Cyber Risk Analyst
Lemont, IL · On-site
Cyber Risk Analyst W-2 Only (no 1099) Must be a U.S. Citizen Company's Location: Lemont, IL ... The Companys Cyber Security Program Office promotes the safe and secure use of information ...
Cyber Risk Analyst
Lemont, IL · On-site
Cyber Risk Analyst W-2 Only (no 1099) Must be a U.S. Citizen Company's Location: Lemont, IL ... The Companys Cyber Security Program Office promotes the safe and secure use of information ...
Cyber Risk Analyst W-2 Only (no 1099) Must be a U.S. Citizen Company's Location: Lemont, IL ... The Companys Cyber Security Program Office promotes the safe and secure use of information ...
Cyber Risk Analyst W-2 Only (no 1099) Must be a U.S. Citizen Company's Location: Lemont, IL ... The Companys Cyber Security Program Office promotes the safe and secure use of information ...
Cyber Risk Analyst
Lemont, IL · On-site
Cyber Risk Analyst W-2 Only (no 1099) Must be a U.S. Citizen Company's Location: Lemont, IL ... The Companys Cyber Security Program Office promotes the safe and secure use of information ...
Quick apply
Cyber Risk Analyst
Lemont, IL · On-site
Cyber Risk Analyst W-2 Only (no 1099) Must be a U.S. Citizen Company's Location: Lemont, IL ... The Companys Cyber Security Program Office promotes the safe and secure use of information ...
Cybersecurity Analyst
Lake Forest, IL · On-site
$45 - $51/hr
Cybersecurity Analyst Location: Lake Forest, Illinois Duration: 6 Months 100% Onsite Core ... Perform risk-based cybersecurity assessments using the NIST Cybersecurity Framework * Conduct ...
Cybersecurity Analyst
Lake Forest, IL · On-site
$45 - $51/hr
Cybersecurity Analyst Location: Lake Forest, Illinois Duration: 6 Months 100% Onsite Core ... Perform risk-based cybersecurity assessments using the NIST Cybersecurity Framework * Conduct ...
Vulnerability Analyst
Lemont, IL · On-site
Cyber Risk Analyst W-2 Only (no 1099) Must be a U.S. Citizen Company's Location: Lemont, IL Background: Companys Cyber Security Program Office (CSPO) promotes the safe and secure use of technology.
Quick apply
Vulnerability Analyst
Lemont, IL · On-site
Cyber Risk Analyst W-2 Only (no 1099) Must be a U.S. Citizen Company's Location: Lemont, IL Background: Companys Cyber Security Program Office (CSPO) promotes the safe and secure use of technology.
Cyber Risk Analyst W-2 Only (no 1099) Must be a U.S. Citizen Company's Location: Lemont, IL Background: Companys Cyber Security Program Office (CSPO) promotes the safe and secure use of technology.
Cyber Risk Analyst W-2 Only (no 1099) Must be a U.S. Citizen Company's Location: Lemont, IL Background: Companys Cyber Security Program Office (CSPO) promotes the safe and secure use of technology.
Vulnerability Analyst
Lemont, IL · On-site
Cyber Risk Analyst W-2 Only (no 1099) Must be a U.S. Citizen Company's Location: Lemont, IL Background: Companys Cyber Security Program Office (CSPO) promotes the safe and secure use of technology.
Vulnerability Analyst
Lemont, IL · On-site
Cyber Risk Analyst W-2 Only (no 1099) Must be a U.S. Citizen Company's Location: Lemont, IL Background: Companys Cyber Security Program Office (CSPO) promotes the safe and secure use of technology.
... Cybersecurity Risk Oversight, the Sr. Cybersecurity Risk Oversight Professional is a 2nd Line of ... Analyze and assess risks associated with new products or services including third parties. * Assist ...
... Cybersecurity Risk Oversight, the Sr. Cybersecurity Risk Oversight Professional is a 2nd Line of ... Analyze and assess risks associated with new products or services including third parties. * Assist ...
Senior Cyber Risk Analyst
Chicago, IL · Hybrid
$110K - $130K/yr
Oversee the end-to-end lifecycle of cybersecurity risks, including identification, logging, analysis, treatment tracking, and closure. * Risk Quantification & Scoring: Apply standardized risk ...
Senior Cyber Risk Analyst
Chicago, IL · Hybrid
$110K - $130K/yr
Oversee the end-to-end lifecycle of cybersecurity risks, including identification, logging, analysis, treatment tracking, and closure. * Risk Quantification & Scoring: Apply standardized risk ...
