages below this are outliers.
$12.57 - $17.29
28% of jobs
The median wage is $20.12 / hr.
$17.29 - $22.02
37% of jobs
$22.02 - $26.74
6% of jobs
$29.69 is the 75th percentile. Wages above this are outliers.
$26.74 - $31.47
6% of jobs
$31.47 - $36.19
12% of jobs
$36.19 - $40.91
0% of jobs
$40.91 - $45.64
0% of jobs
$45.64 - $50.36
8% of jobs
$50.36 - $55.08
0% of jobs
$55.08 - $59.81
0% of jobs
$59.81 - $64.53
2% of jobs
$12
$26
$64
How much do cyber risk management jobs pay per hour?
What is a Cyber Risk Management job?
A Cyber Risk Management job involves identifying, assessing, and mitigating cybersecurity risks that could impact an organization. Professionals in this field develop risk management frameworks, implement security controls, and ensure compliance with industry regulations. They work closely with IT and business teams to minimize cyber threats, such as data breaches and ransomware attacks. Their goal is to protect sensitive information and maintain business continuity.
Is SOC an entry level job?
What are the key skills and qualifications needed to thrive in the Cyber Risk Management position, and why are they important?
To thrive in Cyber Risk Management, you need a strong understanding of information security principles, risk assessment methodologies, and regulatory compliance, often supported by a degree in cybersecurity, information technology, or a related field. Familiarity with tools such as risk management software, vulnerability assessment platforms, and certifications like CISSP, CISM, or CRISC is highly valued. Excellent analytical thinking, communication, and problem-solving skills help professionals effectively advise stakeholders and coordinate incident response efforts. These skills are crucial for identifying, evaluating, and mitigating cyber risks to safeguard organizational assets and ensure business continuity.
Can you make $500,000 a year in cyber security?
Can you make $200,000 in cyber security?
What are some common challenges faced in a Cyber Risk Management role, and how are they typically addressed?
Professionals in Cyber Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, ensuring compliance with complex regulations, and balancing security needs with business objectives. Addressing these issues requires continuous learning, leveraging up-to-date threat intelligence, and collaborating closely with IT, legal, and management teams to develop effective risk mitigation strategies. Many organizations encourage ongoing training and participation in industry events to stay current, while fostering a culture of open communication to quickly identify and address vulnerabilities. Embracing a proactive and adaptable approach ensures that cyber risks are managed effectively while supporting the organization’s goals.
What does a cyber risk manager do?

Other
Re-posted 15 days ago
Deloitte rating
8.0
Based on 89 frontline employees who took The Breakroom Quiz
71st of 146 rated financial services
Job description
Power and Utilities OT (Operational Technology) - Senior Consultant
Position Summary
Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Cyber team and become a member of the largest group of cybersecurity professionals worldwide.
Recruiting for this role ends on 12/21/2026
Work you'll do
Responsibilities:
- Identify and evaluate complex business and technology risks
- Develop remediation methods to mitigate risks
- Demonstrate problem solving, critical thinking and logical structuring skills
- Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects
- Actively participate in decision making with engagement management and seek to understand the broader impact of current decisions
- Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
- Identify opportunities to improve engagement profitability and manage engagement economics
- Demonstrate ability to with identify and address client needs: building solid relationships with clients; developing an awareness of Firm services; communicating with the client in an organized and knowledgeable manner; delivering clear requests for information; demonstrating flexibility in prioritizing and completing tasks; and communicating potential conflicts to the manager
- Demonstrate a general knowledge of market trends, competitor activities, Deloitte Advisory products and service lines
Required Skills:
- 5+ years of demonstrate advanced understanding and experience governing and implementing power and utility regulations and standards including:
- North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP)
- NERC Operations and Planning (O&P)
- Federal Energy Regulatory Commission
- Transportation Security Administration (TSA) Cybersecurity
- IEC 62443 standard - Securing Industrial Automation and Control Systems (IACS)
- Nuclear Energy Institute (NEI) - NEI 08-09, 10 CFR 73.54
- 5+ years of demonstrate advanced understanding and cyber risk management in at least two of the following areas:
- SCADA with experience in securing ICS (Industrial Control Systems) security
- Internet of Things (IOT) architecture and security
- OT (Operational Technology) security
- NERC CIP-015 - Internal Network Security Monitoring (INMS)
- Embedded systems security
- OT network segmentation (zones/conduits), jump hosts, secure remote access
- Passive OT discovery/asset inventory, OT IDS, SIEM integration/use cases
- Incident response in OT (containment with availability/safety constraints)
- Vendor/OEM risk management, SBOM/patch constraints, compensating controls
- Security experience in the field environment within the Power, Utilities & Renewables, Oil & Gas, or Industrial Products & Construction industry sectors
- 5+ years of demonstrate advanced understanding of business processes and cyber risk management in an OT / SCADA environment in two or more areas such as:
- Cyber security
- Secure Supply Chain
- Security Analytics
- Security Operations Centers
- Vulnerability and Threat Management
- Data Security
- Secure Dev Ops
- Business continuity management
- Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF)
- Limited sponsorship opportunities may be available
Additional Requirements:
- Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
- Locations include: Houston, Dallas, Cleveland, Detroit, St. Louis, Pittsburgh, Boston, Charlotte, Atlanta, Miami, Memphis, Denver, Phoenix, Salt Lake City, Los Angeles, San Diego, San Franciso, Seattle. Must be within a reasonable commute and willing to work part-time in the Deloitte and/or client offices.
Preferred:
- Minimum of 2 years working in an OT environment (e.g. OT security, ICS security, IOT security, SCADA, etc.)
- Minimum 2 years designing security for infrastructure, network and application architectures
- Experience in the Power Utilities & Renewables, Oil & Gas, or Industrial Products & Construction sector
- Demonstrated experience working with cloud platforms (AWS, Azure)
- 5+ years implementing security solutions
- BA/BS in cyber security, information security, engineering, computer science, information technology, information management, information sciences, business administration, or related field preferred
- CISSP, CISM, or CISA certification a plus
- Excellent verbal and written communication
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $105,400 to $207,800.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
#CyberES26
Power and Utilities OT (Operational Technology) - Senior Consultant
Position Summary
Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Cyber team and become a member of the largest group of cybersecurity professionals worldwide.
Recruiting for this role ends on 12/21/2026
Work you'll do
Responsibilities:
- Identify and evaluate complex business and technology risks
- Develop remediation methods to mitigate risks
- Demonstrate problem solving, critical thinking and logical structuring skills
- Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects
- Actively participate in decision making with engagement management and seek to understand the broader impact of current decisions
- Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
- Identify opportunities to improve engagement profitability and manage engagement economics
- Demonstrate ability to with identify and address client needs: building solid relationships with clients; developing an awareness of Firm services; communicating with the client in an organized and knowledgeable manner; delivering clear requests for information; demonstrating flexibility in prioritizing and completing tasks; and communicating potential conflicts to the manager
- Demonstrate a general knowledge of market trends, competitor activities, Deloitte Advisory products and service lines
Required Skills:
- 5+ years of demonstrate advanced understanding and experience governing and implementing power and utility regulations and standards including:
- North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP)
- NERC Operations and Planning (O&P)
- Federal Energy Regulatory Commission
- Transportation Security Administration (TSA) Cybersecurity
- IEC 62443 standard - Securing Industrial Automation and Control Systems (IACS)
- Nuclear Energy Institute (NEI) - NEI 08-09, 10 CFR 73.54
- 5+ years of demonstrate advanced understanding and cyber risk management in at least two of the following areas:
- SCADA with experience in securing ICS (Industrial Control Systems) security
- Internet of Things (IOT) architecture and security
- OT (Operational Technology) security
- NERC CIP-015 - Internal Network Security Monitoring (INMS)
- Embedded systems security
- OT network segmentation (zones/conduits), jump hosts, secure remote access
- Passive OT discovery/asset inventory, OT IDS, SIEM integration/use cases
- Incident response in OT (containment with availability/safety constraints)
- Vendor/OEM risk management, SBOM/patch constraints, compensating controls
- Security experience in the field environment within the Power, Utilities & Renewables, Oil & Gas, or Industrial Products & Construction industry sectors
- 5+ years of demonstrate advanced understanding of business processes and cyber risk management in an OT / SCADA environment in two or more areas such as:
- Cyber security
- Secure Supply Chain
- Security Analytics
- Security Operations Centers
- Vulnerability and Threat Management
- Data Security
- Secure Dev Ops
- Business continuity management
- Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF)
- Limited sponsorship opportunities may be available
Additional Requirements:
- Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
- Locations include: Houston, Dallas, Cleveland, Detroit, St. Louis, Pittsburgh, Boston, Charlotte, Atlanta, Miami, Memphis, Denver, Phoenix, Salt Lake City, Los Angeles, San Diego, San Franciso, Seattle. Must be within a reasonable commute and willing to work part-time in the Deloitte and/or client offices.
Preferred:
- Minimum of 2 years working in an OT environment (e.g. OT security, ICS security, IOT security, SCADA, etc.)
- Minimum 2 years designing security for infrastructure, network and application architectures
- Experience in the Power Utilities & Renewables, Oil & Gas, or Industrial Products & Construction sector
- Demonstrated experience working with cloud platforms (AWS, Azure)
- 5+ years implementing security solutions
- BA/BS in cyber security, information security, engineering, computer science, information technology, information management, information sciences, business administration, or related field preferred
- CISSP, CISM, or CISA certification a plus
- Excellent verbal and written communication
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $105,400 to $207,800.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
#CyberES26