1

Cyber Security Risk Analyst Jobs in California (NOW HIRING)

Cybersecurity Assessment Lead

Coronado, CA · On-site

$117K - $159K/yr

Analyze testing results and provide cybersecurity risk assessments to the Government SCA and Authorizing Official. * RMF Package Development and Reporting * Oversee preparation and delivery of RMF ...

Checkr, Inc. seeks Senior Risk Analyst in San Francisco, CA Job Duties ... Manage and mature Checkr's fraud and cybersecurity risk programs. Focus on product fraud risks and ...

Cybersecurity Assessment Lead

Coronado, CA

$117K - $159K/yr

This position leads independent security control validation activities, ensures RMF packages are complete and compliant, and provides cybersecurity risk analysis to the Government Security Control ...

next page

Showing results 1-20

Cyber Security Risk Analyst information

See California salary details

$42.4K

$98.1K

$148K

How much do cyber security risk analyst jobs pay per year?

As of Jun 30, 2026, the average yearly pay for cyber security risk analyst in California is $98,098.00, according to ZipRecruiter salary data. Most workers in this role earn between $78,500.00 and $114,000.00 per year, depending on experience, location, and employer.

Is 40 too old for cyber security?

Cyber Security Risk Analysts can be successful at any age, as the field values skills, experience, and continuous learning. Many professionals transition into cybersecurity later in their careers, often obtaining certifications like CISSP or CompTIA Security+ to enhance their qualifications. Age is generally not a barrier if you have relevant skills and stay current with industry developments.

Is SOC an entry level job?

A Security Operations Center (SOC) analyst role is typically considered an entry-level or early-career position in cybersecurity, often requiring foundational knowledge of security tools, monitoring, and incident response. However, some SOC roles may require prior experience or certifications like CompTIA Security+ or Cisco CCNA, depending on the organization's complexity. Advancement usually involves gaining experience and additional certifications in cybersecurity.

What are the key skills and qualifications needed to thrive in the Cyber Security Risk Analyst position, and why are they important?

A Cyber Security Risk Analyst requires a solid understanding of information security principles, risk assessment methodologies, and a relevant degree such as computer science or cybersecurity. Familiarity with tools like risk management frameworks (NIST, ISO 27001), vulnerability scanners, and certifications such as CISSP, CISM, or CRISC is common in this role. Strong analytical thinking, attention to detail, effective communication, and problem-solving skills are vital soft skills. These competencies enable analysts to accurately identify, assess, and communicate cyber risks, protecting organizations from evolving threats.

What is a Cyber Security Risk Analyst job?

A Cyber Security Risk Analyst is responsible for identifying, assessing, and mitigating cybersecurity risks within an organization. They analyze potential threats, evaluate security controls, and recommend improvements to protect sensitive data and systems. Their role often involves conducting risk assessments, ensuring compliance with industry regulations, and collaborating with IT and security teams to enhance defenses. They also monitor emerging threats and provide strategic insights to minimize vulnerabilities. Ultimately, they help organizations maintain a strong security posture against cyber threats.

What are some typical challenges faced by Cyber Security Risk Analysts on the job?

Cyber Security Risk Analysts commonly face the challenge of keeping up with constantly evolving threats and technology landscapes. They must balance the need for robust security with business objectives, often requiring nuanced decision-making and collaboration across departments. Analysts may also encounter difficulties in communicating complex technical risks to non-technical stakeholders. Successfully navigating these challenges is key to maintaining organizational security and fostering a culture of risk awareness.

What does a cybersecurity risk analyst do?

A cybersecurity risk analyst evaluates an organization’s security posture by identifying vulnerabilities, assessing potential threats, and recommending measures to mitigate risks. They often use tools like risk assessment frameworks and require knowledge of security protocols, compliance standards, and threat intelligence. Their work helps organizations protect sensitive data and maintain secure systems.

Can you make $500,000 a year in cyber security?

Cyber Security Risk Analysts typically earn between $70,000 and $130,000 annually, depending on experience, certifications, and location. Reaching a $500,000 salary generally requires senior roles such as Chief Information Security Officer (CISO) or executive positions, which involve broader responsibilities and leadership skills. High salaries in cybersecurity are often associated with extensive experience, advanced certifications, and strategic management roles.
What are the most commonly searched types of Cyber Security Risk Analyst jobs in California? The most popular types of Cyber Security Risk Analyst jobs in California are:
What are popular job titles related to Cyber Security Risk Analyst jobs in California? For Cyber Security Risk Analyst jobs in California, the most frequently searched job titles are:
What job categories do people searching Cyber Security Risk Analyst jobs in California look for? The top searched job categories for Cyber Security Risk Analyst jobs in California are:
What cities in California are hiring for Cyber Security Risk Analyst jobs? Cities in California with the most Cyber Security Risk Analyst job openings:
Infographic showing various Cyber Security Risk Analyst job openings in California as of June 2026, with employment types broken down into 100% Full Time. Highlights an 100% Hybrid job distribution, with an average salary of $98,098 per year, or $47.2 per hour.

CISSP-Cyber Security Analyst

TECHOAUTH SOLUTIONS LLC

Rancho Cucamonga, CA • Hybrid

$65/hr

Full-time

Posted 21 days ago


Key responsibilities

  • Lead the system-wide cybersecurity compliance program, ensuring IT activities, processes, and procedures meet regulatory and industrial requirements.

  • Develop and implement effective policies and practices to safeguard IEHP digital assets and prevent unauthorized access.

  • Perform security review in technology products and solutions, identify gaps in control design and operation, and develop remediation plan.


Job description

Location: Rancho Cucamonga, California, United States (Hybrid)
Need W2 candidates.
Cybersecurity Risk Analyst
The Cybersecurity Risk Analyst is a cybersecurity program and control assessor and advisor in governance, risk, and compliance functions. This position is responsible for the assessing and advancing of IEHPs cybersecurity posture and capability to safeguard its digital assets.
The purpose of this position is to provide highly skilled technical and cyber expertise for development and implementation of the enterprise information security program. Responsibilities require leadership and project management experience, as well as expertise to ensure effective system-wide security capability analysis; best practices and assurance testing; risk assessment; awareness and education; and development of security control portfolio.
Duties and Responsibilities

  1. Lead the system-wide cybersecurity compliance program, ensuring IT activities, processes, and procedures meet regulatory and industrial requirements.
  2. Develop and implement effective policies and practices to safeguard IEHP digital assets and prevent unauthorized access.
  3. Recommend process improvement and technical directions in matters relating to program maturity, incident investigation, threat management, and control assessment.
  4. Organize the collection of data from required security artifacts and questionnaires for industry framework and other related industrial and cybersecurity standards and mapping this to the company control portfolio.
  5. Build and maintain cybersecurity metrics for all levels of management focused on trending and tracking reports to demonstrate compliance and improve resilience.
  6. Analyze risk associated with technology stack and supply chain and work with business leaders to proactively manage exceptions.
  7. Develop program strategies to improve cyber hygiene and address awareness and training for all stakeholders.
  8. Perform security review in technology products and solutions (including security tools and systems), identify gaps in control design and operation, and develop remediation plan.
  9. Provide advice and input for IT disaster recovery, contingency, and continuity of operations plans.
  10. Define policy and standards for data protection and recovery.
  11. Perform access & privilege review for both machine and human accounts.
  12. Properly document all systems security implementation, operations, and maintenance activities and update as necessary.
  13. Provide input to risk management process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).

Experience Requirements

  1. Five (5) years in cybersecurity with focus on governance, compliance and risk management.
  2. Bachelors degree in Information Systems Security or in a computer related field or similar technical field from an accredited institution required.
  3. Certified Information Systems Security Professional (CISSP) or other industrial and vendor security certifications preferred.

Knowledge

Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy.
hashim@techoauth.com