Senior Cyber Risk Analyst
Chicago, IL · On-site
$110K - $130K/yr
Oversee the end-to-end lifecycle of cybersecurity risks, including identification, logging, analysis, treatment tracking, and closure. * Risk Quantification & Scoring: Apply standardized risk ...
Senior Cyber Risk Analyst
Chicago, IL · On-site
$110K - $130K/yr
Oversee the end-to-end lifecycle of cybersecurity risks, including identification, logging, analysis, treatment tracking, and closure. * Risk Quantification & Scoring: Apply standardized risk ...
Senior Analyst, Cybersecurity Governance, Risk and Compliance, Chicago, IL The Senior Analyst, Cybersecurity Governance Risk & Compliance will administer the completion of compliance-related client ...
Senior Analyst, Cybersecurity Governance, Risk and Compliance, Chicago, IL The Senior Analyst, Cybersecurity Governance Risk & Compliance will administer the completion of compliance-related client ...
Cybersecurity Analyst
Lemont, IL · On-site
... risk management. Contract Position: Full Time, 40 hour work week Period of Performance: 1 Year Scope: Cybersecurity Analyst will play an important role to continuously monitor, triage alerts and ...
Quick apply
Cybersecurity Analyst
Lemont, IL · On-site
... risk management. Contract Position: Full Time, 40 hour work week Period of Performance: 1 Year Scope: Cybersecurity Analyst will play an important role to continuously monitor, triage alerts and ...
Cybersecurity Analyst
Lemont, IL · On-site
... risk management. Contract Position: Full Time, 40 hour work week Period of Performance: 1 Year Scope: Cybersecurity Analyst will play an important role to continuously monitor, triage alerts and ...
Cybersecurity Analyst
Lemont, IL · On-site
... risk management. Contract Position: Full Time, 40 hour work week Period of Performance: 1 Year Scope: Cybersecurity Analyst will play an important role to continuously monitor, triage alerts and ...
... risk management. Contract Position: Full Time, 40 hour work week Period of Performance: 1 Year Scope: Cybersecurity Analyst will play an important role to continuously monitor, triage alerts and ...
... risk management. Contract Position: Full Time, 40 hour work week Period of Performance: 1 Year Scope: Cybersecurity Analyst will play an important role to continuously monitor, triage alerts and ...
Cybersecurity Engineer
Chicago, IL · Hybrid
... risk. The role requires independent assessment of emerging threats, evaluation of control ... analysis and control improvements. * Identify emerging threats, tools, and technologies and ...
Cybersecurity Engineer
Chicago, IL · Hybrid
... risk. The role requires independent assessment of emerging threats, evaluation of control ... analysis and control improvements. * Identify emerging threats, tools, and technologies and ...
Cybersecurity Engineer
Chicago, IL · On-site
$130K - $200K/yr
... analysis and control improvements. * Identify emerging threats, tools, and technologies and ... Ability to independently assess risk, define problems, and implement practical, scalable solutions.
Cybersecurity Engineer
Chicago, IL · On-site
$130K - $200K/yr
... analysis and control improvements. * Identify emerging threats, tools, and technologies and ... Ability to independently assess risk, define problems, and implement practical, scalable solutions.
Information Technology and/or Cybersecurity background and/or experience, including 5-8+ years of ... analysis, identity management, access management, cloud security, or web security * Working ...
Information Technology and/or Cybersecurity background and/or experience, including 5-8+ years of ... analysis, identity management, access management, cloud security, or web security * Working ...
Manager, Cybersecurity Governance and Risk Responsibilities: - Assist with the development ... analytical and problem-solving skills, inquisitive nature and comfort challenging current practices ...
Manager, Cybersecurity Governance and Risk Responsibilities: - Assist with the development ... analytical and problem-solving skills, inquisitive nature and comfort challenging current practices ...
Manager, Cybersecurity Governance and Risk Responsibilities: - Assist with the development ... analytical and problem-solving skills, inquisitive nature and comfort challenging current practices ...
Manager, Cybersecurity Governance and Risk Responsibilities: - Assist with the development ... analytical and problem-solving skills, inquisitive nature and comfort challenging current practices ...
GRC Cybersecurity Lead
Carol Stream, IL · On-site
Responsibilities : • Own enterprise-wide cyber risk analysis and reporting, from methodology to ... cybersecurity risks; recommend mitigation strategies and track remediation to closure. • Lead ...
GRC Cybersecurity Lead
Carol Stream, IL · On-site
Responsibilities : • Own enterprise-wide cyber risk analysis and reporting, from methodology to ... cybersecurity risks; recommend mitigation strategies and track remediation to closure. • Lead ...
