1

Cyber Risk Manager Jobs in Chicago, IL (NOW HIRING)

Underwriter, Retail Cyber

Chicago, IL · Hybrid

$78K - $117K/yr

As an Underwriter in the Cyber Risk unit within Global Specialty Financial Lines at The Hartford ... Demonstration of solid time, organizational, and desk management skills. * Goal-oriented and ...

Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident Response * Security Architecture * Business Partnership Qualifications Required: * Bachelor's degree or ...

TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Required ... Cloud Security - DevSecOps Manager Position Summary Are you interested in working in a dynamic ...

... risk management, engineering, or another business or technology discipline; or equivalent work ... Join Deloitte's Cyber team to help clients address complex cybersecurity challenges with confidence.

next page

Showing results 1-20

Cyber Risk Manager information

See Chicago, IL salary details

$53.1K

$114.9K

$175.1K

How much do cyber risk manager jobs pay per year?

As of Jul 14, 2026, the average yearly pay for cyber risk manager in Chicago, IL is $114,919.00, according to ZipRecruiter salary data. Most workers in this role earn between $92,700.00 and $132,900.00 per year, depending on experience, location, and employer.

How does a Cyber Risk Manager typically collaborate with other departments to strengthen an organization's cybersecurity posture?

A Cyber Risk Manager frequently works with IT, legal, compliance, and business units to identify, assess, and mitigate cyber risks across the organization. This collaboration involves leading risk assessments, facilitating security awareness training, and ensuring that cybersecurity policies align with business objectives. Regular cross-department meetings and incident response simulations are common, fostering a shared responsibility for cyber resilience. Effective communication and relationship-building skills are essential in this role to bridge technical and non-technical teams.

What is the difference between Cyber Risk Manager vs Cybersecurity Analyst?

AspectCyber Risk ManagerCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CISSP, CEH
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability testing
Employer & Industry UsageFinancial, healthcare, large enterprisesIT departments, security firms, corporate environments

The Cyber Risk Manager focuses on identifying, assessing, and mitigating organizational cyber risks through strategic planning and policy development. In contrast, the Cybersecurity Analyst primarily monitors security systems, responds to incidents, and tests vulnerabilities. Both roles require certifications like CISSP, but their daily tasks and focus areas differ significantly, with the manager taking a broader, strategic approach and the analyst handling operational security tasks.

What are the key skills and qualifications needed to thrive as a Cyber Risk Manager, and why are they important?

To thrive as a Cyber Risk Manager, you need a solid background in information security, risk assessment, and compliance, often supported by a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), GRC tools, and relevant certifications like CISSP or CISM is typically required. Excellent analytical thinking, communication, and leadership skills set top performers apart in this role. These skills are crucial for identifying risks, implementing effective controls, and ensuring the organization’s digital assets remain secure and compliant.

Can you make $200,000 in cyber security?

Cyber Risk Managers and senior cybersecurity professionals can earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and in high-demand industries or locations. Salary levels depend on factors such as expertise, certifications, industry, and geographic region, with leadership roles and specialized skills commanding higher compensation.

Can you make $500,000 a year in cyber security?

Cyber Risk Managers and senior cybersecurity professionals can potentially earn $500,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and leadership roles such as Chief Information Security Officer. High salaries are often associated with large organizations, specialized skills, and strategic responsibilities in cybersecurity management.

What does a cyber risk manager do?

A cyber risk manager assesses and mitigates cybersecurity threats to an organization’s information systems. They develop risk management strategies, implement security policies, and often use tools like risk assessment frameworks and security audits to protect digital assets. Certification such as CISSP or CISM can enhance their effectiveness in this role.

Is a CISO a stressful job?

A Chief Information Security Officer (CISO) role is often considered high-stress due to the responsibility for an organization's cybersecurity strategy, risk management, and incident response. The job requires managing complex threats, compliance requirements, and often involves long hours, especially during security breaches or audits.
What job categories do people searching Cyber Risk Manager jobs in Chicago, IL look for? The top searched job categories for Cyber Risk Manager jobs in Chicago, IL are:
What cities near Chicago, IL are hiring for Cyber Risk Manager jobs? Cities near Chicago, IL with the most Cyber Risk Manager job openings:
Infographic showing various Cyber Risk Manager job openings in Chicago, IL as of July 2026, with employment types broken down into 100% Full Time. Highlights an 100% In-person job distribution, with an average salary of $114,919 per year, or $55.2 per hour.
Advanced Cyber Threat Response & Forensics Senior Consultant

