1

Cyber Security Risk Analyst Jobs in Ontario (NOW HIRING)

The Cybersecurity Analyst leverages SIEM, MDR, EDR, RMM, monitoring, and automation platforms ... Participate in risk assessments and security reviews. Client Support & Escalation * Assisttechnical ...

The Cybersecurity Analyst leverages SIEM, MDR, EDR, RMM, monitoring, and automation platforms ... Participate in risk assessments and security reviews. Client Support & Escalation * Assisttechnical ...

Lead Analyst - Cybersecurity (SITRM) Location: Krakow, Poland (Hybrid) Type: Full-time employment ... Execute security risk assessment and analysis of suppliers across all stages of the supplier ...

Lead and perform OT cybersecurity assessments, risk analyses and compliance audits (e.g., NERC CIP, NIST CSF and IEC 62443) * Design and implement cybersecurity solutions for industrial control ...

Partner with Operations leadership and the Magna Cybersecurity teams to perform cybersecurity risk ... Develop justifications and cost/benefit analyses for spending and initiatives. * Identify industry ...

Senior Analyst - Cybersecurity (M&A), SITRM Location: Krakow, Poland (Hybrid) Type: Full-time ... Strong experience in cybersecurity M&A integration, cybersecurity or technology audit or risk ...

... analyze findings and drive remediation * Advise product, engineering, quality, and regulatory stakeholders on practical, risk-based security decisions * Strengthen cybersecurity capability through ...

next page

Showing results 1-20

Cyber Security Risk Analyst information

See Ontario salary details

$71K

$115.6K

$170.5K

How much do cyber security risk analyst jobs pay per year?

As of Jul 16, 2026, the average yearly pay for cyber security risk analyst in Ontario is $115,619.00, according to ZipRecruiter salary data. Most workers in this role earn between $95,000.00 and $132,500.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive in the Cyber Security Risk Analyst position, and why are they important?

A Cyber Security Risk Analyst requires a solid understanding of information security principles, risk assessment methodologies, and a relevant degree such as computer science or cybersecurity. Familiarity with tools like risk management frameworks (NIST, ISO 27001), vulnerability scanners, and certifications such as CISSP, CISM, or CRISC is common in this role. Strong analytical thinking, attention to detail, effective communication, and problem-solving skills are vital soft skills. These competencies enable analysts to accurately identify, assess, and communicate cyber risks, protecting organizations from evolving threats.

Can you make $200,000 in cyber security?

Cyber Security Risk Analysts with extensive experience, advanced certifications, and specialized skills can potentially earn $200,000 or more annually, especially in high-demand industries or senior roles. Achieving this salary often requires a combination of technical expertise, certifications like CISSP or CISA, and a strong understanding of risk management and security frameworks.

What does a cyber security risk analyst do?

A cyber security risk analyst evaluates an organization’s security posture by identifying vulnerabilities, assessing potential threats, and recommending measures to mitigate risks. They analyze security data, develop risk management strategies, and often use tools like vulnerability scanners and risk assessment frameworks to protect information systems.

What is a Cyber Security Risk Analyst job?

A Cyber Security Risk Analyst is responsible for identifying, assessing, and mitigating cybersecurity risks within an organization. They analyze potential threats, evaluate security controls, and recommend improvements to protect sensitive data and systems. Their role often involves conducting risk assessments, ensuring compliance with industry regulations, and collaborating with IT and security teams to enhance defenses. They also monitor emerging threats and provide strategic insights to minimize vulnerabilities. Ultimately, they help organizations maintain a strong security posture against cyber threats.

What are some typical challenges faced by Cyber Security Risk Analysts on the job?

Cyber Security Risk Analysts commonly face the challenge of keeping up with constantly evolving threats and technology landscapes. They must balance the need for robust security with business objectives, often requiring nuanced decision-making and collaboration across departments. Analysts may also encounter difficulties in communicating complex technical risks to non-technical stakeholders. Successfully navigating these challenges is key to maintaining organizational security and fostering a culture of risk awareness.

How much does a cybersecurity risk analyst make?

A cybersecurity risk analyst's average salary in the United States ranges from $70,000 to $120,000 annually, depending on experience, certifications, and location. Entry-level positions typically start around $60,000, while experienced analysts with certifications like CISSP or CISA can earn over $130,000. The role often requires knowledge of risk assessment tools and security frameworks.

Can you make $500,000 a year in cyber security?

Cyber Security Risk Analysts typically earn between $70,000 and $130,000 annually, depending on experience, certifications, and location. Reaching a $500,000 salary usually requires senior roles such as Chief Information Security Officer (CISO) or executive positions, which involve strategic leadership and extensive industry experience. High salaries in cybersecurity are often associated with leadership, specialized skills, and working in high-demand sectors or organizations.
What are popular job titles related to Cyber Security Risk Analyst jobs in Ontario? For Cyber Security Risk Analyst jobs in Ontario, the most frequently searched job titles are:
What job categories do people searching Cyber Security Risk Analyst jobs in Ontario look for? The top searched job categories for Cyber Security Risk Analyst jobs in Ontario are:
What cities in Ontario are hiring for Cyber Security Risk Analyst jobs? Cities in Ontario with the most Cyber Security Risk Analyst job openings:
Infographic showing various Cyber Security Risk Analyst job openings in Ontario as of July 2026, with employment types broken down into 100% Full Time. Highlights an 61% In-person, 28% Hybrid, and 11% Remote job distribution, with an average salary of $115,619 per year, or $55.6 per hour.

Security Analyst - Security & Governance Compliance

Staples Canada ULC

Richmond Hill, ON • Hybrid

Full-time

Medical, Dental

Posted 23 days ago


Job description

Some of what you will do:

The Security Analyst, Security Risk & Compliance will support the management and continuous improvement of Staples Canada's PCI compliance program and broader cybersecurity risk activities. This role will work closely with cybersecurity, technology, audit, and business stakeholders to coordinate PCI compliance tasks, gather evidence, track remediation activities, support security projects, and help business teams understand PCI and cyber-risk requirements.

Specifically, You Will: 

Governance & Policy Management

  • Support the development, review, approval, communication, and refresh of information security and risk management policies.

  • Maintain policy repositories and assist with governance reporting, metrics, and committee materials.

Risk Management

  • Participate in enterprise and IT risk assessments, including risk identification, scoring, documentation, and mitigation tracking.

  • Support risk workshops, maintain risk registers, and follow up on remediation activities with business and technology teams.

Compliance & Assurance

  • Support compliance programs aligned to frameworks such as SOC 1/SOC 2, ISO/IEC 27001, PCI DSS, NIST CSF, and NIST 800-53.

  • Assist with audits, evidence collection, control testing, issue tracking, and security/compliance inquiries.

Third-Party Risk Management

  • Support vendor risk assessments, evidence reviews, issue tracking, and coordination with procurement, legal, and security teams.

  • Identify opportunities to improve GRC processes, documentation, tooling, and support GRC platform maintenance.

Physical Environment/Working Conditions:

  • Office environment.

  • May require limited travel.
  • May require evening and weekend work based on business requirements.

Some of what you need:

  • Diploma or degree in cybersecurity, IT, computer science, risk management, or a related field; equivalent experience may be considered.

  • 2-4 years of experience in cybersecurity, IT risk, compliance, audit, or technology.

  • Experience supporting assessments, audits, control testing, compliance activities, and evidence collection.

  • Basic understanding of cybersecurity risk, compliance, and frameworks such as PCI DSS, NIST CSF, ISO 27001, SOC 2, or CIS Controls.

  • Strong documentation, analytical, communication, and stakeholder coordination skills.

  • Ability to track risks, issues, action items, remediation plans, and compliance evidence.

  • Experience with tools such as Microsoft Office, SharePoint, Teams, ServiceNow, Jira, or Confluence; retail, payment, PCI, or relevant certifications are assets.

Some of what you will get:

  • Associate discount

  • Health and Dental benefits

  • RRSP/DPSP

  • Performance bonuses

  • Learning & Development programs

  • And more...

#LI-Hybrid

We value transparency in our hiring processes. Please note, artificial intelligence may be used in certain stages to screen, assess, or select applicants, however, a human reviewer makes all final decisions. This posting is for an existing vacancy.
About the Team
At Staples Canada we are dynamic, inspiring partners to our customers and the communities in which we live. As The Working and Learning Company, we inspire people to work smarter, learn more and grow every day. We're looking for curious, approachable, and passionate individuals who love finding solutions. If that's you, let's work, learn, and grow together.

We are building an inclusive and diverse team
Staples Canada is continuously working towards creating an inclusive and diverse work environment. We welcome, value and thrive on perspectives and contributions from backgrounds that vary by race, gender, sexual orientation, gender identity or expression, lifestyle, age, educational background, national origin, religion or physical ability. If you have a disability or special need that requires accommodation, please let us know.