Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat Detection * Incident Response * Security Architecture * Business Partnership Qualifications Required:
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat Detection * Incident Response * Security Architecture * Business Partnership Qualifications Required:
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Consultant Cyber Engineering
Midland, MI · On-site
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident Response * Security Architecture * Business Partnership Qualifications Required: * Bachelor's degree or ...
Consultant Cyber Engineering
Midland, MI · On-site
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident Response * Security Architecture * Business Partnership Qualifications Required: * Bachelor's degree or ...
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat Detection * Incident Response * Security Architecture * Business Partnership Qualifications Required:
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat Detection * Incident Response * Security Architecture * Business Partnership Qualifications Required:
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat Detection * Incident Response * Security Architecture * Business Partnership Qualifications Required:
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat Detection * Incident Response * Security Architecture * Business Partnership Qualifications Required:
Cloud Security Senior Consultant - M365
Detroit, MI · On-site
$58 - $79/hr
Acting as a subject matter expert on cloud cyber risk for Microsoft Purview, Microsoft Intune ... Through powerful solutions and managed services that simplify complexity, we enable our clients to ...
Cloud Security Senior Consultant - M365
Detroit, MI · On-site
$58 - $79/hr
Acting as a subject matter expert on cloud cyber risk for Microsoft Purview, Microsoft Intune ... Through powerful solutions and managed services that simplify complexity, we enable our clients to ...
Cloud Security Senior Consultant - M365
Grand Rapids, MI · On-site
$56.25 - $76.50/hr
Acting as a subject matter expert on cloud cyber risk for Microsoft Purview, Microsoft Intune ... Through powerful solutions and managed services that simplify complexity, we enable our clients to ...
Cloud Security Senior Consultant - M365
Grand Rapids, MI · On-site
$56.25 - $76.50/hr
Acting as a subject matter expert on cloud cyber risk for Microsoft Purview, Microsoft Intune ... Through powerful solutions and managed services that simplify complexity, we enable our clients to ...
Safety Cyber Manager
Auburn Hills, MI · On-site
$109K - $148K/yr
Safety Cyber Manager Location: Onsite. Auburn Hills, MI Role Purpose The Safety Cyber Manager ... Conduct Threat Analysis and Risk Assessment (TARA) and hazard analysis and evaluations (HARA ...
Safety Cyber Manager
Auburn Hills, MI · On-site
$109K - $148K/yr
Safety Cyber Manager Location: Onsite. Auburn Hills, MI Role Purpose The Safety Cyber Manager ... Conduct Threat Analysis and Risk Assessment (TARA) and hazard analysis and evaluations (HARA ...
TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Required ... Cloud Security - DevSecOps Manager Position Summary Are you interested in working in a dynamic ...
TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Required ... Cloud Security - DevSecOps Manager Position Summary Are you interested in working in a dynamic ...
Cyber Network Security Architecture - Senior Manager
Detroit, MI · On-site
$109K - $148K/yr
... cyber risk programs * 4+ years of experience managing teams and delivering workstreams in a client service environment * 3+ years of experience serving in a leadership capacity over the ...
Cyber Network Security Architecture - Senior Manager
Detroit, MI · On-site
$109K - $148K/yr
... cyber risk programs * 4+ years of experience managing teams and delivering workstreams in a client service environment * 3+ years of experience serving in a leadership capacity over the ...
Vice President of Cybersecurity
Detroit, MI · Hybrid
$148K - $186K/yr
Oversee enterprise risk management, vulnerability assessments, and continuous monitoring * Partner with legal, compliance, and program leadership to manage cyber risk and regulatory exposure
Vice President of Cybersecurity
Detroit, MI · Hybrid
$148K - $186K/yr
Oversee enterprise risk management, vulnerability assessments, and continuous monitoring * Partner with legal, compliance, and program leadership to manage cyber risk and regulatory exposure
Vice President of Cybersecurity
Detroit, MI · On-site
$155K - $194K/yr
... to manage cyber risk and regulatory exposure • Oversee secure architecture across cloud, on-premises, and hybrid environments • Champion zero-trust, secure-by-design, and defense-in-depth ...
Vice President of Cybersecurity
Detroit, MI · On-site
$155K - $194K/yr
... to manage cyber risk and regulatory exposure • Oversee secure architecture across cloud, on-premises, and hybrid environments • Champion zero-trust, secure-by-design, and defense-in-depth ...
... risk management, engineering, or another business or technology discipline; or equivalent work ... Join Deloitte's Cyber team to help clients address complex cybersecurity challenges with confidence.
