Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our ...
Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Work you'll do As a Senior Manager on the Cyber Defense & Resilience Continuous Threat Exposure ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Work you'll do As a Senior Manager on the Cyber Defense & Resilience Continuous Threat Exposure ...
Help organizations reduce cyber risk and improve resilience as part of Deloitte's Cyber Defense & Resilience Continuous Threat Exposure Management (CTEM) team. In this role, you'll support clients in ...
Help organizations reduce cyber risk and improve resilience as part of Deloitte's Cyber Defense & Resilience Continuous Threat Exposure Management (CTEM) team. In this role, you'll support clients in ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Work you'll do As an Engineering Manager II on the Cyber Defense & Resilience Continuous Threat ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Work you'll do As an Engineering Manager II on the Cyber Defense & Resilience Continuous Threat ...
Information Security & Technology Mgr, Sr
Chicago, IL · On-site
$199K/yr
Contribute to the maintenance of technology and cyber risk taxonomy, risk appetite alignment, and ... Apply risk management practices to safeguard sensitive data and support compliance with applicable ...
Information Security & Technology Mgr, Sr
Chicago, IL · On-site
$199K/yr
Contribute to the maintenance of technology and cyber risk taxonomy, risk appetite alignment, and ... Apply risk management practices to safeguard sensitive data and support compliance with applicable ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Underwriter, Retail Cyber
Chicago, IL · Hybrid
$78K - $117K/yr
As an Underwriter in the Cyber Risk unit within Global Specialty Financial Lines at The Hartford ... Demonstration of solid time, organizational, and desk management skills. * Goal-oriented and ...
Underwriter, Retail Cyber
Chicago, IL · Hybrid
$78K - $117K/yr
As an Underwriter in the Cyber Risk unit within Global Specialty Financial Lines at The Hartford ... Demonstration of solid time, organizational, and desk management skills. * Goal-oriented and ...
Underwriter, Retail Cyber
Chicago, IL · On-site
$78K - $117K/yr
As an Underwriter in the Cyber Risk unit within Global Specialty Financial Lines at The Hartford ... Demonstration of solid time, organizational, and desk management skills. * Goal-oriented and ...
Underwriter, Retail Cyber
Chicago, IL · On-site
$78K - $117K/yr
As an Underwriter in the Cyber Risk unit within Global Specialty Financial Lines at The Hartford ... Demonstration of solid time, organizational, and desk management skills. * Goal-oriented and ...
Global Supply Chain Risk Manager
Deerfield, IL · On-site
$124K - $190K/yr
... cyber, and ESG risks * Assess and prioritize risks based on likelihood, impact, and criticality of ... risk management * Demonstrated expertise in supplier and third-party risk assessment * Strong ...
Global Supply Chain Risk Manager
Deerfield, IL · On-site
$124K - $190K/yr
... cyber, and ESG risks * Assess and prioritize risks based on likelihood, impact, and criticality of ... risk management * Demonstrated expertise in supplier and third-party risk assessment * Strong ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat Detection * Incident Response * Security Architecture * Business Partnership Qualifications Required:
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat Detection * Incident Response * Security Architecture * Business Partnership Qualifications Required:
Consultant Cyber Engineering
Chicago, IL · On-site
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident Response * Security Architecture * Business Partnership Qualifications Required: * Bachelor's degree or ...
Consultant Cyber Engineering
Chicago, IL · On-site
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident Response * Security Architecture * Business Partnership Qualifications Required: * Bachelor's degree or ...
Senior Cybersecurity Risk Analyst - USA Remote
Chicago, IL · Remote
$130K - $160K/yr
This role offers opportunities to work at the intersection of cyber risk, supply-chain integrity ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Senior Cybersecurity Risk Analyst - USA Remote
Chicago, IL · Remote
$130K - $160K/yr
This role offers opportunities to work at the intersection of cyber risk, supply-chain integrity ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Cyber Network Security Architecture - Senior Manager
$114K - $154K/yr
... cyber risk programs * 4+ years of experience managing teams and delivering workstreams in a client service environment * 3+ years of experience serving in a leadership capacity over the ...
Cyber Network Security Architecture - Senior Manager
$114K - $154K/yr
... cyber risk programs * 4+ years of experience managing teams and delivering workstreams in a client service environment * 3+ years of experience serving in a leadership capacity over the ...
TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Required ... Cloud Security - DevSecOps Manager Position Summary Are you interested in working in a dynamic ...
TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Required ... Cloud Security - DevSecOps Manager Position Summary Are you interested in working in a dynamic ...
... risk management, engineering, or another business or technology discipline; or equivalent work ... Join Deloitte's Cyber team to help clients address complex cybersecurity challenges with confidence.
... risk management, engineering, or another business or technology discipline; or equivalent work ... Join Deloitte's Cyber team to help clients address complex cybersecurity challenges with confidence.
Own the third-party risk framework and partner across Procurement, Finance, Legal, Cyber, Risk, and Technology to strengthen vendor governance, manage risk, and inform long-term investment decisions.
Own the third-party risk framework and partner across Procurement, Finance, Legal, Cyber, Risk, and Technology to strengthen vendor governance, manage risk, and inform long-term investment decisions.
Through powerful solutions and managed services that simplify complexity, we enable our clients to ... Includes design of the cyber organization, governance, and risk assessments. Qualifications ...
Through powerful solutions and managed services that simplify complexity, we enable our clients to ... Includes design of the cyber organization, governance, and risk assessments. Qualifications ...
Help clients reduce cyber risk by leading forward deployed engineering work focused on patching ... In this role, you'll lead teams, manage delivery, and help clients translate vulnerability data ...
Help clients reduce cyber risk by leading forward deployed engineering work focused on patching ... In this role, you'll lead teams, manage delivery, and help clients translate vulnerability data ...
Cyber Risk Manager information
See Chicago, IL salary details
$53.1K - $64.1K
4% of jobs
$64.1K - $75.2K
6% of jobs
$75.2K - $86.3K
11% of jobs
$90.5K is the 25th percentile. Wages below this are outliers.
$86.3K - $97.4K
11% of jobs
The median wage is $106.3K / yr.
$97.4K - $108.5K
23% of jobs
$108.5K - $119.6K
13% of jobs
$127K is the 75th percentile. Wages above this are outliers.
$119.6K - $130.7K
12% of jobs
$130.7K - $141.8K
8% of jobs
$141.8K - $152.9K
6% of jobs
$152.9K - $164K
4% of jobs
$164K - $175.1K
2% of jobs
$53.1K
$114.9K
$175.1K
How much do cyber risk manager jobs pay per year?
How does a Cyber Risk Manager typically collaborate with other departments to strengthen an organization's cybersecurity posture?
What is the difference between Cyber Risk Manager vs Cybersecurity Analyst?
| Aspect | Cyber Risk Manager | Cybersecurity Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CISSP, CEH |
| Work Environment | Risk assessment, policy development, strategic planning | Monitoring security systems, incident response, vulnerability testing |
| Employer & Industry Usage | Financial, healthcare, large enterprises | IT departments, security firms, corporate environments |
The Cyber Risk Manager focuses on identifying, assessing, and mitigating organizational cyber risks through strategic planning and policy development. In contrast, the Cybersecurity Analyst primarily monitors security systems, responds to incidents, and tests vulnerabilities. Both roles require certifications like CISSP, but their daily tasks and focus areas differ significantly, with the manager taking a broader, strategic approach and the analyst handling operational security tasks.
What are the key skills and qualifications needed to thrive as a Cyber Risk Manager, and why are they important?
Can you make $200,000 in cyber security?
Can you make $500,000 a year in cyber security?
What does a cyber risk manager do?
Is a CISO a stressful job?

Full-time
Posted 19 days ago
Deloitte rating
8.1
Based on 90 frontline employees who took The Breakroom Quiz
60th of 148 rated financial services
Job description
Recruiting for this role ends on 12/31/2026
Job Summary
We are seeking an experienced professional to join our Cyber Defense and Resilience team, who will have 5+ years of experience in Cyber Incident Response. This role involves supporting our client teams in defining, delivering and improving their Cyber Incident Response program to be able to support client's Readiness, Response, and Recovery from Cyber incidents or other crises and events. The candidate will also act as an integrator and champion internally and drive the definition, design, and deployment of solutions and services to advance Deloitte Cyber's Crisis & Incident Response and Technical Resilience offerings.
Responsibilities
- Support and execute the full lifecycle of cyber incident response engagements for clients, including investigation, containment, remediation, recovery, and post-incident activities.
- Develop and review incident reports, technical documentation, and client communications to ensure clarity, accuracy, and quality.
- Facilitate technical working sessions and contribute to client discussions to support effective incident response delivery.
- Help design and enhance Crisis & Incident Response capabilities aligned to industry standards such as ISO 27001, NIST, and CIS to improve client readiness, response, and recovery.
- Identify opportunities to improve incident monitoring, detection, and response processes, and support implementation of enhancements.
- Apply leading practices and relevant technologies to improve the consistency, quality, and reliability of cyber services delivered to clients.
- Mentor junior team members and support collaboration across US and US-India teams to drive effective delivery.
- Contribute to the development of Cyber Defense & Resilience assets, methodologies, and market offerings related to Crisis & Incident Response and Technical Resilience.
- Support security awareness, training, and knowledge-sharing initiatives, and stay current on evolving threats, tools, and client requirements.
Required:
- 5+ years of hands-on experience on Cyber Defense & Resilience solutions, including but not limited to cyber incident response, cyber resilience, and initiating / leading cyber transformation programs.
- Bachelor's degree
- Limited visa sponsorship may be available
- Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
Deloitte's Cyber Services help our clients to be secure, vigilant, and resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our services help organizations to address, in a timely manner, pervasive issues, such as identity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise.
Recruiting for this role ends on 12/1/2026
Job Summary
We are seeking an experienced professional to join our Cyber Defense and Resilience team, who will have 5+ years of experience in Cyber Incident Response. This role involves supporting our client teams in defining, delivering and improving their Cyber Incident Response program to be able to support client's Readiness, Response, and Recovery from Cyber incidents or other crises and events. The candidate will also act as an integrator and champion internally and drive the definition, design, and deployment of solutions and services to advance Deloitte Cyber's Crisis & Incident Response and Technical Resilience offerings.
Responsibilities
- Support and execute the full lifecycle of cyber incident response engagements for clients, including investigation, containment, remediation, recovery, and post-incident activities.
- Develop and review incident reports, technical documentation, and client communications to ensure clarity, accuracy, and quality.
- Facilitate technical working sessions and contribute to client discussions to support effective incident response delivery.
- Help design and enhance Crisis & Incident Response capabilities aligned to industry standards such as ISO 27001, NIST, and CIS to improve client readiness, response, and recovery.
- Identify opportunities to improve incident monitoring, detection, and response processes, and support implementation of enhancements.
- Apply leading practices and relevant technologies to improve the consistency, quality, and reliability of cyber services delivered to clients.
- Mentor junior team members and support collaboration across US and US-India teams to drive effective delivery.
- Contribute to the development of Cyber Defense & Resilience assets, methodologies, and market offerings related to Crisis & Incident Response and Technical Resilience.
- Support security awareness, training, and knowledge-sharing initiatives, and stay current on evolving threats, tools, and client requirements.
Required:
- 5+ years of hands-on experience on Cyber Defense & Resilience solutions, including but not limited to cyber incident response, cyber resilience, and initiating / leading cyber transformation programs.
- Bachelor's degree
- Limited visa sponsorship may be available
- Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
#CDRCyber26
Deloitte is committed to providing reasonable accommodations for people with disabilities. If you require a reasonable accommodation to participate in the recruiting process, please direct your inquiries to the Global Call Center (GCC) at USTalentCICInbox@deloitte.com.
Recruiting tips
From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.
Our people and culture
Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ways of thinking, ideas, and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work.
Our purpose
Deloitte's purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Learn more.
Professional development
From entry-level employees to senior leaders, we believe there's always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.
As used in this posting, "Deloitte" means Deloitte & Touche LLP, a subsidiary of Deloitte LLP. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. Certain services may not be available to attest clients under the rules and regulations of public accounting.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Qualified applicants with criminal histories, including arrest or conviction records, will be considered for employment in accordance with the requirements of applicable state and local laws, including the Los Angeles County Fair Chance Ordinance for Employers, City of Los Angeles's Fair Chance Initiative for Hiring Ordinance, San Francisco Fair Chance Ordinance, and the California Fair Chance Act. See notices of various fair chance hiring and ban-the-box laws where available. Fair Chance Hiring and Ban-the-Box Notices | Deloitte US Careers
Requisition code: 352440
Job ID 352440