1

Cyber Risk Jobs in Oklahoma (NOW HIRING)

Our services cover corporate governance, sustainability, cyber risk, and fund intelligence. Majority-owned by Deutsche Borse Group, ISS STOXX has over 3,400 professionals in 33 locations worldwide ...

$200K - $250K/yr

Ensure integration of cyber resilience into broader enterprise risk management and IT security functions 3. Business Continuity and Disaster Recovery (BC/DR) Develop and maintain enterprise-wide ...

next page

Showing results 1-20

Cyber Risk information

What are 5 careers in cybersecurity?

Five common careers in cybersecurity include Security Analyst, Penetration Tester, Security Engineer, Incident Responder, and Security Architect. These roles involve protecting systems, identifying vulnerabilities, and implementing security measures, often requiring certifications like CISSP or CEH and familiarity with tools such as firewalls and intrusion detection systems.

How much does a cyber risk analyst make?

A cyber risk analyst typically earns between $70,000 and $120,000 annually, depending on experience, certifications, and location. Entry-level positions may start lower, while experienced analysts with certifications like CISSP or CISA can earn higher salaries, especially in industries with high cybersecurity demands.

What is the difference between Cyber Risk vs Cyber Security Analyst?

AspectCyber RiskCyber Security Analyst
Primary FocusIdentifying, assessing, and managing cybersecurity risks and vulnerabilitiesMonitoring, analyzing, and responding to security threats and incidents
Required CredentialsCertifications like CISSP, CISM, CRISC; risk management experienceCertifications like CompTIA Security+, CISSP; technical security skills
Work EnvironmentRisk management teams, compliance departments, strategic planningSecurity operations centers, IT teams, incident response teams
Industry UsageUsed across finance, healthcare, government for risk mitigationUsed in IT and cybersecurity departments for threat defense

While both roles focus on cybersecurity, Cyber Risk professionals primarily assess and manage potential threats at a strategic level, whereas Cyber Security Analysts focus on technical threat detection and response. Understanding these differences helps organizations allocate resources effectively and align roles with their security objectives.

Can I make $200,000 a year in cyber security?

Cyber risk professionals, including cybersecurity analysts and managers, can earn $200,000 or more annually with extensive experience, advanced certifications like CISSP, and leadership roles. High salaries are often associated with senior positions, specialized skills, and working in industries with high security demands.

What are the key skills and qualifications needed to thrive as a Cyber Risk professional, and why are they important?

To thrive as a Cyber Risk professional, you need a solid understanding of information security principles, risk assessment methodologies, and regulatory compliance frameworks, often supported by a degree in cybersecurity, IT, or related fields. Familiarity with tools such as SIEM platforms, vulnerability scanners, and relevant certifications like CISSP, CISM, or CRISC is typically required. Strong analytical thinking, attention to detail, and effective communication skills help you identify risks and convey complex security issues to diverse stakeholders. These competencies are crucial for protecting organizational assets, ensuring compliance, and proactively managing evolving cyber threats.

What is cyber risk?

Cyber risk refers to the potential for financial loss, disruption, or damage to an organization due to the failure of its information technology systems. This includes threats such as data breaches, hacking, malware, ransomware, and unauthorized access to sensitive information. Managing cyber risk involves identifying vulnerabilities, implementing security measures, and creating response plans to minimize the impact of cyber incidents. Organizations often employ specialists to assess and mitigate these risks, ensuring the safety of their digital assets.

Is cybersecurity a risky career?

Cyber Risk professionals work to identify and mitigate security threats, which involves handling sensitive information and responding to cyber incidents. The role can be high-pressure and requires staying current with evolving threats, but it generally offers strong job security and growth opportunities due to increasing cybersecurity needs across industries.

What are some typical challenges faced by professionals in a Cyber Risk role, and how can they be addressed?

Professionals in Cyber Risk roles often encounter challenges such as rapidly evolving cyber threats, balancing business needs with security requirements, and managing cross-departmental communication. Staying current with emerging risks and regulatory changes requires continuous learning and adaptability. Effective collaboration with IT, legal, and business units is crucial to implement practical risk mitigation strategies. Building strong relationships and clear communication channels within the organization can help address these challenges and ensure cyber risk is managed proactively.
What are the most commonly searched types of Cyber Risk jobs in Oklahoma? The most popular types of Cyber Risk jobs in Oklahoma are:

Information Security Client Compliance Analyst

Investor Economics

Norman, OK • Hybrid

Full-time

Medical, Dental, Vision, Retirement, PTO

Posted 20 days ago


Job description

Let's be #BrilliantTogether

We are looking for a Client Compliance Analystto join our Information Security Governance, Risk, and Compliance (GRC) function. This role plays a key part in supporting our clients and internal teams by coordinating information security due diligence activities in a professional, clear, and serviceoriented manner.
This is a customerfacing coordination role, ideal for someone who enjoys working with people, managing requests, and ensuring a smooth, positive client experience. While prior knowledge of information security or GRC is an advantage, a strong willingness to learn and develop in this area is essential.
Key Responsibilities
Client & Stakeholder Communication
  • Act as the primary point of contact for client information security due diligence requests
  • Communicate clearly and professionally with clients, vendors, and internal stakeholders
  • Explain information security concepts and processes in plain, nontechnical language
  • Track requests and provide regular updates to ensure expectations are managed effectively
Due Diligence Coordination
  • Coordinate the completion of client security questionnaires and due diligence requests
  • Gather required information from internal teams (e.g. IT, Security, Legal, Compliance)
  • Ensure responses are accurate, consistent, and submitted on time
  • Maintain records of completed due diligence activities and supporting evidence
Process & Quality Improvement
  • Help improve templates, FAQs, and standard responses to enhance efficiency and clarity
  • Identify common client questions or pain points and suggest improvements
  • Support broader GRC initiatives where needed
Skills & Experience
Essential:
  • Excellent written and verbal communication skills
  • Strong customer service mindset, with a professional and helpful approach
  • Highly organized, with good attention to detail
  • Ability to manage multiple requests and deadlines simultaneously
  • Comfortable working with a variety of stakeholders at different levels
  • 2- 5 years of prior experience, preferably in an information security or client facing role.
  • Bachelor's degree preferred, equivalent experience and/or certifications also considered.
Preferred:
  • Basic understanding of information security, risk, compliance, or GRC concepts
  • Experience responding to client questionnaires or thirdparty assessments
  • Familiarity with standards such as ISO 27001, SOC 2, orsupplier due diligence processes
Learning & Development
  • Full support will be provided to build knowledge in information security and GRC
  • Ideal for someone early in their infosec or risk career, or transitioning into the field
  • A positive attitude and willingness to learn are more important than deep technical expertise
Who This Role Suits
This role is well suited to someone who:
  • Enjoys working in a clientfacing or serviceoriented role
  • Is confident communicating complex topics in a clear, friendly way
  • Wants to develop a career in information security without needing a technical background

#LI-JB1 #ASSOCIATE

What You Can Expect from Us

At ISS STOXX, our people are our driving force. We are committed to building a culture that values diverse skills, perspectives, and experiences. We hire the best talent in our industry and empower them with the resources, support, and opportunities to grow-professionally and personally.

Together, we foster an environment that fuels creativity, drives innovation, and shapes our future success.

Let's empower, collaborate, and inspire.

Let's be #BrilliantTogether.

About ISS STOXX

ISS STOXX GmbH is a leading provider of research and technology solutions for the financial market. Established in 1985, we offer top-notch benchmark and custom indices globally, helping clients identify investment opportunities and manage portfolio risks. Our services cover corporate governance, sustainability, cyber risk, and fund intelligence. Majority-owned by Deutsche Borse Group, ISS STOXX has over 3,400 professionals in 33 locations worldwide, serving around 6,400 clients, including institutional investors and companies focused on ESG, cyber, and governance risk. Clients trust our expertise to make informed decisions for their stakeholders' benefit.

Visit our website: https://www.issgovernance.com

View additional open roles: https://www.issgovernance.com/join-the-iss-team/

We are proud to offer the following featured benefits

  • Medical, Dental, and Vision coverage
  • 401(k) with a company match up to 9%, including a Safe Harbor contribution
  • Flexible Spending Account (FSA) and commuter benefit programs
  • Generous paid time off
  • Volunteer Day
  • Paid parental leave
  • Hybrid working options

Institutional Shareholder Services Inc. (ISS) is an equal employment opportunity employer and does not discriminate against any employee or applicant because of race, color, ethnicity, creed, religion, sex, age, height, weight, citizenship status, national origin, social origin, sexual orientation, gender identity or gender expression, pregnancy status, marital status, familial status, mental or physical disability, veteran status, military service or status, genetic information, or any other characteristic protected by law (referred to as "protected status"). All activities including, but not limited to, recruiting and hiring, recruitment advertising, promotions, performance appraisals, training, job assignments, compensation, demotions, transfers, terminations (including layoffs), benefits, and other terms, conditions, and privileges of employment, are and will be administered on a non-discriminatory basis, consistent with all applicable federal, state, and local requirements. For more information, please view https://www.dol.gov/agencies/ofccp/posters.

ISS is committed to complying fully with the Americans with Disabilities Act (ADA) and other applicable federal, state, and local laws. ISS is also committed to ensuring equal opportunity in employment for qualified person with disabilities. ISS prohibits discrimination against applicants and employees on the basis of disability as it pertains to the job application and hiring process and other terms and conditions of employment. If you are an individual with a disability and would like to request a reasonable accommodation as part of the employment selection process, please contact ISS_Careers_Accommodations@issgovernance.com. This email is created exclusively to assist disabled job seekers where disability prevents them from being able to apply online. Only messages left for this purpose will be returned. Messages sent for other purposes, such as following up on an application or other technical issues not related to a disability, will not receive a response.