... risk management, engineering, or another business or technology discipline; or equivalent work ... Join Deloitte's Cyber team to help clients address complex cybersecurity challenges with confidence.
Cyber Cloud Sales Engineer
Detroit, MI · On-site
... risk management, engineering, or another business or technology discipline; or equivalent work ... Join Deloitte's Cyber team to help clients address complex cybersecurity challenges with confidence.
Cyber Cloud Sales Engineer
Detroit, MI · On-site
... risk management, engineering, or another business or technology discipline; or equivalent work ... Join Deloitte's Cyber team to help clients address complex cybersecurity challenges with confidence.
Through powerful solutions and managed services that simplify complexity, we enable our clients to ... Includes design of the cyber organization, governance, and risk assessments. Qualifications ...
Through powerful solutions and managed services that simplify complexity, we enable our clients to ... Includes design of the cyber organization, governance, and risk assessments. Qualifications ...
Own the third-party risk framework and partner across Procurement, Finance, Legal, Cyber, Risk, and Technology to strengthen vendor governance, manage risk, and inform long-term investment decisions.
Own the third-party risk framework and partner across Procurement, Finance, Legal, Cyber, Risk, and Technology to strengthen vendor governance, manage risk, and inform long-term investment decisions.
Help clients reduce cyber risk by leading forward deployed engineering work focused on patching ... In this role, you'll lead teams, manage delivery, and help clients translate vulnerability data ...
Help clients reduce cyber risk by leading forward deployed engineering work focused on patching ... In this role, you'll lead teams, manage delivery, and help clients translate vulnerability data ...
Help clients reduce cyber risk by leading forward deployed engineering work focused on patching ... In this role, you'll lead teams, manage delivery, and help clients translate vulnerability data ...
Help clients reduce cyber risk by leading forward deployed engineering work focused on patching ... In this role, you'll lead teams, manage delivery, and help clients translate vulnerability data ...
Utilizing cyber risk quantification to reduce uncertainty around cyber risk and improve executive ... Managing cybersecurity risk arising from third parties and the supply chain. * Designing ...
Utilizing cyber risk quantification to reduce uncertainty around cyber risk and improve executive ... Managing cybersecurity risk arising from third parties and the supply chain. * Designing ...
Cyber Risk Manager information
See Michigan salary details
$44.9K - $54.3K
4% of jobs
$54.3K - $63.7K
6% of jobs
$63.7K - $73.1K
11% of jobs
$76.6K is the 25th percentile. Wages below this are outliers.
$73.1K - $82.4K
11% of jobs
The median wage is $89.9K / yr.
$82.4K - $91.8K
23% of jobs
$91.8K - $101.2K
13% of jobs
$107.4K is the 75th percentile. Wages above this are outliers.
$101.2K - $110.6K
12% of jobs
$110.6K - $120K
8% of jobs
$120K - $129.4K
6% of jobs
$129.4K - $138.8K
4% of jobs
$138.8K - $148.2K
2% of jobs
$44.9K
$97.2K
$148.2K
How much do cyber risk manager jobs pay per year?
How does a Cyber Risk Manager typically collaborate with other departments to strengthen an organization's cybersecurity posture?
What is the difference between Cyber Risk Manager vs Cybersecurity Analyst?
| Aspect | Cyber Risk Manager | Cybersecurity Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CISSP, CEH |
| Work Environment | Risk assessment, policy development, strategic planning | Monitoring security systems, incident response, vulnerability testing |
| Employer & Industry Usage | Financial, healthcare, large enterprises | IT departments, security firms, corporate environments |
The Cyber Risk Manager focuses on identifying, assessing, and mitigating organizational cyber risks through strategic planning and policy development. In contrast, the Cybersecurity Analyst primarily monitors security systems, responds to incidents, and tests vulnerabilities. Both roles require certifications like CISSP, but their daily tasks and focus areas differ significantly, with the manager taking a broader, strategic approach and the analyst handling operational security tasks.
What are the key skills and qualifications needed to thrive as a Cyber Risk Manager, and why are they important?
Can you make $200,000 in cyber security?
Can you make $500,000 a year in cyber security?
What does a cyber risk manager do?
Is a CISO a stressful job?

Deloitte rating
8.0
Based on 89 frontline employees who took The Breakroom Quiz
71st of 146 rated financial services
Job description
Are you passionate about technology and interested in joining a community of collaborative colleagues who respectfully and courageously seek to challenge the status quo? If so, read on to learn more about an exciting opportunity with Deloitte Technology US (DT - US). We are curious and life-long learners focused on technology and innovation.
