Manager, Cybersecurity Governance and Risk Responsibilities: - Assist with the development ... analytical and problem-solving skills, inquisitive nature and comfort challenging current practices ...
Manager, Cybersecurity Governance and Risk Responsibilities: - Assist with the development ... analytical and problem-solving skills, inquisitive nature and comfort challenging current practices ...
GRC Cybersecurity Lead
Carol Stream, IL · On-site
Responsibilities : • Own enterprise-wide cyber risk analysis and reporting, from methodology to ... cybersecurity risks; recommend mitigation strategies and track remediation to closure. • Lead ...
GRC Cybersecurity Lead
Carol Stream, IL · On-site
Responsibilities : • Own enterprise-wide cyber risk analysis and reporting, from methodology to ... cybersecurity risks; recommend mitigation strategies and track remediation to closure. • Lead ...
This role translates technical risk into business terms, delivers regular reporting on program ... The Director leads a team consisting of the Manager of Enterprise Cybersecurity, a Security Analyst ...
This role translates technical risk into business terms, delivers regular reporting on program ... The Director leads a team consisting of the Manager of Enterprise Cybersecurity, a Security Analyst ...
If yes, consider joining Baker Tilly (BT) as an IT Audit, Cybersecurity & Risk Manager (HITRUST ... Excellent analytical, technical, and problem-solving skills, with strong attention to detail
If yes, consider joining Baker Tilly (BT) as an IT Audit, Cybersecurity & Risk Manager (HITRUST ... Excellent analytical, technical, and problem-solving skills, with strong attention to detail
This role translates technical risk into business terms, delivers regular reporting on program ... The Director leads a team consisting of the Manager of Enterprise Cybersecurity, a Security Analyst ...
This role translates technical risk into business terms, delivers regular reporting on program ... The Director leads a team consisting of the Manager of Enterprise Cybersecurity, a Security Analyst ...
If yes, consider joining Baker Tilly (BT) as an IT Audit, Cybersecurity & Risk Manager (HITRUST ... Excellent analytical, technical, and problem-solving skills, with strong attention to detail
If yes, consider joining Baker Tilly (BT) as an IT Audit, Cybersecurity & Risk Manager (HITRUST ... Excellent analytical, technical, and problem-solving skills, with strong attention to detail
Governance, Risk, & Compliance (GRC) Analyst (Senior or Lead) Company: The Boeing Company Boeing ... Partner with cybersecurity, infrastructure, engineering, cloud, application, data governance ...
Governance, Risk, & Compliance (GRC) Analyst (Senior or Lead) Company: The Boeing Company Boeing ... Partner with cybersecurity, infrastructure, engineering, cloud, application, data governance ...
Governance, Risk, & Compliance (GRC) Analyst (Senior or Lead) Company: The Boeing Company Boeing ... Partner with cybersecurity, infrastructure, engineering, cloud, application, data governance ...
Governance, Risk, & Compliance (GRC) Analyst (Senior or Lead) Company: The Boeing Company Boeing ... Partner with cybersecurity, infrastructure, engineering, cloud, application, data governance ...
Senior Manager, Cybersecurity-Carveout
Chicago, IL · On-site
$114K - $154K/yr
... risk/compliance (GRC) standup, resiliency planning, application & cloud security, and tools/vendor ... Leverage AI tools to accelerate analysis, synthesize complex information, and support data-driven ...
Senior Manager, Cybersecurity-Carveout
Chicago, IL · On-site
$114K - $154K/yr
... risk/compliance (GRC) standup, resiliency planning, application & cloud security, and tools/vendor ... Leverage AI tools to accelerate analysis, synthesize complex information, and support data-driven ...
Senior Manager, Cybersecurity-Carveout
Chicago, IL · On-site
$114K - $154K/yr
... risk/compliance (GRC) standup, resiliency planning, application & cloud security, and tools/vendor ... Leverage AI tools to accelerate analysis, synthesize complex information, and support data-driven ...