Cyber Security Risk Analyst information
See Chicago, IL salary details
$44.3K - $54.4K
1% of jobs
$54.4K - $64.4K
6% of jobs
$64.4K - $74.4K
10% of jobs
$81.3K is the 25th percentile. Wages below this are outliers.
$74.4K - $84.4K
12% of jobs
$84.4K - $94.5K
15% of jobs
The median wage is $98.8K / yr.
$94.5K - $104.5K
15% of jobs
$104.5K - $114.5K
10% of jobs
$118.9K is the 75th percentile. Wages above this are outliers.
$114.5K - $124.6K
16% of jobs
$124.6K - $134.6K
7% of jobs
$134.6K - $144.6K
5% of jobs
$144.6K - $154.6K
3% of jobs
$44.3K
$102.5K
$154.6K
How much do cyber security risk analyst jobs pay per year?
As of Jun 17, 2026, the average yearly pay for cyber security risk analyst in Chicago, IL is $102,474.00, according to ZipRecruiter salary data. Most workers in this role earn between $82,000.00 and $119,100.00 per year, depending on experience, location, and employer.
Is 40 too old for cyber security?
Cyber Security Risk Analysts can be successful at any age, as the field values skills, experience, and continuous learning. Many professionals transition into cybersecurity later in their careers, often obtaining certifications like CISSP or CompTIA Security+ to enhance their qualifications. Age is generally not a barrier if you have relevant skills and stay current with industry developments.
Is SOC an entry level job?
A Security Operations Center (SOC) analyst role is typically considered an entry-level or early-career position in cybersecurity, often requiring foundational knowledge of security tools, monitoring, and incident response. However, some SOC roles may require prior experience or certifications like CompTIA Security+ or Cisco CCNA, depending on the organization's complexity. Advancement usually involves gaining experience and additional certifications in cybersecurity.
What are the key skills and qualifications needed to thrive in the Cyber Security Risk Analyst position, and why are they important?
A Cyber Security Risk Analyst requires a solid understanding of information security principles, risk assessment methodologies, and a relevant degree such as computer science or cybersecurity. Familiarity with tools like risk management frameworks (NIST, ISO 27001), vulnerability scanners, and certifications such as CISSP, CISM, or CRISC is common in this role. Strong analytical thinking, attention to detail, effective communication, and problem-solving skills are vital soft skills. These competencies enable analysts to accurately identify, assess, and communicate cyber risks, protecting organizations from evolving threats.
What is a Cyber Security Risk Analyst job?
A Cyber Security Risk Analyst is responsible for identifying, assessing, and mitigating cybersecurity risks within an organization. They analyze potential threats, evaluate security controls, and recommend improvements to protect sensitive data and systems. Their role often involves conducting risk assessments, ensuring compliance with industry regulations, and collaborating with IT and security teams to enhance defenses. They also monitor emerging threats and provide strategic insights to minimize vulnerabilities. Ultimately, they help organizations maintain a strong security posture against cyber threats.
What are some typical challenges faced by Cyber Security Risk Analysts on the job?
Cyber Security Risk Analysts commonly face the challenge of keeping up with constantly evolving threats and technology landscapes. They must balance the need for robust security with business objectives, often requiring nuanced decision-making and collaboration across departments. Analysts may also encounter difficulties in communicating complex technical risks to non-technical stakeholders. Successfully navigating these challenges is key to maintaining organizational security and fostering a culture of risk awareness.
What does a cybersecurity risk analyst do?
A cybersecurity risk analyst evaluates an organization’s security posture by identifying vulnerabilities, assessing potential threats, and recommending measures to mitigate risks. They often use tools like risk assessment frameworks and require knowledge of security protocols, compliance standards, and threat intelligence. Their work helps organizations protect sensitive data and maintain secure systems.
Can you make $500,000 a year in cyber security?
Cyber Security Risk Analysts typically earn between $70,000 and $130,000 annually, depending on experience, certifications, and location. Reaching a $500,000 salary generally requires senior roles such as Chief Information Security Officer (CISO) or executive positions, which involve broader responsibilities and leadership skills. High salaries in cybersecurity are often associated with extensive experience, advanced certifications, and strategic management roles.
What are the most commonly searched types of Cyber Security Risk Analyst jobs in Chicago, IL? The most popular types of Cyber Security Risk Analyst jobs in Chicago, IL are:
What are popular job titles related to Cyber Security Risk Analyst jobs in Chicago, IL? For Cyber Security Risk Analyst jobs in Chicago, IL, the most frequently searched job titles are:
What job categories do people searching Cyber Security Risk Analyst jobs in Chicago, IL look for? The top searched job categories for Cyber Security Risk Analyst jobs in Chicago, IL are:
Job description
Title: Cyber Risk Analyst
W-2 Only (no 1099)
Must be a U.S. Citizen
Company's Location: Lemont, IL
Job Description
Background:
The Companys Cyber Security Program Office promotes the safe and secure use of information technology. There are a variety of risks and threats inside and outside of the Laboratory.
Company's Cyber Security Program Office (CSPO) safeguards the Laboratory by identifying, protecting against, detecting, responding to, and recovering from cybersecurity risks and incidents. Services include consultation and guidance; detection and protection technologies; education and awareness; incident management; vulnerability management; and risk assessment and compliance.
Contract Position: Full Time, 40 hour work week
Period of Performance: 1 Year
Scope:
The Cyber Risk Analyst will play an important role in identifying and communicating areas of concern and risks to the business. This engagement will free up other cybersecurity resources to work in other critical Argonne areas. The ideal candidate will need to:
Possess a working level expertise with the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) and the NIST 800-53 series of control families and approaches.
Objectives
The ideal candidate will have:
Qualifications:
Technical Direction of Work
Report to a senior staff Cyber Risk Analyst within Business & Information Services; including daily guidance and collaboration with others in the Cyber Security Program Office (CSPO).
REMOTE:
Typically, the work is performed remotely. For the candidate within driving distance of the Lab, there may be rare times to be onsite for in-person meetings, assessments, or presentations. Most of the Business Information Services (BIS) Division works remotely and are rarely onsite. If the candidate is out of state, too far away from the Lab, onsite meetings are not feasible to attend and not required.
The following expectations are part of working remote:
Expectation/Deliverables:
Computer Protection Program
Contractors shall comply with Company Computer Protection Program and Cyber Security Program requirements by:
Government-Furnished Property
Company will supply a government-furnished laptop, PIV Card, and PIV Card reader.
Place of performance
Work will be performed remotely, using communication through Microsoft tools such as Microsoft Teams and Microsoft Outlook
Period of Performance
Work would begin in October 2025, for 40 hours per week for 1 year.
W-2 Only (no 1099)
Must be a U.S. Citizen
Company's Location: Lemont, IL
Job Description
Background:
The Companys Cyber Security Program Office promotes the safe and secure use of information technology. There are a variety of risks and threats inside and outside of the Laboratory.
Company's Cyber Security Program Office (CSPO) safeguards the Laboratory by identifying, protecting against, detecting, responding to, and recovering from cybersecurity risks and incidents. Services include consultation and guidance; detection and protection technologies; education and awareness; incident management; vulnerability management; and risk assessment and compliance.
Contract Position: Full Time, 40 hour work week
Period of Performance: 1 Year
Scope:
The Cyber Risk Analyst will play an important role in identifying and communicating areas of concern and risks to the business. This engagement will free up other cybersecurity resources to work in other critical Argonne areas. The ideal candidate will need to:
Possess a working level expertise with the National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) and the NIST 800-53 series of control families and approaches.
- Perform detailed analysis and a cyber risk assessment of Cloud Service Providers (CSPs).
- Engage with vendors to review controls, certifications, and risks in support of the associated business need and the laboratory's risk tolerance.
- Partner with the CSPO in the development of risk assessment and reporting processes within the Laboratory's Governance, Risk and Compliance (GRC) tool, Talatek TiGRIS.
- Partner with others from within the CSPO team and Laboratory IT environment to perform risk-based assessments of NIST 800-53 control validation and gap analysis.
- Collaborate with the CSPO to present outcomes of risk analysis work using presentation methods to CSPO and other lab audiences (IT admins, Deputy CIO, CISO)
- Maintain assessment and assessment results in identified repositories, e.g., the Lab's GRC tool, Talatek TiGRIS, MS Excel, Box or Box
- Assist in the performance of the laboratory's Divisional Site Assist Visit (DSAV) self-assessment and continuous monitoring strategy, assessing the cyber security controls and their implementation in various programmatic spaces.
Objectives
The ideal candidate will have:
- A fundamental understanding of IT Risk management and the NIST 800 series framework.
- Experience with government environments.
- Experience working closely with cyber security leadership and peers along with IT system/process owners to capture artifacts for control testing.
- Technical understanding of systems and technologies to inform audits and assessments.
- Ability to translate results into business-oriented, task-focused presentations.
- The ideal candidate will support the projects and tasks associated with Cybersecurity Risk Assessment and Compliance.
- Ability to support urgency and timeliness expectations, assuring risk assessments are completed to support DOE Authority to Operate and Authority to Use deadlines.
- Typically, the assessment presentation cadence is weekly for the DOE's Company Site Office, and monthly for the DOE Authorizing Official.
Qualifications:
- Considerable knowledge of Risk Management and Risk Management Framework (RMF) requirements
- Working level knowledge of the NIST 800 Rev 5 series framework
- Considerable knowledge/experience of assessing controls.
- Knowledge of industry-standard and organizationally accepted analysis principles and methods.
- Experience in working with Governance Risk Compliance systems.
- Experience presenting reports and outcomes to leadership, tracking to closure, and creating buy-in to risk management.
- Experience and skill in conducting audits or reviews of technical systems.
- Experience assessing vendor risk.
- Skill in identifying measures or indicators of system performance and the actions needed to improve or correct performance, relative to the goals of the system.
- Ability to skillfully communicate through various methods. This includes written documentation. The audience will be leaders and executives. Finalists may be asked to complete a brief, job-relevant writing exercise.
- Ability to work autonomously as a contributing member of a small technical team
- Experience working in a government environment.
- Experience working in a distributed IT environment.
- Basic knowledge of cyber security concepts.
- Working knowledge of networking administration.
- Working knowledge of system administration.
- Ability to qualify for HSPD-12 card for use in two-factor authentication.
- Able to effectively interact with user organizations to validate controls.
- Able to effectively disseminate knowledge to current staff.
Technical Direction of Work
Report to a senior staff Cyber Risk Analyst within Business & Information Services; including daily guidance and collaboration with others in the Cyber Security Program Office (CSPO).
REMOTE:
Typically, the work is performed remotely. For the candidate within driving distance of the Lab, there may be rare times to be onsite for in-person meetings, assessments, or presentations. Most of the Business Information Services (BIS) Division works remotely and are rarely onsite. If the candidate is out of state, too far away from the Lab, onsite meetings are not feasible to attend and not required.
The following expectations are part of working remote:
- Working remotely outside of scheduled times requires supervisor approval prior to performing that remote work.
- While working remotely, just like when onsite, all scheduled meetings must be attended (using approved remote communication tools).
- The candidate must be available for consultation during all scheduled work time, reachable by email, phone, chat, or other approved means.
- Performance will be monitored to determine productivity for remote work at least matches that when onsite. If performance and deliverables decline, remote work may be suspended.
- Should a situation arise that requires the candidate to be onsite while scheduled to work remotely, accommodation will be made to reschedule the remote work, if desired.
- The remote work privilege may be revoked at any time at the discretion of company.
- A flexible work schedule may also be possible if the schedule is agreed to by the candidate and approved by the supervisor and sponsor.
- Should the laboratory close operations due to weather or other circumstances, remote work is preferred.
- The candidate must track their remote work schedule into the CSPO absence calendar and be approved by CSPO supervisor.
Expectation/Deliverables:
- Assist in the management of Lab-Vendor risk assessments throughout the engagement.
- Includes analysis and a cyber risk assessment of Cloud Service Providers (CSPs) (Vendors).
- Regularly, engage with vendors to review controls, certifications, and risks.
- Regularly, engage with ANL System Business Owners to review controls, convey/educate regarding identified risks, and coordinate various control implementation with BIS technicians when necessary.
- As necessary, work various Governance, Risk and Compliance (GRC) projects using GRC tool, Talatek TiGRIS.
- Includes various risk-based assessments of NIST 800-53 Rev 5 control validation and gap analysis.
- Present outcomes of risk analysis work to CSPO and other lab audiences, as needed.
- Perform assessment and assessment result maintenance in the GRC tool, /Talatek TiGRIS, as necessary.
- Deliverables include assessment process documents and assessment report management, updates in Talatek TiGRIS, and communicating via E-Mail, TEAMS, etc.
Computer Protection Program
Contractors shall comply with Company Computer Protection Program and Cyber Security Program requirements by:
- Completing required training and understanding the protection requirements for any systems, applications, or sensitive data they access.
- Adhering to all applicable policies and procedures and not bypassing any controls protecting data, applications, hardware, or communications.
- Maintaining a work environment that meets audit, privacy, and security standards.
- Immediately reporting any suspected or actual deficiencies in protection procedures to their technical contact, the BIS Computer Protection Program Representative.
Government-Furnished Property
Company will supply a government-furnished laptop, PIV Card, and PIV Card reader.
Place of performance
Work will be performed remotely, using communication through Microsoft tools such as Microsoft Teams and Microsoft Outlook
Period of Performance
Work would begin in October 2025, for 40 hours per week for 1 year.
About Delan Associates
Sourced by ZipRecruiter
Company size
51 - 200 Employees
Headquarters location
Freeport, NY, US
Year founded
2002