1

Cyber Risk Manager Jobs in Pennsylvania (NOW HIRING)

Understanding of risk management principles and their application to cybersecurity. * Experience performing cyber risk analysis, risk quantification, or security measurement. * Expertise in one or ...

Within TRM, the global Identity, Directory & Access Management (IDAM) organization ensures that the right people have the right access to the right information. The Cyber Risk Analyst is responsible ...

The Zoetis Tech & Digital (ZTD) Global Technology Risk Management (TRM) Organizationis responsible ... Experience: * 5+ years of hands-on experience in vulnerability management, cyber risk, or related ...

Risk Manager

Media, PA

$75K - $98K/yr

The Risk Manager ensures compliance with applicable federal, Commonwealth of Pennsylvania, and ... compensation, cyber, and other applicable coverages. Serve as liaison with insurance carriers ...

Risk Manager

Media, PA · On-site

$75K - $98K/yr

The Risk Manager ensures compliance with applicable federal, Commonwealth of Pennsylvania, and ... cyber, and other applicable coverages. * Serve as liaison with insurance carriers, brokers, and ...

Experience selling into or supporting GRC, security compliance, cyber risk, or security reporting ... , vulnerability, cloud, ITSM, HR/org data). * Excellent communication and PoV/architectural ...

... risk or their cyber insurancepolicy services * Workwith clients both internally and externally to ... management, patch management, user access controls, endpoint security and incident response

next page

Showing results 1-20

Cyber Risk Manager information

See Pennsylvania salary details

$51.6K

$111.8K

$170.4K

How much do cyber risk manager jobs pay per year?

As of Jul 14, 2026, the average yearly pay for cyber risk manager in Pennsylvania is $111,824.00, according to ZipRecruiter salary data. Most workers in this role earn between $90,200.00 and $129,300.00 per year, depending on experience, location, and employer.

How does a Cyber Risk Manager typically collaborate with other departments to strengthen an organization's cybersecurity posture?

A Cyber Risk Manager frequently works with IT, legal, compliance, and business units to identify, assess, and mitigate cyber risks across the organization. This collaboration involves leading risk assessments, facilitating security awareness training, and ensuring that cybersecurity policies align with business objectives. Regular cross-department meetings and incident response simulations are common, fostering a shared responsibility for cyber resilience. Effective communication and relationship-building skills are essential in this role to bridge technical and non-technical teams.

What is the difference between Cyber Risk Manager vs Cybersecurity Analyst?

AspectCyber Risk ManagerCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CISSP, CEH
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability testing
Employer & Industry UsageFinancial, healthcare, large enterprisesIT departments, security firms, corporate environments

The Cyber Risk Manager focuses on identifying, assessing, and mitigating organizational cyber risks through strategic planning and policy development. In contrast, the Cybersecurity Analyst primarily monitors security systems, responds to incidents, and tests vulnerabilities. Both roles require certifications like CISSP, but their daily tasks and focus areas differ significantly, with the manager taking a broader, strategic approach and the analyst handling operational security tasks.

What are the key skills and qualifications needed to thrive as a Cyber Risk Manager, and why are they important?

To thrive as a Cyber Risk Manager, you need a solid background in information security, risk assessment, and compliance, often supported by a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), GRC tools, and relevant certifications like CISSP or CISM is typically required. Excellent analytical thinking, communication, and leadership skills set top performers apart in this role. These skills are crucial for identifying risks, implementing effective controls, and ensuring the organization’s digital assets remain secure and compliant.

Can you make $200,000 in cyber security?

Cyber Risk Managers and senior cybersecurity professionals can earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and in high-demand industries or locations. Salary levels depend on factors such as expertise, certifications, industry, and geographic region, with leadership roles and specialized skills commanding higher compensation.

Can you make $500,000 a year in cyber security?

Cyber Risk Managers and senior cybersecurity professionals can potentially earn $500,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and leadership roles such as Chief Information Security Officer. High salaries are often associated with large organizations, specialized skills, and strategic responsibilities in cybersecurity management.

What does a cyber risk manager do?

A cyber risk manager assesses and mitigates cybersecurity threats to an organization’s information systems. They develop risk management strategies, implement security policies, and often use tools like risk assessment frameworks and security audits to protect digital assets. Certification such as CISSP or CISM can enhance their effectiveness in this role.

Is a CISO a stressful job?