Senior Manager, Cybersecurity-Carveout
Chicago, IL · On-site
$114K - $154K/yr
... risk/compliance (GRC) standup, resiliency planning, application & cloud security, and tools/vendor ... Leverage AI tools to accelerate analysis, synthesize complex information, and support data-driven ...
BUSINESS ANALYST II
$72K - $91K/yr
Cybersecurity & Digital Risk Analyst Work with different areas of Cybersecurity & Digital Risk (CDR) to determine data sources for analytics and metrics system. Drive the identification of ...
BUSINESS ANALYST II
$72K - $91K/yr
Cybersecurity & Digital Risk Analyst Work with different areas of Cybersecurity & Digital Risk (CDR) to determine data sources for analytics and metrics system. Drive the identification of ...
Senior Analyst, Cybersecurity GRC
Chicago, IL · On-site
$103K - $132K/yr
Senior Analyst, Cybersecurity GRC Responsibilities: - Review and understand current IT Risk Management (ITRM) program framework and associated policies, standards, procedures, and processes ...
Senior Analyst, Cybersecurity GRC
Chicago, IL · On-site
$103K - $132K/yr
Senior Analyst, Cybersecurity GRC Responsibilities: - Review and understand current IT Risk Management (ITRM) program framework and associated policies, standards, procedures, and processes ...
CrossFunctional Collaboration - Work with engineering, data science, cybersecurity, model risk, and ... Strong analytical and problemsolving skills with the ability to structure ambiguous problems.
CrossFunctional Collaboration - Work with engineering, data science, cybersecurity, model risk, and ... Strong analytical and problemsolving skills with the ability to structure ambiguous problems.
Cross‑Functional Collaboration -- Work with engineering, data science, cybersecurity, model risk ... Strong analytical and problem‑solving skills with the ability to structure ambiguous problems.
Cross‑Functional Collaboration -- Work with engineering, data science, cybersecurity, model risk ... Strong analytical and problem‑solving skills with the ability to structure ambiguous problems.
... Cybersecurity discipline or equivalent combination of education and experience. Related ... analysis, and Security assessments Experience in one or more of the following: In-depth knowledge ...
... Cybersecurity discipline or equivalent combination of education and experience. Related ... analysis, and Security assessments Experience in one or more of the following: In-depth knowledge ...
Cybersecurity risk and maturity assessments * Security standards assessments and readiness support ... Data mapping and data retention analysis * General cybersecurity advisory services and security ...
Cybersecurity risk and maturity assessments * Security standards assessments and readiness support ... Data mapping and data retention analysis * General cybersecurity advisory services and security ...
Cross-Functional Collaboration - Work with engineering, data science, cybersecurity, model risk ... Strong analytical and problem-solving skills with the ability to structure ambiguous problems.
Cross-Functional Collaboration - Work with engineering, data science, cybersecurity, model risk ... Strong analytical and problem-solving skills with the ability to structure ambiguous problems.
Job Title: Sr. Cybersecurity Governance, Risk, and Compliance (GRC) Associate Location: Onsite 4-5x ... Strong analytical and critical thinking skills and the ability to organize work in a logical ...
Job Title: Sr. Cybersecurity Governance, Risk, and Compliance (GRC) Associate Location: Onsite 4-5x ... Strong analytical and critical thinking skills and the ability to organize work in a logical ...
Use code to perform analysis and repeatable tasks. Leverage Google Apps Script and other automation ... At least 2 years of experience in technology, audit, or cyber security risk management frameworks
Use code to perform analysis and repeatable tasks. Leverage Google Apps Script and other automation ... At least 2 years of experience in technology, audit, or cyber security risk management frameworks
Barilla is looking for an OT Cyber Security Sr. Analyst to join our OT Cyber Security team. The ... risk of massive business interruptions. It is mandatory to provide the highest level of ...
Barilla is looking for an OT Cyber Security Sr. Analyst to join our OT Cyber Security team. The ... risk of massive business interruptions. It is mandatory to provide the highest level of ...
Cyber Security Risk Analyst information
See Chicago, IL salary details
$44.3K - $54.4K
1% of jobs
$54.4K - $64.4K
6% of jobs
$64.4K - $74.4K
10% of jobs
$81.3K is the 25th percentile. Wages below this are outliers.