Advanced Cyber Threat Response & Forensics Senior Consultant

Deloitte

Arlington Heights, IL • On-site

Full-time

Posted 19 days ago


Deloitte rating

8.1

Company rating: 8.1 out of 10

Based on 90 frontline employees who took The Breakroom Quiz

60th of 148 rated financial services


Job description

Deloitte's Cyber Services help our clients to be secure, vigilant, and resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our services help organizations to address, in a timely manner, pervasive issues, such as identity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise.
Recruiting for this role ends on 12/31/2026
Job Summary
We are seeking an experienced professional to join our Cyber Defense and Resilience team, who will have 5+ years of experience in Cyber Incident Response. This role involves supporting our client teams in defining, delivering and improving their Cyber Incident Response program to be able to support client's Readiness, Response, and Recovery from Cyber incidents or other crises and events. The candidate will also act as an integrator and champion internally and drive the definition, design, and deployment of solutions and services to advance Deloitte Cyber's Crisis & Incident Response and Technical Resilience offerings.
Responsibilities
  • Support and execute the full lifecycle of cyber incident response engagements for clients, including investigation, containment, remediation, recovery, and post-incident activities.
  • Develop and review incident reports, technical documentation, and client communications to ensure clarity, accuracy, and quality.
  • Facilitate technical working sessions and contribute to client discussions to support effective incident response delivery.
  • Help design and enhance Crisis & Incident Response capabilities aligned to industry standards such as ISO 27001, NIST, and CIS to improve client readiness, response, and recovery.
  • Identify opportunities to improve incident monitoring, detection, and response processes, and support implementation of enhancements.
  • Apply leading practices and relevant technologies to improve the consistency, quality, and reliability of cyber services delivered to clients.
  • Mentor junior team members and support collaboration across US and US-India teams to drive effective delivery.
  • Contribute to the development of Cyber Defense & Resilience assets, methodologies, and market offerings related to Crisis & Incident Response and Technical Resilience.
  • Support security awareness, training, and knowledge-sharing initiatives, and stay current on evolving threats, tools, and client requirements.
Qualifications
Required:
  • 5+ years of hands-on experience on Cyber Defense & Resilience solutions, including but not limited to cyber incident response, cyber resilience, and initiating / leading cyber transformation programs.
  • Bachelor's degree
  • Limited visa sponsorship may be available
  • Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is
Deloitte's Cyber Services help our clients to be secure, vigilant, and resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our services help organizations to address, in a timely manner, pervasive issues, such as identity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise.
Recruiting for this role ends on 12/1/2026
Job Summary
We are seeking an experienced professional to join our Cyber Defense and Resilience team, who will have 5+ years of experience in Cyber Incident Response. This role involves supporting our client teams in defining, delivering and improving their Cyber Incident Response program to be able to support client's Readiness, Response, and Recovery from Cyber incidents or other crises and events. The candidate will also act as an integrator and champion internally and drive the definition, design, and deployment of solutions and services to advance Deloitte Cyber's Crisis & Incident Response and Technical Resilience offerings.
Responsibilities
  • Support and execute the full lifecycle of cyber incident response engagements for clients, including investigation, containment, remediation, recovery, and post-incident activities.
  • Develop and review incident reports, technical documentation, and client communications to ensure clarity, accuracy, and quality.
  • Facilitate technical working sessions and contribute to client discussions to support effective incident response delivery.
  • Help design and enhance Crisis & Incident Response capabilities aligned to industry standards such as ISO 27001, NIST, and CIS to improve client readiness, response, and recovery.
  • Identify opportunities to improve incident monitoring, detection, and response processes, and support implementation of enhancements.
  • Apply leading practices and relevant technologies to improve the consistency, quality, and reliability of cyber services delivered to clients.
  • Mentor junior team members and support collaboration across US and US-India teams to drive effective delivery.
  • Contribute to the development of Cyber Defense & Resilience assets, methodologies, and market offerings related to Crisis & Incident Response and Technical Resilience.
  • Support security awareness, training, and knowledge-sharing initiatives, and stay current on evolving threats, tools, and client requirements.
Qualifications
Required:
  • 5+ years of hands-on experience on Cyber Defense & Resilience solutions, including but not limited to cyber incident response, cyber resilience, and initiating / leading cyber transformation programs.
  • Bachelor's degree
  • Limited visa sponsorship may be available
  • Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $105,400 to $207,800.
#CDRCyber26
Deloitte is committed to providing reasonable accommodations for people with disabilities. If you require a reasonable accommodation to participate in the recruiting process, please direct your inquiries to the Global Call Center (GCC) at USTalentCICInbox@deloitte.com.
Recruiting tips
From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters.
Our people and culture
Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ways of thinking, ideas, and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work.
Our purpose
Deloitte's purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Learn more.
Professional development
From entry-level employees to senior leaders, we believe there's always room to learn. We offer opportunities to build new skills, take on leadership opportunities and connect and grow through mentorship. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their career.
As used in this posting, "Deloitte" means Deloitte & Touche LLP, a subsidiary of Deloitte LLP. Please see www.deloitte.com/us/about for a detailed description of the legal structure of Deloitte LLP and its subsidiaries. Certain services may not be available to attest clients under the rules and regulations of public accounting.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.
Qualified applicants with criminal histories, including arrest or conviction records, will be considered for employment in accordance with the requirements of applicable state and local laws, including the Los Angeles County Fair Chance Ordinance for Employers, City of Los Angeles's Fair Chance Initiative for Hiring Ordinance, San Francisco Fair Chance Ordinance, and the California Fair Chance Act. See notices of various fair chance hiring and ban-the-box laws where available. Fair Chance Hiring and Ban-the-Box Notices | Deloitte US Careers
Requisition code: 352440
Job ID 352440

What Deloitte employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom