1

Cyber Risk Manager Jobs in Connecticut (NOW HIRING)

Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident Response * Security Architecture * Business Partnership Qualifications Required: * Bachelor's degree or ...

Work you'll do As a Manager, Strategy, Growth, and Transformation on the Cyber Strategy ... Includes design of the cyber organization, governance, and risk assessments. Qualifications ...

Cyber Data Protection/PKI Manager

Hartford, CT · On-site

$112K - $151K/yr

Work you'll do As a Manager, Strategy, Growth, and Transformation on the Cyber Strategy ... Includes design of the cyber organization, governance, and risk assessments. Qualifications ...

AI Security Engineer Senior Manager

Hartford, CT · On-site

$115K - $158K/yr

Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident ... Response * Security Architecture * Business Partnership Qualifications Required: * Bachelor ...

New

next page

Showing results 1-20

Cyber Risk Manager information

See Connecticut salary details

$49K

$106.1K

$161.7K

How much do cyber risk manager jobs pay per year?

As of Jul 13, 2026, the average yearly pay for cyber risk manager in Connecticut is $106,122.00, according to ZipRecruiter salary data. Most workers in this role earn between $85,600.00 and $122,700.00 per year, depending on experience, location, and employer.

How does a Cyber Risk Manager typically collaborate with other departments to strengthen an organization's cybersecurity posture?

A Cyber Risk Manager frequently works with IT, legal, compliance, and business units to identify, assess, and mitigate cyber risks across the organization. This collaboration involves leading risk assessments, facilitating security awareness training, and ensuring that cybersecurity policies align with business objectives. Regular cross-department meetings and incident response simulations are common, fostering a shared responsibility for cyber resilience. Effective communication and relationship-building skills are essential in this role to bridge technical and non-technical teams.

What is the difference between Cyber Risk Manager vs Cybersecurity Analyst?

AspectCyber Risk ManagerCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CISSP, CEH
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability testing
Employer & Industry UsageFinancial, healthcare, large enterprisesIT departments, security firms, corporate environments

The Cyber Risk Manager focuses on identifying, assessing, and mitigating organizational cyber risks through strategic planning and policy development. In contrast, the Cybersecurity Analyst primarily monitors security systems, responds to incidents, and tests vulnerabilities. Both roles require certifications like CISSP, but their daily tasks and focus areas differ significantly, with the manager taking a broader, strategic approach and the analyst handling operational security tasks.

What are the key skills and qualifications needed to thrive as a Cyber Risk Manager, and why are they important?

To thrive as a Cyber Risk Manager, you need a solid background in information security, risk assessment, and compliance, often supported by a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), GRC tools, and relevant certifications like CISSP or CISM is typically required. Excellent analytical thinking, communication, and leadership skills set top performers apart in this role. These skills are crucial for identifying risks, implementing effective controls, and ensuring the organization’s digital assets remain secure and compliant.

Can you make $200,000 in cyber security?

Cyber Risk Managers and senior cybersecurity professionals can earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and in high-demand industries or locations. Salary levels depend on factors such as expertise, certifications, industry, and geographic region, with leadership roles and specialized skills commanding higher compensation.

Can you make $500,000 a year in cyber security?

Cyber Risk Managers and senior cybersecurity professionals can potentially earn $500,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and leadership roles such as Chief Information Security Officer. High salaries are often associated with large organizations, specialized skills, and strategic responsibilities in cybersecurity management.

What does a cyber risk manager do?

A cyber risk manager assesses and mitigates cybersecurity threats to an organization’s information systems. They develop risk management strategies, implement security policies, and often use tools like risk assessment frameworks and security audits to protect digital assets. Certification such as CISSP or CISM can enhance their effectiveness in this role.

Is a CISO a stressful job?

A Chief Information Security Officer (CISO) role is often considered high-stress due to the responsibility for an organization's cybersecurity strategy, risk management, and incident response. The job requires managing complex threats, compliance requirements, and often involves long hours, especially during security breaches or audits.
What job categories do people searching Cyber Risk Manager jobs in Connecticut look for? The top searched job categories for Cyber Risk Manager jobs in Connecticut are:
What cities in Connecticut are hiring for Cyber Risk Manager jobs? Cities in Connecticut with the most Cyber Risk Manager job openings:
Infographic showing various Cyber Risk Manager job openings in Connecticut as of July 2026, with employment types broken down into 87% Full Time, and 13% Contract. Highlights an 100% In-person job distribution, with an average salary of $106,122 per year, or $51 per hour.
Power and Utilities OT Operational Technology-Manager

Power and Utilities OT Operational Technology-Manager

Deloitte

Stamford, CT • On-site

Other

Re-posted 18 days ago


Deloitte rating

8.1

Company rating: 8.1 out of 10

Based on 90 frontline employees who took The Breakroom Quiz

60th of 148 rated financial services


Job description

Power and Utilities OT (Operational Technology) - Manager

Position Summary

Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities?  If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Cyber team and become a member of the largest group of cybersecurity professionals worldwide.

Recruiting for this role ends on 12/21/2026

Work you'll do

Responsibilities:

  • Identify and evaluate complex business and technology risks
  • Develop remediation methods to mitigate risks
  • Demonstrate problem solving, critical thinking and logical structuring skills
  • Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects
  • Actively participate in decision making with engagement management and seek to understand the broader impact of current decisions
  • Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
  • Identify opportunities to improve engagement profitability and manage engagement economics
  • Demonstrate ability to with identify and address client needs: building solid relationships with clients; developing an awareness of Firm services; communicating with the client in an organized and knowledgeable manner; delivering clear requests for information; demonstrating flexibility in prioritizing and completing tasks; and communicating potential conflicts to the manager
  • Demonstrate a general knowledge of market trends, competitor activities, Deloitte Advisory products and service lines

Required Skills:

  • 7+ years of demonstrate advanced understanding and experience governing and implementing power and utility regulations and standards including:
    • North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP)
    • NERC Operations and Planning (O&P)
    • Federal Energy Regulatory Commission
    • Transportation Security Administration (TSA) Cybersecurity
    • IEC 62443 standard - Securing Industrial Automation and Control Systems (IACS)
    • Nuclear Energy Institute (NEI) - NEI 08-09, 10 CFR 73.54
  • 7+ years of demonstrate advanced understanding and cyber risk management in at least two of the following areas:
    • SCADA with experience in securing ICS (Industrial Control Systems) security
    • Internet of Things (IOT) architecture and security
    • OT (Operational Technology) security
    • NERC CIP-015 - Internal Network Security Monitoring (INMS)
    • Embedded systems security
    • OT network segmentation (zones/conduits), jump hosts, secure remote access
    • Passive OT discovery/asset inventory, OT IDS, SIEM integration/use cases
    • Incident response in OT (containment with availability/safety constraints)
    • Vendor/OEM risk management, SBOM/patch constraints, compensating controls
    • Security experience in the field environment within the Power, Utilities & Renewables, Oil & Gas, or Industrial Products & Construction industry sectors
  • 7+ years of demonstrate advanced understanding of business processes and cyber risk management in an OT / SCADA environment in two or more areas such as:
    • Cyber security
    • Secure Supply Chain
    • Security Analytics
    • Security Operations Centers
    • Vulnerability and Threat Management
    • Data Security
    • Secure Dev Ops
    • Business continuity management
    • Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF)
  • Limited sponsorship opportunities may be available

Additional Requirements:

  • Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
  • Locations include: Houston, Dallas, Cleveland, Detroit, St. Louis, Pittsburgh, Boston, Charlotte, Atlanta, Miami, Memphis, Denver, Phoenix, Salt Lake City, Los Angeles, San Diego, San Franciso, Seattle.  Must be within a reasonable commute and willing to work part-time in the Deloitte and/or client offices.

Preferred:

  • Minimum of 4 years working in an OT environment (e.g. OT security, ICS security, IOT security, SCADA, etc.)
  • Minimum 4 years designing security for infrastructure, network and application architectures
  • Experience in the Power Utilities & Renewables, Oil & Gas, or Industrial Products & Construction sector
  • Demonstrated experience working with cloud platforms (AWS, Azure)
  • 5+ years implementing security solutions
  • BA/BS in cyber security, information security, engineering, computer science, information technology, information management, information sciences, business administration, or related field preferred
  • CISSP, CISM, or CISA certification a plus
  • Excellent verbal and written communication
Information for applicants with a need for accommodation: https://www2.deloitte.com/us/en/pages/careers/articles/join-deloitte-assistance-for-disabled-applicants.html

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $134,500 to $265,100.