Recruiting for this role ends on 7/15/2026.
Work you'll do
The position supports the SOC as an escalation point identifying and addressing potential SIEM content/level I and II engineering security concerns as this role is the first line of operational support. This role is also responsible for supporting Security application patching, content creation as requested from all stake holders, and development of process documentation.
Responsibilities by category:
Administrative
- Maintain ticket management and DevOps activity tracking to ensure accurate work intake, prioritization, and status reporting.
- Monitor and communicate Microsoft product updates; assess and advise on impacts on the environment and customers.
- Build strong stakeholder relationships and provide timely end-user support with clear follow-through and resolution documentation.
- Create and maintain process documentation (runbooks, SOPs, workflows) to support consistent execution and knowledge transfer.
- Maintain and enforce change control and peer review processes to promote quality, security, and auditability.
Threat Detection
- Threat detection development in Microsoft Sentinel and Defender platforms sing KQL.
- Align detection rules to current and emerging threats, leveraging external threat intelligence as appropriate.
- Identify and remediate detection gaps using the MITRE ATT&CK framework, based on business risk and priorities.
- Collaborate with Cybersecurity teams (e.g., Incident Response, Threat Intelligence, Engineering) to ensure cross-team alignment and coverage.
- Develop, tune, and support analytics/detection rules, including performance monitoring and optimization.
- Develop, maintain, and optimize playbooks/notebooks, including operational reliability and performance.
- Develop, maintain, and optimize Logic Apps, including operational reliability and performance.
- Develop, maintain, and optimize workbooks and dashboards to support detection engineering and SOC visibility.
- Support reporting needs tied to threat detection outcomes, metrics, and operational insights.
- Define and document required fields per data source to enable effective detection and investigation.
- Identify and remediate high-cost/expensive detections to improve signal-to-noise ratio and manage platform consumption.
Automation
- Design, build, and support automation solutions that improve efficiency, consistency, and time-to-response across security operations.
SOC Support & Collaboration
- Maintain strong SOC partnerships and provide support for SOC inquiries related to the Azure and Microsoft Defender portals, including troubleshooting and operational guidance.
The successful candidate would possess these skills
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to provide clear guidance to others
The team
Deloitte Technology US (DT - US) helps power Deloitte's success, which serves many of the world's largest, most respected organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.
The ~3,000 professionals in DT - US deliver services including:
- Cyber Security
- Technology Support
- Technology & Infrastructure
- Applications
- Relationship Management
- Strategy & Communications
- Project Management
- Financials
Cyber Security
Cyber Security vigilantly protects Deloitte and client data. The team leads a strategic cyber risk program that adapts to a rapidly changing threat landscape, changes in business strategies, risks, and vulnerabilities. Using situational awareness, threat intelligence, and building a security culture across the organization, the team helps to protect the Deloitte brand.
Areas of focus include:
- Risk & Compliance
- Identity & Access Management
- Data Protection
- Cyber Design
- Threat Detection
- Incident Response
- Security Architecture
- Business Partnership
Qualifications
Required:
- Bachelor's degree or equivalent in Computer Science, Computer Engineering, Business Administration.
- Minimum 8 years of various technology experience.
- Minimum 3 years' cyber security experience within SIEM Administration.
- Hands-on experience with Microsoft Sentinel, including building and tuning analytics rules, hunting queries, workbooks, automation, and managing the SIEM data model and workspace.
- Strong KQL proficiency for threat hunting, detection logic, investigation, and telemetry analysis.
Preferred:
- MS Sentinel SC-200 badge
- SOAR and automation experience, especially with Azure Logic Apps, playbooks, and integrations with ITSM or third-party APIs.
- Cloud Fundamental Certificates.
- Ability to communicate network security issues to peers and lower management.
- Hands-on experience with Linux, working knowledge of multiple Cloud environments, Azure O365, and SOC processes.
- An understanding of possible attack activities such as network probing/ scanning, DDOS, malicious code activity and possible abnormal activities, such as worms, Trojans, viruses, etc.
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $97,600 to $200,600.
You may also be eligible to participate in a discretionary annual incentive program, subject to the rules governing the program, whereby an award, if any, depends on various factors, including, without limitation, individual and organizational performance.
EA_ExpHire
RITM10703562
Qualifications:Are you passionate about technology and interested in joining a community of collaborative colleagues who respectfully and courageously seek to challenge the status quo? If so, read on to learn more about an exciting opportunity with Deloitte Technology US (DT - US). We are curious and life-long learners focused on technology and innovation.
Recruiting for this role ends on 7/15/2026.
Work you'll do
The position supports the SOC as an escalation point identifying and addressing potential SIEM content/level I and II engineering security concerns as this role is the first line of operational support. This role is also responsible for supporting Security application patching, content creation as requested from all stake holders, and development of process documentation.
Responsibilities by category:
Administrative
- Maintain ticket management and DevOps activity tracking to ensure accurate work intake, prioritization, and status reporting.
- Monitor and communicate Microsoft product updates; assess and advise on impacts on the environment and customers.
- Build strong stakeholder relationships and provide timely end-user support with clear follow-through and resolution documentation.
- Create and maintain process documentation (runbooks, SOPs, workflows) to support consistent execution and knowledge transfer.
- Maintain and enforce change control and peer review processes to promote quality, security, and auditability.
Threat Detection
- Threat detection development in Microsoft Sentinel and Defender platforms sing KQL.
- Align detection rules to current and emerging threats, leveraging external threat intelligence as appropriate.
- Identify and remediate detection gaps using the MITRE ATT&CK framework, based on business risk and priorities.
- Collaborate with Cybersecurity teams (e.g., Incident Response, Threat Intelligence, Engineering) to ensure cross-team alignment and coverage.
- Develop, tune, and support analytics/detection rules, including performance monitoring and optimization.
- Develop, maintain, and optimize playbooks/notebooks, including operational reliability and performance.
- Develop, maintain, and optimize Logic Apps, including operational reliability and performance.
- Develop, maintain, and optimize workbooks and dashboards to support detection engineering and SOC visibility.
- Support reporting needs tied to threat detection outcomes, metrics, and operational insights.
- Define and document required fields per data source to enable effective detection and investigation.
- Identify and remediate high-cost/expensive detections to improve signal-to-noise ratio and manage platform consumption.
Automation
- Design, build, and support automation solutions that improve efficiency, consistency, and time-to-response across security operations.
SOC Support & Collaboration
- Maintain strong SOC partnerships and provide support for SOC inquiries related to the Azure and Microsoft Defender portals, including troubleshooting and operational guidance.
The successful candidate would possess these skills
- Ability to work independently and collaborate as part of a team
- Effective written and verbal communication skills
- Meticulous attention to detail and quality of work product
- Ability to build and sustain professional relationships
- Ability to lead projects or workstreams
- Ability to manage and prioritize multiple tasks in a fast-paced and dynamic environment
- Strong interpersonal skills and professional demeanor
- Ability to meet deadlines
- Ability to provide clear guidance to others
The team
Deloitte Technology US (DT - US) helps power Deloitte's success, which serves many of the world's largest, most respected organizations. We develop and deploy cutting-edge internal and go-to-market solutions that help Deloitte operate effectively and lead in the market. Our reputation is built on a tradition of delivering with excellence.
The ~3,000 professionals in DT - US deliver services including:
- Cyber Security
- Technology Support
- Technology & Infrastructure
- Applications
- Relationship Management
- Strategy & Communications
- Project Management
- Financials
Cyber Security
Cyber Security vigilantly protects Deloitte and client data. The team leads a strategic cyber risk program that adapts to a rapidly changing threat landscape, changes in business strategies, risks, and vulnerabilities. Using situational awareness, threat intelligence, and building a security culture across the organization, the team helps to protect the Deloitte brand.
Areas of focus include:
- Risk & Compliance
- Identity & Access Management
- Data Protection
- Cyber Design
- Threat Detection
- Incident Response
- Security Architecture
- Business Partnership
Qualifications
Required:
- Bachelor's degree or equivalent in Computer Science, Computer Engineering, Business Administration.
- Minimum 8 years of various technology experience.
- Minimum 3 years' cyber security experience within SIEM Administration.
- Hands-on experience with Microsoft Sentinel, including building and tuning analytics rules, hunting queries, workbooks, automation, and managing the SIEM data model and workspace.
- Strong KQL proficiency for threat hunting, detection logic, investigation, and telemetry analysis.
Preferred:
- MS Sentinel SC-200 badge
- SOAR and automation experience, especially with Azure Logic Apps, playbooks, and integrations with ITSM or third-party APIs.
- Cloud Fundamental Certificates.
- Ability to communicate network security issues to peers and lower management.
- Hands-on experience with Linux, working knowledge of multiple Cloud environments, Azure O365, and SOC processes.
- An understanding of possible attack activities such as network probing/ scanning, DDOS, malicious code activity and possible abnormal activities, such as worms, Trojans, viruses, etc.
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $97,600 to $200,600.
You may also be eligible to participate in a discretionary annual incentive...