A Chief Information Security Officer (CISO) role is often considered high-stress due to the responsibility for an organization's cybersecurity strategy, risk management, and incident response. The job requires managing complex threats, compliance requirements, and often involves long hours, especially during security breaches or audits.
What are popular job titles related to Cyber Risk Manager jobs in Pennsylvania? For Cyber Risk Manager jobs in Pennsylvania, the most frequently searched job titles are:
What job categories do people searching Cyber Risk Manager jobs in Pennsylvania look for? The top searched job categories for Cyber Risk Manager jobs in Pennsylvania are:
What cities in Pennsylvania are hiring for Cyber Risk Manager jobs? Cities in Pennsylvania with the most Cyber Risk Manager job openings:
Infographic showing various Cyber Risk Manager job openings in Pennsylvania as of July 2026, with employment types broken down into 86% Full Time, and 14% Contract. Highlights an 100% In-person job distribution, with an average salary of $111,824 per year, or $53.8 per hour.
Technical Manager - Cyber Risk Management

Technical Manager - Cyber Risk Management

Cmu

Pittsburgh, PA

Full-time

Re-posted 11 days ago


Job description

The SEI CERT Cyber Risk and Resilience Directorate, enables organizations to achieve operational resilience by performing research in emerging areas of operational risk, producing measurement and assessment tools that help organizations better understand their current risk and resilience posture, and developing and validating models, frameworks, and tools to drive quantifiable risk reduction. Our Cyber Risk Management team focuses on designing, prototyping, transitioning risk management novel methods. We support partners in government and industry in achieving cyber-dependent missions. .


Job Description Summary

The individual in this position will work as a technical manager of the Cyber Risk Management (CRM) Team within CERT's Cyber Risk & Resilience Directorate. This candidate will be responsible for the creation, development and management of a sustained applied research and technical agenda for Risk & Resilience CRM Team consistent with and directly supporting the US Department of War's strategic challenges and emerging threats. The technical manager is responsible for developing and communicating technical vision, developing tasking, creating project work statements, developing and managing project plans, managing initiative finances and accounting, generating new work and customers, working with business development staff, executing work with high degree of customer satisfaction, and supervising staff.

The successful candidate must have proven experience conducting and leading technical efforts in support of the US Federal Government (USG) and Department of War (DOW); managing technical teams; be self-directed, have a track record of creating interdisciplinary approaches to problem solving, and demonstrate exceptionally strong presentation and writing skills. The candidate must also be able to interact with clients and staff of all levels in a highly professional and competent manner.

Minimum Qualifications and Requirements

Education/Training:

BS in risk management, cybersecurity, information systems, economics, mathematics or a related technical field; advanced degree strongly preferred.

Other educational backgrounds of a technical nature with significant relevant experience as described may be considered.


Experience:
Total of ten (10) years of experience as an enterprise risk executive, enterprise risk manager, primary investigator engaged in risk management research or similarly technical occupation.

Experience and expert knowledge of:
risk quantification tools and techniques
risk management frameworks/model/standards of practice
risk governance

Experience with and substantial knowledge of:

network architectures, and telecommunications

cybersecurity and operational resilience

information security models, frameworks, and metrics

foundational artificial intelligence concepts and techniques

project planning and financial management

strategic planning and product development

USG and DoW risk tools, techniques, and methods

USG and DoW risk management strategies, policies, and directives


Skills/Abilities:
mastery of risk management concepts, cyber security best practices and standards, information security and risk evaluation methods, development

excellent analytical, organizational, reasoning and problem-solving skills

outstanding written and oral communication skills

demonstrated ability and experience in employee performance management

outstanding financial and resource management skills

demonstrated ability to prepare papers and deliver presentations for technical and non-technical audiences

demonstrated experience in developing a strategic plan and associated technical agenda

demonstrated experience in developing products and transition (go-to-market)

ability to interact effectively with diverse constituencies internally and externally, including senior executives and managers in government and industry

ability to recognize and deal appropriately with confidential and sensitive information, and where appropriate, ability to obtain and hold a security clearance

active involvement in professional societies

Preferred Qualifications:

RIMS-Certified Risk Management Professional (preferred)

Certified Enterprise Risk Manager (preferred)

Certified Information Systems Security Professional (preferred)

Certified Information Security Manager (preferred)

Certified Information Systems Auditor (preferred)

Other: You will be subject to a background investigation, and you must have the ability to obtain and maintain a Department of War security clearance.

Location

Pittsburgh, PA

Job Function

Software/Applications Development/Engineering

Position Type

Staff - Regular

Full time/Part time

Full time

Pay Basis

SalaryMore Information:
  • Please visit "Why Carnegie Mellon" to learn more about becoming part of an institution inspiring innovations that change the world.

  • Click here to view a listing of employee benefits

  • Carnegie Mellon University is an Equal Opportunity Employer/Disability/Veteran.

  • Statement of Assurance


CMU logo

About CMU

Sourced by ZipRecruiter

Industry

Offices of mental health practitioners

Company size

201 - 500 Employees

Headquarters location

Harrisburg, PA, US