ZipRecruiter

Log In

1

Cyber Risk Manager Jobs (NOW HIRING)

McLane Company

Cyber Risk Analyst

Austin, TX · Hybrid

Experience or strong interest in cybersecurity human risk management. * Demonstrated ability to ... human cyber risk-today and into the future. Benefits you can count on: * Day 1 Benefits: medical ...

Emigrant Bank

Risk Manager

Miami, FL

Risk Manager Reports To: Chief Risk Officer Employment Status: Full-Time, Exempt Office Location ... Provide independent second-line oversight of cyber and information security risk internally and ...

Emigrant Bank

Risk Manager

Miami, FL · On-site

Risk Manager Reports To: Chief Risk Officer Employment Status: Full-Time, Exempt Office Location ... Provide independent second-line oversight of cyber and information security risk internally and ...

Emigrant Bank

Risk Manager

Miami, FL · On-site

Risk Manager Reports To: Chief Risk Officer Employment Status: Full-Time, Exempt Office Location ... Provide independent second-line oversight of cyber and information security risk internally and ...

next page

Showing results 1-20

People also search for

All JobsCyber Risk Manager Jobs

Cyber Risk Manager information

See salary details

$51.5K

$111.6K

$170K

How much do cyber risk manager jobs pay per year?

As of Jun 11, 2026, the average yearly pay for cyber risk manager in the United States is $111,556.00, according to ZipRecruiter salary data. Most workers in this role earn between $90,000.00 and $129,000.00 per year, depending on experience, location, and employer.

How does a Cyber Risk Manager typically collaborate with other departments to strengthen an organization's cybersecurity posture?

A Cyber Risk Manager frequently works with IT, legal, compliance, and business units to identify, assess, and mitigate cyber risks across the organization. This collaboration involves leading risk assessments, facilitating security awareness training, and ensuring that cybersecurity policies align with business objectives. Regular cross-department meetings and incident response simulations are common, fostering a shared responsibility for cyber resilience. Effective communication and relationship-building skills are essential in this role to bridge technical and non-technical teams.

What is the difference between Cyber Risk Manager vs Cybersecurity Analyst?

AspectCyber Risk ManagerCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CISSP, CEH
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability testing
Employer & Industry UsageFinancial, healthcare, large enterprisesIT departments, security firms, corporate environments

The Cyber Risk Manager focuses on identifying, assessing, and mitigating organizational cyber risks through strategic planning and policy development. In contrast, the Cybersecurity Analyst primarily monitors security systems, responds to incidents, and tests vulnerabilities. Both roles require certifications like CISSP, but their daily tasks and focus areas differ significantly, with the manager taking a broader, strategic approach and the analyst handling operational security tasks.

What are the key skills and qualifications needed to thrive as a Cyber Risk Manager, and why are they important?

To thrive as a Cyber Risk Manager, you need a solid background in information security, risk assessment, and compliance, often supported by a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), GRC tools, and relevant certifications like CISSP or CISM is typically required. Excellent analytical thinking, communication, and leadership skills set top performers apart in this role. These skills are crucial for identifying risks, implementing effective controls, and ensuring the organization’s digital assets remain secure and compliant.

Can you make $500,000 a year in cyber security?

Cyber Risk Managers and senior cybersecurity professionals can potentially earn $500,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and leadership roles such as Chief Information Security Officer (CISO). High salaries are often associated with large organizations, specialized skills, and strategic responsibilities in cybersecurity management. However, such compensation levels are typically reached after many years of experience and proven expertise in the field.

Is CISO a high paying job?

A Chief Information Security Officer (CISO) is typically a high-paying executive role in cybersecurity, with salaries often exceeding six figures depending on the organization size and industry. CISOs usually have extensive experience, leadership skills, and certifications like CISSP or CISM, which contribute to their compensation. The role involves strategic oversight of an organization's security posture and risk management.

What does a cyber risk manager do?

A cyber risk manager assesses and mitigates cybersecurity threats to an organization’s information systems. They identify vulnerabilities, develop risk management strategies, and implement security controls, often using tools like risk assessment frameworks and security software. The role requires strong analytical skills and relevant certifications such as CISSP or CISM.

What is the 80 20 rule in cyber security?

The 80/20 rule in cybersecurity suggests that approximately 80% of security issues are caused by 20% of vulnerabilities or threats. Cyber Risk Managers focus on identifying and mitigating these critical vulnerabilities to improve overall security posture efficiently.
More about Cyber Risk Manager jobs
What cities are hiring for Cyber Risk Manager jobs? Cities with the most Cyber Risk Manager job openings:
What states have the most Cyber Risk Manager jobs? States with the most job openings for Cyber Risk Manager jobs include:
What job categories do people searching Cyber Risk Manager jobs look for? The top searched job categories for Cyber Risk Manager jobs are:
Cyber Risk Manager jobs near you
Infographic showing various Cyber Risk Manager job openings in the United States as of June 2026, with employment types broken down into 85% Full Time, 14% Part Time, and 1% Contract. Highlights an 92% Physical, 2% Hybrid, and 6% Remote job distribution, with an average salary of $111,556 per year, or $53.6 per hour.

Cloud/Cyber Risk Management Analyst Sr

Flagstar Bank

New York, NY • On-site

$90K - $150K/yr

Full-time

Medical, Dental, Vision, Life

Posted 26 days ago

Job description

Position Title
Cloud/Cyber Risk Management Analyst Sr
Location
New York, NY 10018
Job Summary
***This is an Onsite role in Midtown NYC***
As a key member of the second line of defense Technology, Cyber, Third Party Risk Management & Resilience Risk Management team, the Cyber Risk Management Analyst Sr will support the Cyber Risk team to fulfill the Bank's Second Line of Defense ("2LoD") mandate to identify, measure, monitor, and manage the Cybersecurity/Information Security ("Cyber") risk profile of the Bank, ensuring risk exposure remains within the Bank's established risk appetite. The candidate will be expected to demonstrate independent, effective, outcome-based oversight and challenge for the risk domains within the First Line of Defense ("1LoD") CISO and Information Security team, IT Risk, IT Infrastructure and Architecture teams, as well as IT business technology teams.
Job Responsibilities:
JOB RESPONSIBILITIES
  • Provides independent, proactive oversight and challenge of Cyber risk management at the Bank through execution of risk framework elements including RCSA, control assessment, issue management, incident reviews, targeted deep dives, key risk indicators and through embedded monitoring of Cyber programs.
  • Provides feedback to IT Risk, CISO, and other IT teams on risks, controls, testing, root cause analysis, remediation and reporting.
  • Assesses and report Cyber risk profile based on quantitative and qualitative risk measures and including assessment of effectiveness of planned remediation/mitigation of excess risk exposure and compliance with key regulatory requirements.
  • Uses independent judgement and discretion to make decisions.
  • Analyzes and resolves problems.

ADDITIONAL ACCOUNTABILITIES
  • Performs special projects, and additional duties and responsibilities as required.
  • Consistently adheres to regulatory and compliance policies and standards linked to the job as listed and complete required compliance trainings. Accountable to maintain compliance with applicable federal, state and local laws and regulations.

JOB REQUIREMENTS
Required Qualifications:
  • Education level required: Undergraduate Degree (4 years or equivalent) in Computer Science, Information Technology, Cybersecurity or relevant field.
  • Minimum experience required: 6+ Years in an information technology, cybersecurity, risk, audit, and/or compliance role.

Preferred Qualifications:
  • 2-3 years in a related function at a financial institution preferred.
  • Applicable information security, enterprise risk, and/or compliance certifications and/or experience.
  • Working knowledge of a GRC Risk Tool.

Job Competencies:
  • Excellent knowledge of core IS and cybersecurity controls (e.g. IAM, DLP, vulnerability management, security threat detection and response, networks, cloud technologies, etc.).
  • Strong knowledge of IT and Cyber risk management concepts and applicable interagency regulatory guidance (e.g. FFIEC guidelines).
  • Ability to provide outcome based risk oversight and challenge to first line risk management.
  • Knowledge of non-financial risk frameworks.
  • Strong analytical skills with the ability to interpret data, draw conclusions, and formulate recommendations.
  • Strong verbal and written communications skills
  • Ability to utilize advanced Excel functionality, create engaging and informative PowerPoint presentations, and work effectively in Word.
  • Detail oriented with strong organizational skills, able to thrive in a fast-paced environment with multiple competing priorities at times.
  • Demonstrates a strong ability to build and maintain effective relationships with stakeholders by communicating clearly, engaging in proactive collaboration, and leveraging cross functional insights. Aligns relationship building efforts with enterprise goals to accelerate performance and drive strategic results.
  • Builds trusted client relationships, whether internal or external, by identifying needs and delivering tailored solutions to enhance the overall client experience.
  • Fosters or supports a positive work culture and productive work environment, displaying importance of effective relationships with customers and stakeholders.
  • Physical demands (ADA): No unusual physical exertion is involved.

Flagstar is an Equal Opportunity Employer
We are committed to providing clear and accurate compensation information in accordance with applicable laws. Actual starting base pay will be determined based on location, experience, and other non-discriminatory factors permitted by law. Total compensation may also include variable incentives, bonuses, commissions, or other awards as outlined in the offer of employment. Flagstar provides teammates access to a variety of benefits including medical, dental, vision, life, and disability insurance, as well as a comprehensive leave program. Please click the following link for detailed information: Benefits | Flagstar Bank
Pay Range
$90,597.00 - $150,440.00

Apply