... risk program ... This role focuses on identifying, assessing, and managing cyber risks across internal systems ...
... risk program ... This role focuses on identifying, assessing, and managing cyber risks across internal systems ...
Flagstar Bank is seeking a Cloud/Cyber Risk Management Analyst Sr to join their Technology, Cyber, Third Party Risk Management & Resilience Risk Management team. This role involves supporting the ...
Flagstar Bank is seeking a Cloud/Cyber Risk Management Analyst Sr to join their Technology, Cyber, Third Party Risk Management & Resilience Risk Management team. This role involves supporting the ...
Cyber Risk Analyst
Austin, TX · Hybrid
Experience or strong interest in cybersecurity human risk management. * Demonstrated ability to ... human cyber risk-today and into the future. Benefits you can count on: * Day 1 Benefits: medical ...
Cyber Risk Analyst
Austin, TX · Hybrid
Experience or strong interest in cybersecurity human risk management. * Demonstrated ability to ... human cyber risk-today and into the future. Benefits you can count on: * Day 1 Benefits: medical ...
Summary The individual in this position will work as a technical manager of the Cyber Risk Management (CRM) Team within CERT's Cyber Risk & Resilience Directorate. This candidate will be responsible ...
Summary The individual in this position will work as a technical manager of the Cyber Risk Management (CRM) Team within CERT's Cyber Risk & Resilience Directorate. This candidate will be responsible ...
Manager, Tech & Cyber Risk | Retail Bank As a member of the Technology & Cyber Risk Management team within Capital One's Business Risk Office, you will apply your analytical, risk management, and ...
Manager, Tech & Cyber Risk | Retail Bank As a member of the Technology & Cyber Risk Management team within Capital One's Business Risk Office, you will apply your analytical, risk management, and ...
Manager, Tech & Cyber Risk | Retail Bank As a member of the Technology & Cyber Risk Management team within Capital One's Business Risk Office, you will apply your analytical, risk management, and ...
Manager, Tech & Cyber Risk | Retail Bank As a member of the Technology & Cyber Risk Management team within Capital One's Business Risk Office, you will apply your analytical, risk management, and ...
Risk Manager
Miami, FL · On-site
Risk Manager Reports To: Chief Risk Officer Employment Status: Full-Time, Exempt Office Location ... Provide independent second-line oversight of cyber and information security risk internally and ...
Risk Manager
Miami, FL · On-site
Risk Manager Reports To: Chief Risk Officer Employment Status: Full-Time, Exempt Office Location ... Provide independent second-line oversight of cyber and information security risk internally and ...
Risk Manager
Miami, FL · On-site
Risk Manager Reports To: Chief Risk Officer Employment Status: Full-Time, Exempt Office Location ... Provide independent second-line oversight of cyber and information security risk internally and ...
Risk Manager
Miami, FL · On-site
Risk Manager Reports To: Chief Risk Officer Employment Status: Full-Time, Exempt Office Location ... Provide independent second-line oversight of cyber and information security risk internally and ...
Risk Manager Reports To: Chief Risk Officer Employment Status: Full-Time, Exempt Office Location ... Provide independent second-line oversight of cyber and information security risk internally and ...
Quick apply
Risk Manager Reports To: Chief Risk Officer Employment Status: Full-Time, Exempt Office Location ... Provide independent second-line oversight of cyber and information security risk internally and ...
End-to-End Risk Management & Execution * Drive end-to-end technology and cyber risk assessments, managing the lifecycle from tactical implementation and ongoing evaluation through to remediation ...
End-to-End Risk Management & Execution * Drive end-to-end technology and cyber risk assessments, managing the lifecycle from tactical implementation and ongoing evaluation through to remediation ...
End-to-End Risk Management & Execution * Drive end-to-end technology and cyber risk assessments, managing the lifecycle from tactical implementation and ongoing evaluation through to remediation ...
End-to-End Risk Management & Execution * Drive end-to-end technology and cyber risk assessments, managing the lifecycle from tactical implementation and ongoing evaluation through to remediation ...
End-to-End Risk Management & Execution * Drive end-to-end technology and cyber risk assessments, managing the lifecycle from tactical implementation and ongoing evaluation through to remediation ...
End-to-End Risk Management & Execution * Drive end-to-end technology and cyber risk assessments, managing the lifecycle from tactical implementation and ongoing evaluation through to remediation ...
Director, Technology & Cyber Risk Metrics Capital One is one of the fastest growing organizations ... Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The ~200 ...
Director, Technology & Cyber Risk Metrics Capital One is one of the fastest growing organizations ... Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The ~200 ...
Director, Technology & Cyber Risk Metrics Capital One is one of the fastest growing organizations ... Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The ~200 ...
Director, Technology & Cyber Risk Metrics Capital One is one of the fastest growing organizations ... Technology & Data Risk Management (TDRM) is a small organization that packs a big punch. The ~200 ...
Senior Analyst - Cyber Risk Advisory AGRC
Manhattan, NY · Hybrid
$63K - $90K/yr
Senior Analyst - Cyber Risk Advisory AGRC What if your cyber risk expertise shaped enterprisewide ... Proven ability to manage multiple concurrent priorities * Strong communication and problem-solving ...
Senior Analyst - Cyber Risk Advisory AGRC
Manhattan, NY · Hybrid
$63K - $90K/yr
Senior Analyst - Cyber Risk Advisory AGRC What if your cyber risk expertise shaped enterprisewide ... Proven ability to manage multiple concurrent priorities * Strong communication and problem-solving ...
Proficiency in Cyber and Technology risk management program development and management are key to success in this role. The successful candidate will be an experienced risk management professional ...
Proficiency in Cyber and Technology risk management program development and management are key to success in this role. The successful candidate will be an experienced risk management professional ...
Proficiency in Cyber and Technology risk management program development and management are key to success in this role. The successful candidate will be an experienced risk management professional ...
Proficiency in Cyber and Technology risk management program development and management are key to success in this role. The successful candidate will be an experienced risk management professional ...
This individual will have the ability to use technical skills and cyber subject matter expertise to provide effective oversight, credible challenge, and expert advice to help manage and control risk ...
This individual will have the ability to use technical skills and cyber subject matter expertise to provide effective oversight, credible challenge, and expert advice to help manage and control risk ...
Proficiency in Cyber and Technology risk management program development and management are key to success in this role. The successful candidate will be an experienced risk management professional ...
Proficiency in Cyber and Technology risk management program development and management are key to success in this role. The successful candidate will be an experienced risk management professional ...
Senior Analyst - Cyber Risk Advisory AGRC
Chicago, IL · Hybrid
$63K - $90K/yr
Senior Analyst - Cyber Risk Advisory AGRC What if your cyber risk expertise shaped enterprisewide ... Proven ability to manage multiple concurrent priorities * Strong communication and problem-solving ...
Senior Analyst - Cyber Risk Advisory AGRC
Chicago, IL · Hybrid
$63K - $90K/yr
Senior Analyst - Cyber Risk Advisory AGRC What if your cyber risk expertise shaped enterprisewide ... Proven ability to manage multiple concurrent priorities * Strong communication and problem-solving ...
Cyber Risk Manager information
See salary details
$51.5K - $62.3K
4% of jobs
$62.3K - $73K
6% of jobs
$73K - $83.8K
11% of jobs
$87.9K is the 25th percentile. Wages below this are outliers.
$83.8K - $94.6K
11% of jobs
The median wage is $103.2K / yr.
$94.6K - $105.4K
23% of jobs
$105.4K - $116.1K
13% of jobs
$123.2K is the 75th percentile. Wages above this are outliers.
$116.1K - $126.9K
12% of jobs
$126.9K - $137.7K
8% of jobs
$137.7K - $148.5K
6% of jobs
$148.5K - $159.2K
4% of jobs
$159.2K - $170K
2% of jobs
$51.5K
$111.6K
$170K
How much do cyber risk manager jobs pay per year?
As of Jun 8, 2026, the average yearly pay for cyber risk manager in the United States is $111,556.00, according to ZipRecruiter salary data. Most workers in this role earn between $90,000.00 and $129,000.00 per year, depending on experience, location, and employer.
How does a Cyber Risk Manager typically collaborate with other departments to strengthen an organization's cybersecurity posture?
A Cyber Risk Manager frequently works with IT, legal, compliance, and business units to identify, assess, and mitigate cyber risks across the organization. This collaboration involves leading risk assessments, facilitating security awareness training, and ensuring that cybersecurity policies align with business objectives. Regular cross-department meetings and incident response simulations are common, fostering a shared responsibility for cyber resilience. Effective communication and relationship-building skills are essential in this role to bridge technical and non-technical teams.
What is the difference between Cyber Risk Manager vs Cybersecurity Analyst?
| Aspect | Cyber Risk Manager | Cybersecurity Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CISSP, CEH |
| Work Environment | Risk assessment, policy development, strategic planning | Monitoring security systems, incident response, vulnerability testing |
| Employer & Industry Usage | Financial, healthcare, large enterprises | IT departments, security firms, corporate environments |
The Cyber Risk Manager focuses on identifying, assessing, and mitigating organizational cyber risks through strategic planning and policy development. In contrast, the Cybersecurity Analyst primarily monitors security systems, responds to incidents, and tests vulnerabilities. Both roles require certifications like CISSP, but their daily tasks and focus areas differ significantly, with the manager taking a broader, strategic approach and the analyst handling operational security tasks.
What are the key skills and qualifications needed to thrive as a Cyber Risk Manager, and why are they important?
To thrive as a Cyber Risk Manager, you need a solid background in information security, risk assessment, and compliance, often supported by a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), GRC tools, and relevant certifications like CISSP or CISM is typically required. Excellent analytical thinking, communication, and leadership skills set top performers apart in this role. These skills are crucial for identifying risks, implementing effective controls, and ensuring the organization’s digital assets remain secure and compliant.
What does a Cyber Risk Manager do?
A Cyber Risk Manager is responsible for identifying, assessing, and mitigating risks related to information technology and cybersecurity within an organization. They develop and implement strategies to protect sensitive data and systems from cyber threats, ensure compliance with regulations, and work closely with other departments to minimize vulnerabilities. Their role often includes conducting risk assessments, managing incident response plans, and advising leadership on cybersecurity best practices.
More about Cyber Risk Manager jobs
What cities are hiring for Cyber Risk Manager jobs? Cities with the most Cyber Risk Manager job openings:
What states have the most Cyber Risk Manager jobs? States with the most job openings for Cyber Risk Manager jobs include:
What job categories do people searching Cyber Risk Manager jobs look for? The top searched job categories for Cyber Risk Manager jobs are:
Other
Posted 25 days ago
Job description
/* deleted */
Cybersecurity Risk Manager
Overview
We are looking for a Cybersecurity Risk Manager to lead and strengthen our enterprise risk program. This role focuses on identifying, assessing, and managing cyber risks across internal systems, business processes, and third-party ecosystems. The ideal candidate is hands-on, structured, and comfortable working with both technical teams and business stakeholders.
Key Responsibilities
Risk Assessments
Conduct end-to-end cybersecurity risk assessments across applications, infrastructure, and business processes
Identify vulnerabilities, threats, and control gaps, and translate findings into actionable remediation plans
Work with engineering and business teams to validate risks and track mitigation progress
Threat Modeling
Lead threat modeling exercises for new and existing systems
Identify attack vectors, trust boundaries, and potential impact scenarios
Partner with engineering teams to embed secure design practices early in the development lifecycle
Third-Party Cyber Risk
Assess and monitor cybersecurity risks associated with vendors and external partners
Review security questionnaires, audit reports, and contractual security requirements
Collaborate with procurement and legal teams to ensure risk is properly managed and documented
GRC and Risk Governance
Support and maintain governance, risk, and compliance processes aligned with regulatory and internal requirements
Ensure policies, standards, and control frameworks are effectively implemented and followed
Contribute to audits, regulatory reviews, and control testing activities
Risk Register Management
Maintain and continuously update the enterprise cybersecurity risk register
Ensure risks are clearly documented, categorized, and prioritized based on impact and likelihood
Track remediation actions and ensure accountability across stakeholders
Reporting and Communication
Develop clear, concise risk reports for technical teams and senior leadership
Translate complex technical risks into business language and impact
Provide regular updates on risk posture, trends, and remediation status
Required Qualifications
Solid experience in cybersecurity risk management, GRC, or related functions
Hands-on experience conducting risk assessments and threat modeling
Experience managing third-party or vendor cyber risk programs
Strong understanding of security frameworks such as NIST, ISO 27001, or similar
Ability to maintain structured risk registers and track remediation efforts
Strong communication skills with the ability to engage both technical and non-technical stakeholders
Preferred Qualifications
Strong risk qualification and prioritization skills, with the ability to distinguish real risk from noise
Experience in regulated environments such as finance, healthcare, or large enterprises
Familiarity with audit processes and control validation
Experience working with cross-functional teams across legal, compliance, and technology
Certifications such as CISSP, CISM, CRISC, or similar