Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our ...
Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Work you'll do As an Engineering Manager II on the Cyber Defense & Resilience Continuous Threat ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Work you'll do As an Engineering Manager II on the Cyber Defense & Resilience Continuous Threat ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Work you'll do As a Senior Manager on the Cyber Defense & Resilience Continuous Threat Exposure ...
Are you an experienced cybersecurity professional looking to help organizations reduce cyber risk ... Work you'll do As a Senior Manager on the Cyber Defense & Resilience Continuous Threat Exposure ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Business continuity management * Familiarity with industry standards and regulatory requirements around cyber risk management (e.g., ISO 27001, IEC 62443, NIST CSF) * Limited sponsorship ...
Consultant Cyber Engineering
Raleigh, NC · On-site
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident Response * Security Architecture * Business Partnership Qualifications Required: * Bachelor's degree or ...
Consultant Cyber Engineering
Raleigh, NC · On-site
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident Response * Security Architecture * Business Partnership Qualifications Required: * Bachelor's degree or ...
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat Detection * Incident Response * Security Architecture * Business Partnership Qualifications Required:
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat Detection * Incident Response * Security Architecture * Business Partnership Qualifications Required:
Bitsight is a cyber risk management leader transforming how companies manage exposure, performance, and risk for themselves and their third parties. Companies rely on Bitsight to prioritize their ...
Bitsight is a cyber risk management leader transforming how companies manage exposure, performance, and risk for themselves and their third parties. Companies rely on Bitsight to prioritize their ...
Bitsight is a cyber risk management leader transforming how companies manage exposure, performance, and risk for themselves and their third parties. Companies rely on Bitsight to prioritize their ...
Bitsight is a cyber risk management leader transforming how companies manage exposure, performance, and risk for themselves and their third parties. Companies rely on Bitsight to prioritize their ...
Cyber Network Security Architecture - Senior Manager
Raleigh, NC · On-site
$107K - $145K/yr
... cyber risk programs * 4+ years of experience managing teams and delivering workstreams in a client service environment * 3+ years of experience serving in a leadership capacity over the ...
Cyber Network Security Architecture - Senior Manager
Raleigh, NC · On-site
$107K - $145K/yr
... cyber risk programs * 4+ years of experience managing teams and delivering workstreams in a client service environment * 3+ years of experience serving in a leadership capacity over the ...
Business Information Security Leader (BISL) - Commercial -- Hybrid - Bridgewater, NJ or Morrisvil...
Morrisville, NC · On-site
Maintain visibility into the aggregated cyber risk posture of the assigned business unit. * Ensure risk assessments are conducted, partnering with the Risk Management function, for new and materially ...
New
Business Information Security Leader (BISL) - Commercial -- Hybrid - Bridgewater, NJ or Morrisvil...
Morrisville, NC · On-site
Maintain visibility into the aggregated cyber risk posture of the assigned business unit. * Ensure risk assessments are conducted, partnering with the Risk Management function, for new and materially ...
New
Business Information Security Leader - Corporate Systems - Hybrid Bridgewater, NJ or Morrisville...
Morrisville, NC · Hybrid
... cyber risk posture of the assigned business unit. Ensure risk assessments are conducted, partnering with the Risk Management function, for new and materially changed technologies. Serve as a security ...
Business Information Security Leader - Corporate Systems - Hybrid Bridgewater, NJ or Morrisville...
Morrisville, NC · Hybrid
... cyber risk posture of the assigned business unit. Ensure risk assessments are conducted, partnering with the Risk Management function, for new and materially changed technologies. Serve as a security ...
Business Information Security Leader (BISL) - Commercial -- Hybrid - Bridgewater, NJ or Morrisvil...
Morrisville, NC · Hybrid
... cyber risk posture of the assigned business unit. Ensure risk assessments are conducted, partnering with the Risk Management function, for new and materially changed technologies. Serve as a security ...
Business Information Security Leader (BISL) - Commercial -- Hybrid - Bridgewater, NJ or Morrisvil...
Morrisville, NC · Hybrid
... cyber risk posture of the assigned business unit. Ensure risk assessments are conducted, partnering with the Risk Management function, for new and materially changed technologies. Serve as a security ...
... risk management, engineering, or another business or technology discipline; or equivalent work ... Join Deloitte's Cyber team to help clients address complex cybersecurity challenges with confidence.
New
... risk management, engineering, or another business or technology discipline; or equivalent work ... Join Deloitte's Cyber team to help clients address complex cybersecurity challenges with confidence.
New
Provide leadership and support for information security and fraud risk management across Truist Protection Services operational functions, including GRC, Fraud, Cyber Operations, Cyber Protection ...
Provide leadership and support for information security and fraud risk management across Truist Protection Services operational functions, including GRC, Fraud, Cyber Operations, Cyber Protection ...
Own the third-party risk framework and partner across Procurement, Finance, Legal, Cyber, Risk, and Technology to strengthen vendor governance, manage risk, and inform long-term investment decisions.
Own the third-party risk framework and partner across Procurement, Finance, Legal, Cyber, Risk, and Technology to strengthen vendor governance, manage risk, and inform long-term investment decisions.
Help clients reduce cyber risk by leading forward deployed engineering work focused on patching ... In this role, you'll lead teams, manage delivery, and help clients translate vulnerability data ...
Help clients reduce cyber risk by leading forward deployed engineering work focused on patching ... In this role, you'll lead teams, manage delivery, and help clients translate vulnerability data ...
Through powerful solutions and managed services that simplify complexity, we enable our clients to ... Includes design of the cyber organization, governance, and risk assessments. Qualifications ...
Through powerful solutions and managed services that simplify complexity, we enable our clients to ... Includes design of the cyber organization, governance, and risk assessments. Qualifications ...
Utilizing cyber risk quantification to reduce uncertainty around cyber risk and improve executive ... Managing cybersecurity risk arising from third parties and the supply chain. * Designing ...
Utilizing cyber risk quantification to reduce uncertainty around cyber risk and improve executive ... Managing cybersecurity risk arising from third parties and the supply chain. * Designing ...
Cyber Oracle Cloud Security - Manager / Engineering Manager II Are you interested in working in a ... Design and deploy Oracle Risk Management Cloud capabilities, including Advanced Access Controls ...
Cyber Oracle Cloud Security - Manager / Engineering Manager II Are you interested in working in a ... Design and deploy Oracle Risk Management Cloud capabilities, including Advanced Access Controls ...
Cyber Data Protection/PKI Manager
$107K - $145K/yr
Work you'll do As a Manager, Strategy, Growth, and Transformation on the Cyber Strategy ... Includes design of the cyber organization, governance, and risk assessments. Qualifications ...
Cyber Data Protection/PKI Manager
$107K - $145K/yr
Work you'll do As a Manager, Strategy, Growth, and Transformation on the Cyber Strategy ... Includes design of the cyber organization, governance, and risk assessments. Qualifications ...
Cyber Risk Manager information
See Raleigh, NC salary details
$44.2K - $53.5K
4% of jobs
$53.5K - $62.7K
6% of jobs
$62.7K - $72K
11% of jobs
$75.5K is the 25th percentile. Wages below this are outliers.
$72K - $81.2K
11% of jobs
The median wage is $88.6K / yr.
$81.2K - $90.5K
23% of jobs
$90.5K - $99.7K
13% of jobs
$105.8K is the 75th percentile. Wages above this are outliers.
$99.7K - $109K
12% of jobs
$109K - $118.2K
8% of jobs
$118.2K - $127.5K
6% of jobs
$127.5K - $136.7K
4% of jobs
$136.7K - $146K
2% of jobs
$44.2K
$95.8K
$146K
How much do cyber risk manager jobs pay per year?
How does a Cyber Risk Manager typically collaborate with other departments to strengthen an organization's cybersecurity posture?
What is the difference between Cyber Risk Manager vs Cybersecurity Analyst?
| Aspect | Cyber Risk Manager | Cybersecurity Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CISSP, CEH |
| Work Environment | Risk assessment, policy development, strategic planning | Monitoring security systems, incident response, vulnerability testing |
| Employer & Industry Usage | Financial, healthcare, large enterprises | IT departments, security firms, corporate environments |
The Cyber Risk Manager focuses on identifying, assessing, and mitigating organizational cyber risks through strategic planning and policy development. In contrast, the Cybersecurity Analyst primarily monitors security systems, responds to incidents, and tests vulnerabilities. Both roles require certifications like CISSP, but their daily tasks and focus areas differ significantly, with the manager taking a broader, strategic approach and the analyst handling operational security tasks.
What are the key skills and qualifications needed to thrive as a Cyber Risk Manager, and why are they important?
Can you make $200,000 in cyber security?
Can you make $500,000 a year in cyber security?
What does a cyber risk manager do?
Is a CISO a stressful job?

Other
Re-posted 2 days ago
Deloitte rating
8.0
Based on 89 frontline employees who took The Breakroom Quiz
72nd of 146 rated financial services
Job description
Deloitte's Cyber Services help our clients to be secure, vigilant, and resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our services help organizations to address, in a timely manner, pervasive issues, such as identity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise.
Recruiting for this role ends on 12/31/2026
Job Summary
We are seeking an experienced professional to join our Cyber Defense and Resilience team, who will have 5+ years of experience in Cyber Incident Response. This role involves supporting our client teams in defining, delivering and improving their Cyber Incident Response program to be able to support client's Readiness, Response, and Recovery from Cyber incidents or other crises and events. The candidate will also act as an integrator and champion internally and drive the definition, design, and deployment of solutions and services to advance Deloitte Cyber's Crisis & Incident Response and Technical Resilience offerings.
Responsibilities
- Support and execute the full lifecycle of cyber incident response engagements for clients, including investigation, containment, remediation, recovery, and post-incident activities.
- Develop and review incident reports, technical documentation, and client communications to ensure clarity, accuracy, and quality.
- Facilitate technical working sessions and contribute to client discussions to support effective incident response delivery.
- Help design and enhance Crisis & Incident Response capabilities aligned to industry standards such as ISO 27001, NIST, and CIS to improve client readiness, response, and recovery.
- Identify opportunities to improve incident monitoring, detection, and response processes, and support implementation of enhancements.
- Apply leading practices and relevant technologies to improve the consistency, quality, and reliability of cyber services delivered to clients.
- Mentor junior team members and support collaboration across US and US-India teams to drive effective delivery.
- Contribute to the development of Cyber Defense & Resilience assets, methodologies, and market offerings related to Crisis & Incident Response and Technical Resilience.
- Support security awareness, training, and knowledge-sharing initiatives, and stay current on evolving threats, tools, and client requirements.
Qualifications
Required:
- 5+ years of hands-on experience on Cyber Defense & Resilience solutions, including but not limited to cyber incident response, cyber resilience, and initiating / leading cyber transformation programs.
- Bachelor's degree
- Limited visa sponsorship may be available
- Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is
Deloitte's Cyber Services help our clients to be secure, vigilant, and resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our services help organizations to address, in a timely manner, pervasive issues, such as identity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise.
Recruiting for this role ends on 12/1/2026
Job Summary
We are seeking an experienced professional to join our Cyber Defense and Resilience team, who will have 5+ years of experience in Cyber Incident Response. This role involves supporting our client teams in defining, delivering and improving their Cyber Incident Response program to be able to support client's Readiness, Response, and Recovery from Cyber incidents or other crises and events. The candidate will also act as an integrator and champion internally and drive the definition, design, and deployment of solutions and services to advance Deloitte Cyber's Crisis & Incident Response and Technical Resilience offerings.
Responsibilities
- Support and execute the full lifecycle of cyber incident response engagements for clients, including investigation, containment, remediation, recovery, and post-incident activities.
- Develop and review incident reports, technical documentation, and client communications to ensure clarity, accuracy, and quality.
- Facilitate technical working sessions and contribute to client discussions to support effective incident response delivery.
- Help design and enhance Crisis & Incident Response capabilities aligned to industry standards such as ISO 27001, NIST, and CIS to improve client readiness, response, and recovery.
- Identify opportunities to improve incident monitoring, detection, and response processes, and support implementation of enhancements.
- Apply leading practices and relevant technologies to improve the consistency, quality, and reliability of cyber services delivered to clients.
- Mentor junior team members and support collaboration across US and US-India teams to drive effective delivery.
- Contribute to the development of Cyber Defense & Resilience assets, methodologies, and market offerings related to Crisis & Incident Response and Technical Resilience.
- Support security awareness, training, and knowledge-sharing initiatives, and stay current on evolving threats, tools, and client requirements.
Qualifications
Required:
- 5+ years of hands-on experience on Cyber Defense & Resilience solutions, including but not limited to cyber incident response, cyber resilience, and initiating / leading cyber transformation programs.
- Bachelor's degree
- Limited visa sponsorship may be available
- Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $105,400 to $207,800.
#CDRCyber26
Deloitte's Cyber Services help our clients to be secure, vigilant, and resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our services help organizations to address, in a timely manner, pervasive issues, such as identity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise.
Recruiting for this role ends on 12/31/2026
Job Summary
We are seeking an experienced professional to join our Cyber Defense and Resilience team, who will have 5+ years of experience in Cyber Incident Response. This role involves supporting our client teams in defining, delivering and improving their Cyber Incident Response program to be able to support client's Readiness, Response, and Recovery from Cyber incidents or other crises and events. The candidate will also act as an integrator and champion internally and drive the definition, design, and deployment of solutions and services to advance Deloitte Cyber's Crisis & Incident Response and Technical Resilience offerings.
Responsibilities
- Support and execute the full lifecycle of cyber incident response engagements for clients, including investigation, containment, remediation, recovery, and post-incident activities.
- Develop and review incident reports, technical documentation, and client communications to ensure clarity, accuracy, and quality.
- Facilitate technical working sessions and contribute to client discussions to support effective incident response delivery.
- Help design and enhance Crisis & Incident Response capabilities aligned to industry standards such as ISO 27001, NIST, and CIS to improve client readiness, response, and recovery.
- Identify opportunities to improve incident monitoring, detection, and response processes, and support implementation of enhancements.
- Apply leading practices and relevant technologies to improve the consistency, quality, and reliability of cyber services delivered to clients.
- Mentor junior team members and support collaboration across US and US-India teams to drive effective delivery.
- Contribute to the development of Cyber Defense & Resilience assets, methodologies, and market offerings related to Crisis & Incident Response and Technical Resilience.
- Support security awareness, training, and knowledge-sharing initiatives, and stay current on evolving threats, tools, and client requirements.
Qualifications
Required:
- 5+ years of hands-on experience on Cyber Defense & Resilience solutions, including but not limited to cyber incident response, cyber resilience, and initiating / leading cyber transformation programs.
- Bachelor's degree
- Limited visa sponsorship may be available
- Ability to travel up to 50%, on average, based on the work you do and the clients and industries/sectors you serve
The wage range for this role takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Deloitte, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is
Deloitte's Cyber Services help our clients to be secure, vigilant, and resilient in the face of an ever-increasing array of cyber threats and vulnerabilities. Our Cyber Risk practice helps organizations with the management of information and technology risks by delivering end-to-end solutions using proven methodologies and tools in a consistent manner. Our services help organizations to address, in a timely manner, pervasive issues, such as identity theft, data security breaches, data leakage, cyber security, and system outages across organizations of various sizes and industries with the goal of enabling ongoing, secure, and reliable operations across the enterprise.
Recruiting for this role ends on 12/1/2026
Job Summary
We are seeking an experienced professional to join our Cyber Defense and Resilience team, who will have 5+ years of experience in Cyber Incident Response. This role involves supporting our client teams in defining, delivering and improving their Cyber Incident Response program to be able to support client's Readiness, Response, and Recovery from Cyber incidents or other crises and events. The candidate will also act as an integrator and champion internally and drive the definition, design, and deployment of solutions and services to advance Deloitte Cyber's Crisis & Incident Response and Technical Resilience offerings.
Responsibilities
- Support and execute the full lifecycle of cyber incident response engagements for clients, including investigation, containment, remediation, recovery, and post-incident activities.
- Develop and review incident reports, technical documentation, and client communications to ensure clarity, accuracy, and quality.
- Facilitate technical working sessions and contribute to client discussions to support effective incident response delivery.
- Help design and enhance Crisis & Incident Response capabilities aligned to industry standards such as ISO 27001, NIST, and CIS to improve client readiness, response, and recovery.
- Identify opportunities to improve incident monitoring, detection, and response processes, and support implementation of enhancements.
- Apply leading practices and relevant technologies to improve the consistency, quality, and reliability of cyber services delivered to clients.
- Mentor junior team members and support collaboration across US and US-India teams to drive effective delivery.
- Contribute to the development of Cyber Defense & Resilience assets, methodologies, and market offerings related to Crisis & Incident Response and Technical Resilience.
- Support security awareness, training, and knowledge-sharing initiatives, and stay current on evolving threats, tools, and client requirements.
Qualifications
Required: