The Security Analyst, Security Risk & Compliance will support the management and continuous improvement of Staples Canada's PCI compliance program and broader cybersecurity risk activities. This role ...
The Security Analyst, Security Risk & Compliance will support the management and continuous improvement of Staples Canada's PCI compliance program and broader cybersecurity risk activities. This role ...
Global Cybersecurity Policies and Standards Analyst, Deloitte Global Technology
Toronto, ON · On-site +1
CA$69K - CA$114K/yr
Lead the research and development of Deloitte Global cybersecurity standards, detailed security baselines and their supporting documents, to meet Deloitte's business objectives and cybersecurity risk ...
Global Cybersecurity Policies and Standards Analyst, Deloitte Global Technology
Toronto, ON · On-site +1
CA$69K - CA$114K/yr
Lead the research and development of Deloitte Global cybersecurity standards, detailed security baselines and their supporting documents, to meet Deloitte's business objectives and cybersecurity risk ...
As part of the Global IT Risk organization in Global Security, Technology Risk Analytics, Reporting ... Opportunities to do challenging work Job Skills Confidentiality, Cyber Security Management ...
As part of the Global IT Risk organization in Global Security, Technology Risk Analytics, Reporting ... Opportunities to do challenging work Job Skills Confidentiality, Cyber Security Management ...
Threat Risk Assessments (TRAs) * Cyber Security Risk Assessments * Cyber security GRC program ... Advising on findings, root cause analysis and mitigation strategies following security or privacy ...
Quick apply
Threat Risk Assessments (TRAs) * Cyber Security Risk Assessments * Cyber security GRC program ... Advising on findings, root cause analysis and mitigation strategies following security or privacy ...
Conduct cybersecurity risk assessments, vulnerability reviews, and compliance audits, identifying ... Support incident response activities, investigations, threat analysis, and documentation ...
Conduct cybersecurity risk assessments, vulnerability reviews, and compliance audits, identifying ... Support incident response activities, investigations, threat analysis, and documentation ...
Cybersecurity Analyst
Windsor, ON · On-site
The Cybersecurity Analyst leverages SIEM, MDR, EDR, RMM, monitoring, and automation platforms ... Participate in risk assessments and security reviews. Client Support & Escalation * Assisttechnical ...
Quick apply
Cybersecurity Analyst
Windsor, ON · On-site
The Cybersecurity Analyst leverages SIEM, MDR, EDR, RMM, monitoring, and automation platforms ... Participate in risk assessments and security reviews. Client Support & Escalation * Assisttechnical ...
The Cybersecurity Analyst leverages SIEM, MDR, EDR, RMM, monitoring, and automation platforms ... Participate in risk assessments and security reviews. Client Support & Escalation * Assisttechnical ...
The Cybersecurity Analyst leverages SIEM, MDR, EDR, RMM, monitoring, and automation platforms ... Participate in risk assessments and security reviews. Client Support & Escalation * Assisttechnical ...
The role ensures technology and cybersecurity risks are identified, assessed, mitigated, monitored ... Provide 1B risk and control advisory support, including targeted risk reviews, root cause analysis ...
The role ensures technology and cybersecurity risks are identified, assessed, mitigated, monitored ... Provide 1B risk and control advisory support, including targeted risk reviews, root cause analysis ...
Lead Analyst - Cybersecurity (SITRM) Location: Krakow, Poland (Hybrid) Type: Full-time employment ... Execute security risk assessment and analysis of suppliers across all stages of the supplier ...
Lead Analyst - Cybersecurity (SITRM) Location: Krakow, Poland (Hybrid) Type: Full-time employment ... Execute security risk assessment and analysis of suppliers across all stages of the supplier ...
Lead and perform OT cybersecurity assessments, risk analyses and compliance audits (e.g., NERC CIP, NIST CSF and IEC 62443) * Design and implement cybersecurity solutions for industrial control ...
Lead and perform OT cybersecurity assessments, risk analyses and compliance audits (e.g., NERC CIP, NIST CSF and IEC 62443) * Design and implement cybersecurity solutions for industrial control ...
Lead and perform OT cybersecurity assessments, risk analyses and compliance audits (e.g., NERC CIP, NIST CSF and IEC 62443) * Design and implement cybersecurity solutions for industrial control ...
Lead and perform OT cybersecurity assessments, risk analyses and compliance audits (e.g., NERC CIP, NIST CSF and IEC 62443) * Design and implement cybersecurity solutions for industrial control ...
Lead and perform OT cybersecurity assessments, risk analyses and compliance audits (e.g., NERC CIP, NIST CSF and IEC 62443) * Design and implement cybersecurity solutions for industrial control ...
Lead and perform OT cybersecurity assessments, risk analyses and compliance audits (e.g., NERC CIP, NIST CSF and IEC 62443) * Design and implement cybersecurity solutions for industrial control ...
Senior OT Cybersecurity Leader
Concord, ON · On-site
Lead and perform OT cybersecurity assessments, risk analyses and compliance audits (e.g., NERC CIP, NIST CSF and IEC 62443) * Design and implement cybersecurity solutions for industrial control ...
Senior OT Cybersecurity Leader
Concord, ON · On-site
Lead and perform OT cybersecurity assessments, risk analyses and compliance audits (e.g., NERC CIP, NIST CSF and IEC 62443) * Design and implement cybersecurity solutions for industrial control ...
Cybersecurity Analyst Sr
Toronto, ON · On-site
The Cybersecurity Analyst Sr supports the risk mitigation efforts of Fidelity's Cyber Defense Operations (CDO) under the Information Security and Technology Risk group in order to safeguard and ...
Cybersecurity Analyst Sr
Toronto, ON · On-site
The Cybersecurity Analyst Sr supports the risk mitigation efforts of Fidelity's Cyber Defense Operations (CDO) under the Information Security and Technology Risk group in order to safeguard and ...
Partner with Operations leadership and the Magna Cybersecurity teams to perform cybersecurity risk ... Develop justifications and cost/benefit analyses for spending and initiatives. * Identify industry ...
Partner with Operations leadership and the Magna Cybersecurity teams to perform cybersecurity risk ... Develop justifications and cost/benefit analyses for spending and initiatives. * Identify industry ...
Manage a team of analysts and senior managers accountable for running the TPRM Framework. Lead the ... Coordinate with the Information Security Team to assess cyber-security control effectiveness at ...
Manage a team of analysts and senior managers accountable for running the TPRM Framework. Lead the ... Coordinate with the Information Security Team to assess cyber-security control effectiveness at ...
Senior Analyst - Cybersecurity (M&A), SITRM Location: Krakow, Poland (Hybrid) Type: Full-time ... Strong experience in cybersecurity M&A integration, cybersecurity or technology audit or risk ...
Senior Analyst - Cybersecurity (M&A), SITRM Location: Krakow, Poland (Hybrid) Type: Full-time ... Strong experience in cybersecurity M&A integration, cybersecurity or technology audit or risk ...
Analyst, Internal Audit & Risk Management
Toronto, ON · Hybrid
CA$57K - CA$87K/yr
Analyst, Internal Audit & Risk Management Location: Toronto, Ontario - Hybrid (4days/week in office ... IT audits, insurance, asset management, third-party risk, cybersecurity risk, artificial ...
Analyst, Internal Audit & Risk Management
Toronto, ON · Hybrid
CA$57K - CA$87K/yr
Analyst, Internal Audit & Risk Management Location: Toronto, Ontario - Hybrid (4days/week in office ... IT audits, insurance, asset management, third-party risk, cybersecurity risk, artificial ...
... analyze findings and drive remediation * Advise product, engineering, quality, and regulatory stakeholders on practical, risk-based security decisions * Strengthen cybersecurity capability through ...
... analyze findings and drive remediation * Advise product, engineering, quality, and regulatory stakeholders on practical, risk-based security decisions * Strengthen cybersecurity capability through ...
Sr.Technology Architect (Assessments)
Toronto, ON · On-site
$90 - $120/hr
... risk-based remediation plans. * Experience applying maturity models (e.g., NIST-based models, CMMI, or equivalent) to assess cyber security capabilities * Advanced experience in data analytics and ...
Sr.Technology Architect (Assessments)
Toronto, ON · On-site
$90 - $120/hr
... risk-based remediation plans. * Experience applying maturity models (e.g., NIST-based models, CMMI, or equivalent) to assess cyber security capabilities * Advanced experience in data analytics and ...
Cyber Security Risk Analyst information
See Ontario salary details
$71K - $80K
12% of jobs
$80K - $89.1K
0% of jobs
$93.6K is the 25th percentile. Wages below this are outliers.
$89.1K - $98.1K
27% of jobs
The median wage is $103.4K / yr.
$98.1K - $107.2K
20% of jobs
$107.2K - $116.2K
6% of jobs
$124.8K is the 75th percentile. Wages above this are outliers.
$116.2K - $125.3K
11% of jobs
$125.3K - $134.3K
11% of jobs
$134.3K - $143.4K
1% of jobs
$143.4K - $152.4K
13% of jobs
$152.4K - $161.5K
0% of jobs
$161.5K - $170.5K
0% of jobs
$71K
$115.6K
$170.5K
How much do cyber security risk analyst jobs pay per year?
What are the key skills and qualifications needed to thrive in the Cyber Security Risk Analyst position, and why are they important?
A Cyber Security Risk Analyst requires a solid understanding of information security principles, risk assessment methodologies, and a relevant degree such as computer science or cybersecurity. Familiarity with tools like risk management frameworks (NIST, ISO 27001), vulnerability scanners, and certifications such as CISSP, CISM, or CRISC is common in this role. Strong analytical thinking, attention to detail, effective communication, and problem-solving skills are vital soft skills. These competencies enable analysts to accurately identify, assess, and communicate cyber risks, protecting organizations from evolving threats.
Can you make $200,000 in cyber security?
What does a cyber security risk analyst do?
What is a Cyber Security Risk Analyst job?
A Cyber Security Risk Analyst is responsible for identifying, assessing, and mitigating cybersecurity risks within an organization. They analyze potential threats, evaluate security controls, and recommend improvements to protect sensitive data and systems. Their role often involves conducting risk assessments, ensuring compliance with industry regulations, and collaborating with IT and security teams to enhance defenses. They also monitor emerging threats and provide strategic insights to minimize vulnerabilities. Ultimately, they help organizations maintain a strong security posture against cyber threats.
What are some typical challenges faced by Cyber Security Risk Analysts on the job?
Cyber Security Risk Analysts commonly face the challenge of keeping up with constantly evolving threats and technology landscapes. They must balance the need for robust security with business objectives, often requiring nuanced decision-making and collaboration across departments. Analysts may also encounter difficulties in communicating complex technical risks to non-technical stakeholders. Successfully navigating these challenges is key to maintaining organizational security and fostering a culture of risk awareness.
How much does a cybersecurity risk analyst make?
Can you make $500,000 a year in cyber security?

Full-time
Medical, Dental
Posted 23 days ago
Job description
Some of what you will do:
The Security Analyst, Security Risk & Compliance will support the management and continuous improvement of Staples Canada's PCI compliance program and broader cybersecurity risk activities. This role will work closely with cybersecurity, technology, audit, and business stakeholders to coordinate PCI compliance tasks, gather evidence, track remediation activities, support security projects, and help business teams understand PCI and cyber-risk requirements.
Specifically, You Will:Â
Governance & Policy Management
Support the development, review, approval, communication, and refresh of information security and risk management policies.
Maintain policy repositories and assist with governance reporting, metrics, and committee materials.
Risk Management
Participate in enterprise and IT risk assessments, including risk identification, scoring, documentation, and mitigation tracking.
Support risk workshops, maintain risk registers, and follow up on remediation activities with business and technology teams.
Compliance & Assurance
Support compliance programs aligned to frameworks such as SOC 1/SOC 2, ISO/IEC 27001, PCI DSS, NIST CSF, and NIST 800-53.
Assist with audits, evidence collection, control testing, issue tracking, and security/compliance inquiries.
Third-Party Risk Management
Support vendor risk assessments, evidence reviews, issue tracking, and coordination with procurement, legal, and security teams.
Identify opportunities to improve GRC processes, documentation, tooling, and support GRC platform maintenance.
Physical Environment/Working Conditions:
Office environment.
- May require limited travel.
- May require evening and weekend work based on business requirements.
Some of what you need:
Diploma or degree in cybersecurity, IT, computer science, risk management, or a related field; equivalent experience may be considered.
2-4 years of experience in cybersecurity, IT risk, compliance, audit, or technology.
Experience supporting assessments, audits, control testing, compliance activities, and evidence collection.
Basic understanding of cybersecurity risk, compliance, and frameworks such as PCI DSS, NIST CSF, ISO 27001, SOC 2, or CIS Controls.
Strong documentation, analytical, communication, and stakeholder coordination skills.
Ability to track risks, issues, action items, remediation plans, and compliance evidence.
Experience with tools such as Microsoft Office, SharePoint, Teams, ServiceNow, Jira, or Confluence; retail, payment, PCI, or relevant certifications are assets.
Some of what you will get:
Associate discount
Health and Dental benefits
RRSP/DPSP
Performance bonuses
Learning & Development programs
And more...
#LI-Hybrid