You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.

#CyberES26


Qualifications:

Power and Utilities OT (Operational Technology) - Manager

Position Summary

Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities?  If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Cyber team and become a member of the largest group of cybersecurity professionals worldwide.

Recruiting for this role ends on 12/21/2026

Work you'll do

Responsibilities:

  • Identify and evaluate complex business and technology risks
  • Develop remediation methods to mitigate risks
  • Demonstrate problem solving, critical thinking and logical structuring skills
  • Assist in the selection and tailoring of approaches, methods and tools to support service offering or industry projects
  • Actively participate in decision making with engagement management and seek to understand the broader impact of current decisions
  • Facilitate use of technology-based tools or methodologies to review, design and/or implement products and services
  • Identify opportunities to improve engagement profitability and manage engagement economics
  • Demonstrate ability to with identify and address client needs: building solid relationships with clients; developing an awareness of Firm services; communicating with the client in an organized and knowledgeable manner; delivering clear requests for information; demonstrating flexibility in prioritizing and completing tasks; and communicating potential conflicts to the manager
  • Demonstrate a general knowledge of market trends, competitor activities, Deloitte Advisory products and service lines

Required Skills:

  • 7+ years of demonstrate advanced understanding and experience governing and implementing power and utility regulations and standards including:
    • North American Electric Reliability Corporation (NERC) Critical Infrastructure Protection (CIP)
    • NERC Operations and Planning (O&P)
    • Federal Energy Regulatory Commission
    • Transportation Security Administration (TSA) Cybersecurity
    • IEC 62443 standard - Securing Industrial Automation and Control Systems (IACS)
    • Nuclear Energy Institute (NEI) - NEI 08-09, 10 CFR 73.54
  • 7+ years of demonstrate advanced understanding and cyber risk management in at least two of the following areas:
    • SCADA with experience in securing ICS (Industrial Control Systems) security
    • Internet of Things (IOT) architecture and security
    • OT (Operational Technology) security
    • NERC CIP-015 - Internal Network Security Monitoring (INMS)
    • Embedded systems security
    • OT network segmentation (zones/conduits), jump hosts, secure remote access
    • Passive OT discovery/asset inventory, OT IDS, SIEM integration/use cases
    • Incident response in OT (containment with availability/safety constraints)
    • Vendor/OEM risk management, SBOM/patch constraints, compensating controls
    • Security experience in the field environment within the Power, Utilities & Renewables, Oil & Gas, or Industrial Products & Construction industry sectors
  • 7+ years of demonstrate advanced understanding of business processes and cyber risk management in an OT / SCADA environment in two or more areas such as:
    • Cyber security
    • Secure Supply Chain
    • Security Analytics
    • Security Operations Centers
    • Vulnerability and Threat Management
    • Data Security
    • Secure Dev Ops
    • Business continuity management
    • Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF)
  • Limited sponsorship opportunities may be available

Additional Requirements:

  • Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
  • Locations include: Houston, Dallas, Cleveland, Detroit, St. Louis, Pittsburgh, Boston, Charlotte, Atlanta, Miami, Memphis, Denver, Phoenix, Salt Lake City, Los Angeles, San Diego, San Franciso, Seattle.  Must be within a reasonable commute and willing to work part-time in the Deloitte and/or client offices.

Preferred:

  • Minimum of 4 years working in an OT environment (e.g. OT security, ICS security, IOT security, SCADA, etc.)
  • Minimum 4 years designing security for infrastructure, network and application architectures
  • Experience in the Power Utilities & Renewables, Oil & Gas, or Industrial Products & Construction sector
  • Demonstrated experience working with cloud platforms (AWS, Azure)
  • 5+ years implementing security solutions
  • BA/BS in cyber security, information security, engineering, computer science, information technology, information management, information sciences, business administration, or related field preferred
  • CISSP, CISM, or CISA certification a plus
  • Excellent verbal and written communication
Information for applicants with a need for accommodation: https://www2.deloitte.com/us/en/pages/careers/articles/join-deloitte-assistance-for-disabled-applicants.html

The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $134,500 to $265,100.

You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.

#CyberES26


Education:Bachelor's DegreeEmployment Type:

What Deloitte employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom