1

Cyber Security Risk Analyst Jobs in Colorado (NOW HIRING)

... } Cyber Security & ITAR Analyst Salary: $100,000 - $130,000 Why This Opportunity Stands Out: • ... risk mitigation strategies from the ground up • Blend hands-on engineering with strategic ...

Lead threat modeling and cybersecurity risk analysis for embedded platform components, including asset identification, attack surface analysis, exploitability assessment, security controls, and ...

Sr DevSecOps Engineer

Lafayette, CO

$119K - $163K/yr

Lead threat modeling and cybersecurity risk analysis for embedded platform components, including asset identification, attack surface analysis, exploitability assessment, security controls, and ...

Sr DevSecOps Engineer

Lafayette, CO

$119K - $163K/yr

Lead threat modeling and cybersecurity risk analysis for embedded platform components, including asset identification, attack surface analysis, exploitability assessment, security controls, and ...

Sr DevSecOps Engineer

Lafayette, CO · On-site

$119K - $163K/yr

... cybersecurity risk analysis for embedded platform components, including asset identification, attack surface analysis, exploitability assessment, security controls, and traceability to risk ...

Analyze security logs and alerts to identify suspicious activity * Assist with incident response ... Perform risk assessments and recommend mitigation strategies * Coordinate pentests and tabletop ...

Analyze security logs and alerts to identify suspicious activity * Assist with incident response ... Perform risk assessments and recommend mitigation strategies * Coordinate pentests and tabletop ...

Analyze security logs and alerts to identify suspicious activity * Assist with incident response ... Perform risk assessments and recommend mitigation strategies * Coordinate pentests and tabletop ...

Conduct risk assessments and vulnerability analyses. * Develop and implement policies, standards ... Mentor cybersecurity and IT staff and help mature processes and frameworks. * Partner with ...

Job Title SENIOR CYBERSECURITY ANALYST Location Colorado Springs, CO US (Primary) Huntsville, AL US ... on system risk posture and mitigation strategies Qualifications: • Secret clearance (required ...

next page

Showing results 1-20

Cyber Security Risk Analyst information

See Colorado salary details

$45.2K

$104.5K

$157.7K

How much do cyber security risk analyst jobs pay per year?

As of Jul 7, 2026, the average yearly pay for cyber security risk analyst in Colorado is $104,521.00, according to ZipRecruiter salary data. Most workers in this role earn between $83,600.00 and $121,400.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive in the Cyber Security Risk Analyst position, and why are they important?

A Cyber Security Risk Analyst requires a solid understanding of information security principles, risk assessment methodologies, and a relevant degree such as computer science or cybersecurity. Familiarity with tools like risk management frameworks (NIST, ISO 27001), vulnerability scanners, and certifications such as CISSP, CISM, or CRISC is common in this role. Strong analytical thinking, attention to detail, effective communication, and problem-solving skills are vital soft skills. These competencies enable analysts to accurately identify, assess, and communicate cyber risks, protecting organizations from evolving threats.

Can you make $200,000 in cyber security?

Cyber Security Risk Analysts with extensive experience, advanced certifications, and specialized skills can potentially earn $200,000 or more annually, especially in high-demand industries or senior roles. Achieving this salary often requires a combination of technical expertise, certifications like CISSP or CISA, and a strong understanding of risk management and security frameworks.

What does a cyber security risk analyst do?

A cyber security risk analyst evaluates an organization’s security posture by identifying vulnerabilities, assessing potential threats, and recommending measures to mitigate risks. They analyze security data, develop risk management strategies, and often use tools like vulnerability scanners and risk assessment frameworks to protect information systems.

What is a Cyber Security Risk Analyst job?

A Cyber Security Risk Analyst is responsible for identifying, assessing, and mitigating cybersecurity risks within an organization. They analyze potential threats, evaluate security controls, and recommend improvements to protect sensitive data and systems. Their role often involves conducting risk assessments, ensuring compliance with industry regulations, and collaborating with IT and security teams to enhance defenses. They also monitor emerging threats and provide strategic insights to minimize vulnerabilities. Ultimately, they help organizations maintain a strong security posture against cyber threats.

What are some typical challenges faced by Cyber Security Risk Analysts on the job?

Cyber Security Risk Analysts commonly face the challenge of keeping up with constantly evolving threats and technology landscapes. They must balance the need for robust security with business objectives, often requiring nuanced decision-making and collaboration across departments. Analysts may also encounter difficulties in communicating complex technical risks to non-technical stakeholders. Successfully navigating these challenges is key to maintaining organizational security and fostering a culture of risk awareness.

How much does a cybersecurity risk analyst make?

A cybersecurity risk analyst's average salary in the United States ranges from $70,000 to $120,000 annually, depending on experience, certifications, and location. Entry-level positions typically start around $60,000, while experienced analysts with certifications like CISSP or CISA can earn over $130,000. The role often requires knowledge of risk assessment tools and security frameworks.

Can you make $500,000 a year in cyber security?

Cyber Security Risk Analysts typically earn between $70,000 and $130,000 annually, depending on experience, certifications, and location. Reaching a $500,000 salary usually requires senior roles such as Chief Information Security Officer (CISO) or executive positions, which involve strategic leadership and extensive industry experience. High salaries in cybersecurity are often associated with leadership, specialized skills, and working in high-demand sectors or organizations.
What are popular job titles related to Cyber Security Risk Analyst jobs in Colorado? For Cyber Security Risk Analyst jobs in Colorado, the most frequently searched job titles are:
What job categories do people searching Cyber Security Risk Analyst jobs in Colorado look for? The top searched job categories for Cyber Security Risk Analyst jobs in Colorado are:
What cities in Colorado are hiring for Cyber Security Risk Analyst jobs? Cities in Colorado with the most Cyber Security Risk Analyst job openings:
Infographic showing various Cyber Security Risk Analyst job openings in Colorado as of July 2026, with employment types broken down into 1% Locum Tenens, 1% Internship, 83% Full Time, 9% Part Time, 1% Temporary, and 5% Contract. Highlights an 81% Physical, 6% Hybrid, and 13% Remote job distribution, with an average salary of $104,521 per year, or $50.3 per hour.
Cybersecurity Engineering Manager with Security Clearance

Cybersecurity Engineering Manager with Security Clearance

KBR

Colorado Springs, CO • On-site

Other

Posted 7 days ago


KBR rating

8.3

Company rating: 8.3 out of 10

Based on 47 frontline employees who took The Breakroom Quiz

97th of 357 rated engineering


Job description

Title:
Cybersecurity Engineering Manager Belong. Connect. Grow. with KBR! KBR's National Security Solutions team provides high-end engineering and advanced technology solutions to our customers in the intelligence and national security communities. Our KBR team in Colorado Springs, CO is seeking a Cybersecurity Engineering Manager, and your contributions will directly impact the success of our projects and the overall business outcomes we aim to achieve. Key Responsibilities: * Securing enterprise network boundaries by managing firewalls, enforcing strict access management, and monitoring high-volume data traffic for anomalies
* Performing analysis at all levels of the lifecycle, ensuring security posture is maintained from initial conceptualization through decommissioning
* Using encryption technology, penetration and vulnerability analysis of various security technologies, and conducting information technology security research
* Helping to direct end-to-end security operations that may include * Risk Management Framework (RMF) * Assessment & Authorization (A&A)
* Supporting Certificate to Field (CtF) activities
* Incident Response (IR)
* Disaster Recovery (DR)
* System hardening
* Defining security requirements
* Vulnerability scanning, research and testing
* Providing analytical support for development of the system security policy * Modernizing legacy infrastructures by integrating cloud native architecture and Zero Trust security features
* Making changes to security blueprints and artifacts * Providing architectural analysis of cyber security features and relating existing system to future needs and trends
* Embedding advanced forensic tools and techniques for attack reconstruction
* Providing engineering recommendations, and resolving integration and testing issues
* Analyzing and solving complex problems, which may include taking new perspectives to identify and recommend solutions/best practices
* May be required to advise multi-disciplinary teams or run projects Work Environment: * Location: On Customer Site
* Travel Requirements: Minimal
* Working Hours: Flexible Qualifications: Required: * Security Clearance: Must possess an active U.S. government TS/SCI security clearance, which only a U.S. citizen can obtain
* Ability to obtain and maintain a JWICS, SAP/SAR clearance
* Education: BS/BA in a related field
* 7-9 years of experience
* Tertiary qualification in Cybersecurity, Computer Science, Engineering, Information Systems, or a related technical discipline
* DODM 8140.03 Cybersecurity Certification (Security+, CEH, CISSP, CISM, C|CISO, etc)
* Minimum 7-9 years' experience in cybersecurity engineering, assurance, or governance within the Defense sector or another highly regulated technical environment.
* Demonstrated knowledge and practical application of Defense and international cybersecurity standards and frameworks * Proven experience leading or contributing to cybersecurity risk assessments, security design reviews, and system accreditation activities under Defense security frameworks
* Strong understanding of secure system architectures, information assurance principles, and cyber risk management across the system lifecycle
* Proficiency with cybersecurity management and monitoring tools such as SIEM, vulnerability management platforms, endpoint detection and response, and secure configuration baselines * Demonstrated knowledge in architecting and managing the Risk Management Framework (RMF) lifecycle, including the authoring and execution of System Security Plans (SSPs) and mission-critical documentation (ISSMP, CCR, SRMP) to secure formal Authorization to Operate (ATO) for Defense programs
* Strong analytical, organizational, and communication skills, with the ability to collaborate effectively across engineering, program management, and customer security teams
* Strong problem-solving skills * Experience with ATO process and procedures * Excellent written and verbal communication skills, with the ability to articulate risk posture, trends, and recommendations to diverse audiences
* Working knowledge of Agile, Agile XP, DevOps, and DevSecOps methodologies * Experience working with version control systems like Gitlab, Jira and Confluence Desired: * Experience in Defense acquisition and sustainment programs across the capability lifecycle, with emphasis on cyber and information assurance requirements
* Knowledge of the Australian Government Information Security Manual (ISM), DISP cyber security controls, and international standards such as ISO/IEC 27001 and NIST SP 800-171
* Experience leading or mentoring cybersecurity professionals, engineers, or small teams in secure system design, implementation, and assessment
* Familiarity with digital engineering environments, secure system architectures, and integration of cybersecurity with model-based systems engineering (MBSE) frameworks
* Experience in assessing, implementing, and continuously improving cybersecurity controls, monitoring systems, and risk management processes within Defense or critical infrastructure systems
* Exposure to contract, accreditation, and compliance management, including reporting to Commonwealth, Prime, or international Defense clients on cybersecurity assurance and risk posture Basic Compensation: $147,900 - $221,800 (Salary Range for Colorado Springs Only) The offered rate will be based on the selected candidate's knowledge, skills, abilities and/or experience and in consideration of internal parity. Additional Compensation: KBR may offer bonuses, commissions, or other forms of compensation to certain job titles or levels, per internal policy or contractual designation. Additional compensation may be in the form of a sign on bonus, relocation benefits, short-term incentives, long-term incentives, or discretionary payments for exceptional performance. Belong, Connect and Grow at KBR At KBR, we are passionate about our people and our Zero Harm culture. These inform all that we do and are at the heart of our commitment to, and ongoing journey toward being a People First company. That commitment is central to our team of team's philosophy and fosters an environment where everyone can Belong, Connect and Grow. We Deliver - Together. KBR is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, disability, sex, sexual orientation, gender identity or expression, age, national origin, veteran status, genetic information, union status and/or beliefs, or any other characteristic protected by federal, state, or local law.

What KBR employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom


KBR logo

About KBR

Sourced by ZipRecruiter

At KBR, we partner with government and industry clients to provide purposeful and comprehensive solutions with an emphasis on efficiency and safety. With a full portfolio of services, proprietary technologies and expertise, our employees are ready to handle projects and missions from planning and design to sustainability and maintenance. Whether at the bottom of the ocean or in outer space, our clients trust us to deliver the impossible on a daily basis.

Industry

It services

Company size

10,000+ Employees

Headquarters location

Houston, TX, US

Year founded

1998