1

Cyber Security Risk Analyst Jobs in Minnesota (NOW HIRING)

Collaborates with senior and lead risk analysts on activities related to risk modeling ... Security & Risk Background:~5+ years of experience in cybersecurity, IT risk, GRC, audit ...

Collaborates with senior and lead risk analysts on activities related to risk modeling ... Security & Risk Background: ~5+ years of experience in cybersecurity, IT risk, GRC, audit ...

next page

Showing results 1-20

Cyber Security Risk Analyst information

See Minnesota salary details

$42.1K

$97.4K

$146.9K

How much do cyber security risk analyst jobs pay per year?

As of Jul 12, 2026, the average yearly pay for cyber security risk analyst in Minnesota is $97,353.00, according to ZipRecruiter salary data. Most workers in this role earn between $77,900.00 and $113,100.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive in the Cyber Security Risk Analyst position, and why are they important?

A Cyber Security Risk Analyst requires a solid understanding of information security principles, risk assessment methodologies, and a relevant degree such as computer science or cybersecurity. Familiarity with tools like risk management frameworks (NIST, ISO 27001), vulnerability scanners, and certifications such as CISSP, CISM, or CRISC is common in this role. Strong analytical thinking, attention to detail, effective communication, and problem-solving skills are vital soft skills. These competencies enable analysts to accurately identify, assess, and communicate cyber risks, protecting organizations from evolving threats.

Can you make $200,000 in cyber security?

Cyber Security Risk Analysts with extensive experience, advanced certifications, and specialized skills can potentially earn $200,000 or more annually, especially in high-demand industries or senior roles. Achieving this salary often requires a combination of technical expertise, certifications like CISSP or CISA, and a strong understanding of risk management and security frameworks.

What does a cyber security risk analyst do?

A cyber security risk analyst evaluates an organization’s security posture by identifying vulnerabilities, assessing potential threats, and recommending measures to mitigate risks. They analyze security data, develop risk management strategies, and often use tools like vulnerability scanners and risk assessment frameworks to protect information systems.

What is a Cyber Security Risk Analyst job?

A Cyber Security Risk Analyst is responsible for identifying, assessing, and mitigating cybersecurity risks within an organization. They analyze potential threats, evaluate security controls, and recommend improvements to protect sensitive data and systems. Their role often involves conducting risk assessments, ensuring compliance with industry regulations, and collaborating with IT and security teams to enhance defenses. They also monitor emerging threats and provide strategic insights to minimize vulnerabilities. Ultimately, they help organizations maintain a strong security posture against cyber threats.

What are some typical challenges faced by Cyber Security Risk Analysts on the job?

Cyber Security Risk Analysts commonly face the challenge of keeping up with constantly evolving threats and technology landscapes. They must balance the need for robust security with business objectives, often requiring nuanced decision-making and collaboration across departments. Analysts may also encounter difficulties in communicating complex technical risks to non-technical stakeholders. Successfully navigating these challenges is key to maintaining organizational security and fostering a culture of risk awareness.

How much does a cybersecurity risk analyst make?

A cybersecurity risk analyst's average salary in the United States ranges from $70,000 to $120,000 annually, depending on experience, certifications, and location. Entry-level positions typically start around $60,000, while experienced analysts with certifications like CISSP or CISA can earn over $130,000. The role often requires knowledge of risk assessment tools and security frameworks.

Can you make $500,000 a year in cyber security?

Cyber Security Risk Analysts typically earn between $70,000 and $130,000 annually, depending on experience, certifications, and location. Reaching a $500,000 salary usually requires senior roles such as Chief Information Security Officer (CISO) or executive positions, which involve strategic leadership and extensive industry experience. High salaries in cybersecurity are often associated with leadership, specialized skills, and working in high-demand sectors or organizations.
What are the most commonly searched types of Cyber Security Risk Analyst jobs in Minnesota? The most popular types of Cyber Security Risk Analyst jobs in Minnesota are:
What job categories do people searching Cyber Security Risk Analyst jobs in Minnesota look for? The top searched job categories for Cyber Security Risk Analyst jobs in Minnesota are:
What cities in Minnesota are hiring for Cyber Security Risk Analyst jobs? Cities in Minnesota with the most Cyber Security Risk Analyst job openings:
Infographic showing various Cyber Security Risk Analyst job openings in Minnesota as of July 2026, with employment types broken down into 1% Locum Tenens, 1% Internship, 86% Full Time, 6% Part Time, 1% Temporary, and 5% Contract. Highlights an 82% Physical, 5% Hybrid, and 13% Remote job distribution, with an average salary of $97,353 per year, or $46.8 per hour.
IT Cyber Security Risk Analyst

IT Cyber Security Risk Analyst

Cretex Companies, Inc.

Elk River, MN

$60K - $91K/yr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Re-posted 8 days ago


Job description

Overview

The Cybersecurity Risk Analyst is a key member of the Digital & IT team, helping drive a culture of cybersecurity, improve risk posture, and enhance user-focused security practices across the enterprise.This individual will serve as a backup to the Security Engineer(s), assisting with incident response, employee support, and cybersecurity projects. They will lead efforts to improve employee cybersecurity awareness, champion a Zero Trust approach to access and identity management, and help ensure business continuity and disaster recovery plans are in place, tested, and improved over time.This role blends hands-on technical support with program management and education, making it ideal for someone who is both people-oriented and detail-driven.

Responsibilities

Essential Job Functions                                                                

Security Operations Support

  • Act as a secondary resource for daily security monitoring, incident response, and vulnerability remediation.
  • Assist in configuring and managing tools related to endpoint protection, logging, email security, and access control.
  • Help execute security-related projects, such as patching programs, encryption rollouts, and policy enforcement.

Access Management & Zero Trust Initiatives

  • Help assess and improve identity and access management practices across systems.
  • Partner with IT teams to implement role-based access controls and Just-In-Time access principles.
  • Lead projects and process design supporting Zero Trust architecture, especially for remote access and SaaS tools.
  • Participate in account reviews and privilege audits to ensure appropriate access levels.

Cybersecurity Awareness & Culture

  • Develop and lead training and awareness campaigns to reduce employee-related cyber risk.
  • Manage phishing simulation programs and track effectiveness.
  • Deliver cybersecurity onboarding for new employees and ongoing training for all staff.
  • Serve as the go-to contact for employee questions related to phishing, passwords, or safe technology use.

Risk Management & Resilience

  • Own the development and maintenance of Business Continuity and Disaster Recovery plans.
  • Facilitate tabletop exercises and capture lessons learned to enhance resilience.
  • Collaborate with IT and business leaders to identify and reduce operational risk.
  • Contribute to regulatory, insurance, and customer security documentation as needed.

Governance, Policy, and Metrics

  • Assist in drafting and maintaining cybersecurity policies and procedures.
  • Track and report on training compliance, incidents, and risk KPIs.
  • Stay current on emerging cyber threats and security trends, providing proactive recommendations.
  • Coordinate with external vendors (e.g., MDR, IAM, phishing) and internal teams to support tool effectiveness and projects.
Qualifications

Minimum Requirements, Education & Experience (incl. KSA's and certifications)

  • Bachelor's degree in Cybersecurity, Information Technology, or a related field
  • 2+ years in IT or cybersecurity roles, ideally with experience in user support, IAM, or risk management
  • Excellent communication and teaching skills; comfortable presenting to technical and non-technical audiences
  • Familiarity with Zero Trust concepts and tools (e.g., MFA, identity providers, conditional access)
  • Working knowledge of phishing, endpoint protection, and threat mitigation techniques
  • Strong organizational and documentation skills

Desirable Criteria & Qualifications

  • Security certifications (e.g., Security+, SSAP, GSEC, or similar)
  • Experience with identity & access management tools (e.g., Azure AD, Okta, Duo, etc.)
  • Experience managing phishing simulation platforms (Mimecast, KnowBe4)
  • Familiarity with business continuity planning and disaster recovery best practices
  • Experience conducting or facilitating tabletop exercises
  • Exposure to NIST, ISO 27001, or CIS Controls frameworks
  • Manufacturing, regulated industry, or multi-site IT experience

#LI-JW1

Pay RangeUSD $60,800.00 - USD $91,200.00 /Yr.Pay Range Details

This pay range reflects the base hourly rate or annual salary for positions within this job grade, based on our market-based pay structures. Actual compensation will depend on factors such as skills, relevant experience, education, internal equity, business needs, and local market conditions. While the full hiring range is shared for transparency, offers are rarely made at the minimum or maximum of the range.

Company Benefits

All Employees:

Our 401k retirement savings plan with a company match contribution; onsite health clinics, discretionary holiday bonus program (based on years of service), Cretex University, 24/7 employee assistance program with access to five confidential visits with a licensed counselor at no cost, wellness program with incentives, an employee death benefit, and employee sick and safe leave are available to all Cretex employees. 

20+hours:

Cretex's medical benefit package includes: comprehensive medical insurance with access to virtual providers; dental insurance (Little Partners Dental benefit covers services 100 percent for children 12 and younger when seen by a Health Partners in network provider); vision insurance; a pre-tax health savings account, healthcare and dependent care pre-tax reimbursement accounts; paid holidays, paid time off; and our discretionary profit sharing program are available to employees working 20+ hours/week. 

30+ hours:

Parental Leave, accident and critical illness benefits, optional employee, spouse, and child life; short and long term disability; company provided life insurance; and tuition assistance programs are available to employees working 30+ hours per week. 

(Some benefits are subject to eligibility criteria.)

Applicants will receive consideration for employment regardless of their race, color, creed, religion, national origin, sex, sexual orientation, gender identity, disability, age, veteran status, marital status, family status, status with regard to public assistance, or any other protected status as required by law.  

Our company uses E-Verify to confirm the employment and eligibility of all newly hired employees. To learn more about E-Verify, including your rights and responsibilities, please visit www.dhs.gov/E-Verify.

Employment Type: FULL_TIME