$74.4K - $84.4K
12% of jobs
$84.4K - $94.5K
15% of jobs
The median wage is $98.8K / yr.
$94.5K - $104.5K
15% of jobs
$104.5K - $114.5K
10% of jobs
$118.9K is the 75th percentile. Wages above this are outliers.
$114.5K - $124.6K
16% of jobs
$124.6K - $134.6K
7% of jobs
$134.6K - $144.6K
5% of jobs
$144.6K - $154.6K
3% of jobs
$44.3K
$102.5K
$154.6K
How much do cyber security risk analyst jobs pay per year?
As of Jun 16, 2026, the average yearly pay for cyber security risk analyst in Chicago, IL is $102,474.00, according to ZipRecruiter salary data. Most workers in this role earn between $82,000.00 and $119,100.00 per year, depending on experience, location, and employer.
Is 40 too old for cyber security?
Cyber Security Risk Analysts can be successful at any age, as the field values skills, experience, and continuous learning. Many professionals transition into cybersecurity later in their careers, often obtaining certifications like CISSP or CompTIA Security+ to enhance their qualifications. Age is generally not a barrier if you have relevant skills and stay current with industry developments.
Is SOC an entry level job?
A Security Operations Center (SOC) analyst role is typically considered an entry-level or early-career position in cybersecurity, often requiring foundational knowledge of security tools, monitoring, and incident response. However, some SOC roles may require prior experience or certifications like CompTIA Security+ or Cisco CCNA, depending on the organization's complexity. Advancement usually involves gaining experience and additional certifications in cybersecurity.
What are the key skills and qualifications needed to thrive in the Cyber Security Risk Analyst position, and why are they important?
A Cyber Security Risk Analyst requires a solid understanding of information security principles, risk assessment methodologies, and a relevant degree such as computer science or cybersecurity. Familiarity with tools like risk management frameworks (NIST, ISO 27001), vulnerability scanners, and certifications such as CISSP, CISM, or CRISC is common in this role. Strong analytical thinking, attention to detail, effective communication, and problem-solving skills are vital soft skills. These competencies enable analysts to accurately identify, assess, and communicate cyber risks, protecting organizations from evolving threats.
What is a Cyber Security Risk Analyst job?
A Cyber Security Risk Analyst is responsible for identifying, assessing, and mitigating cybersecurity risks within an organization. They analyze potential threats, evaluate security controls, and recommend improvements to protect sensitive data and systems. Their role often involves conducting risk assessments, ensuring compliance with industry regulations, and collaborating with IT and security teams to enhance defenses. They also monitor emerging threats and provide strategic insights to minimize vulnerabilities. Ultimately, they help organizations maintain a strong security posture against cyber threats.
What are some typical challenges faced by Cyber Security Risk Analysts on the job?
Cyber Security Risk Analysts commonly face the challenge of keeping up with constantly evolving threats and technology landscapes. They must balance the need for robust security with business objectives, often requiring nuanced decision-making and collaboration across departments. Analysts may also encounter difficulties in communicating complex technical risks to non-technical stakeholders. Successfully navigating these challenges is key to maintaining organizational security and fostering a culture of risk awareness.
What does a cybersecurity risk analyst do?
A cybersecurity risk analyst evaluates an organization’s security posture by identifying vulnerabilities, assessing potential threats, and recommending measures to mitigate risks. They often use tools like risk assessment frameworks and require knowledge of security protocols, compliance standards, and threat intelligence. Their work helps organizations protect sensitive data and maintain secure systems.
Can you make $500,000 a year in cyber security?
Cyber Security Risk Analysts typically earn between $70,000 and $130,000 annually, depending on experience, certifications, and location. Reaching a $500,000 salary generally requires senior roles such as Chief Information Security Officer (CISO) or executive positions, which involve broader responsibilities and leadership skills. High salaries in cybersecurity are often associated with extensive experience, advanced certifications, and strategic management roles.
What are the most commonly searched types of Cyber Security Risk Analyst jobs in Chicago, IL? The most popular types of Cyber Security Risk Analyst jobs in Chicago, IL are:
What are popular job titles related to Cyber Security Risk Analyst jobs in Chicago, IL? For Cyber Security Risk Analyst jobs in Chicago, IL, the most frequently searched job titles are:
What job categories do people searching Cyber Security Risk Analyst jobs in Chicago, IL look for? The top searched job categories for Cyber Security Risk Analyst jobs in Chicago, IL are:
Other
Medical, Dental, Vision, Retirement, PTO
Posted 3 hours ago
Job description
Manager, Cybersecurity Governance and Riskm Chicago, IL
The Manager, Cybersecurity Governance and Risk will lead IT risk management (ITRM) initiatives to increase the transparency of risk impacts to the firm, manage the Cyber risk register, issue log, facilitate the Risk Operating Committee (ROC), and support the Governance and Risk team in identifying and implementing industry standards (e.g., NIST, ISO and COBIT) in accordance with applicable regulatory or client guidelines. The Manager will also assist in developing methodologies, policies, processes, and tools to support InfoSec and Governance and Risk initiatives. The role will contribute to evolving ITRM's oversight, reporting, governance, communications, and education efforts from an Information Security perspective. This position is 100% Onsite and not open for Remote.
Manager, Cybersecurity Governance and Risk Responsibilities:
- Assist with the development, implementation and management of the governance and risk strategic plan and roadmap, including evolving the reporting structure and frequency to InfoSec stakeholders.
- Serve as a key contributor in identifying, managing and communicating governance and risk across InfoSec policy domains, providing expertise to prioritize and manage risk, while facilitating the adoption in conjunction with the Controls Manager of IT Risk policies, standards and guidelines across the enterprise.
- In conjunction with the Controls and TPRM Managers, evolve, develop and manage the development, maintenance and evaluation of organizational InfoSec governance and risk procedures, processes and guidelines in accordance with Firm and Client requirements.
- Work with the Controls Manager and other stakeholders to identify, validate and document deficiencies in ITRM governance, processes and risk management practices, propose remediations, and enforce cross functional POAM initiatives and status reporting requirements in accordance with prioritization requirements.
- Manage the Cyber risk and issue registers and remediations, including supporting monthly ROC meetings (e.g., agenda, data calls, etc.), tracking and aggregating the risk registers and performing risk to policy domain to control(s) mapping to provide prioritization and transparency into control and policy domains requiring remediation.
- Evolve risk methodologies, as well as conduct and support risk assessments to support InfoSec the identification of risk across policy domains, identify opportunities for control enhancement and risk mitigation.
- Assist InfoSec's TPRM and Client InfoSec Assessments, including assessment activities (completion and quality control reviews), developing or revising control narratives and supporting reporting efforts to InfoSec leadership and stakeholders.
- Facilitate the definition and maintenance of InfoSec governance and risk measures and metrics; and handle additional related projects as assigned.
Manager, Cybersecurity Governance and Risk Qualifications:
- Bachelor's degree in information security, Information Assurance, Computer Science, Information Systems, or other related field (2 years of additional experience may be substituted for 2 years of college credits).
- At least 7 years of combined information technology, information security and risk management experience.
- Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat landscape.
- Advanced understanding of risk management concepts, frameworks, and methodologies.
- Strong understanding of information security concepts and technologies.
- Strong project management skills and understanding of the technology and operational risks as related to technology solutions.
- Fundamental knowledge of the operation of law practices and advanced knowledge of MS Outlook, Word, Excel, Visio, and PowerPoint.
- Third party assessment experience, including the evaluation of SOC2 Type 2, SIG, Pen Test, etc., reports.
- Strong understanding of Operational Risk from a Technology perspective.
- Excellent analytical and problem-solving skills, inquisitive nature and comfort challenging current practices.
- Understanding of governance, risk and compliance (GRC) practices and technologies across governance, process and technical domains.
- Background in consulting preferred.
- Ability to develop and maintain solid working relationships across the departments, and high-level technical understanding of security applications, platforms and architectures.
- CISA, CISM, GSEC, CISSP, CRISC or other security-related certification preferred.
Benefits include medical insurance, retirement plan, Dental, Vision, PTO, etc.
Keywords: Chicago IL Jobs, Manager, Cybersecurity Governance and Risk, Information Security, Risk Management, Methodologies, Outlook, Word, Excel, Visio, PowerPoint, Project Management, CFS, NIST, ISO, COSO Framework, GRC, Governance Risk and Compliance, SOC2 Type 2, SIG, Pen Test, CISA, CISM, GSEC, CISSP, CRISC, Chicago Recruiters, Information Technology Jobs, IT Jobs, Chicago Recruiting
Looking to hire for similar positions in Chicago, IL or in other cities? Our IT recruiting agencies and staffing companies can help.
We help companies that are looking to hire Managers, Cybersecurity Governance and Risk for jobs in Chicago, Illinois and in other cities too. Please contact our IT recruiting agencies and IT staffing companies today! Phone 630-428-0600 ext. 11 or email us at jobs@nextstepsystems.com.
Atlanta Georgia IT Recruiters, Austin TX IT Recruiters, Baltimore Executive Staffing, Boston IT Recruiters, Charlotte IT Recruiters, Chicago Recruiting Agency, Cincinnati Executive Search Firms, Cleveland Executive Tech Recruiting, Columbus Technical Recruiters, Dallas Recruiters for IT, Denver Technology Headhunters, Detroit IT Headhunters, Fort Lauderdale Information Technology Recruiters, Houston IT Recruiters, Indianapolis IT Recruiters, Jacksonville IT Recruiters, Kansas City IT Recruiters, Los Angeles IT Recruiters, Miami IT Recruiters, Minneapolis IT Recruiters, Nashville IT Recruiters, New Jersey Tech Recruiters, New York IT Recruiters, Phoenix IT Recruiters, Raleigh IT Recruiters, Salt Lake City IT Recruitment, San Antonio Information Technology Recruiters, San Diego Executive Staffing, San Francisco Executive Search Firms, San Jose Executive Tech Recruiting, Seattle Technical Recruiters, Silicon Valley Tech Recruiters, St. Louis Technology Headhunters, Tampa Technology Headhunters, Washington DC IT Recruiters
Home"Manager, Cybersecurity Governance and Risk
The Manager, Cybersecurity Governance and Risk will lead IT risk management (ITRM) initiatives to increase the transparency of risk impacts to the firm, manage the Cyber risk register, issue log, facilitate the Risk Operating Committee (ROC), and support the Governance and Risk team in identifying and implementing industry standards (e.g., NIST, ISO and COBIT) in accordance with applicable regulatory or client guidelines. The Manager will also assist in developing methodologies, policies, processes, and tools to support InfoSec and Governance and Risk initiatives. The role will contribute to evolving ITRM's oversight, reporting, governance, communications, and education efforts from an Information Security perspective. This position is 100% Onsite and not open for Remote.
Manager, Cybersecurity Governance and Risk Responsibilities:
- Assist with the development, implementation and management of the governance and risk strategic plan and roadmap, including evolving the reporting structure and frequency to InfoSec stakeholders.
- Serve as a key contributor in identifying, managing and communicating governance and risk across InfoSec policy domains, providing expertise to prioritize and manage risk, while facilitating the adoption in conjunction with the Controls Manager of IT Risk policies, standards and guidelines across the enterprise.
- In conjunction with the Controls and TPRM Managers, evolve, develop and manage the development, maintenance and evaluation of organizational InfoSec governance and risk procedures, processes and guidelines in accordance with Firm and Client requirements.
- Work with the Controls Manager and other stakeholders to identify, validate and document deficiencies in ITRM governance, processes and risk management practices, propose remediations, and enforce cross functional POAM initiatives and status reporting requirements in accordance with prioritization requirements.
- Manage the Cyber risk and issue registers and remediations, including supporting monthly ROC meetings (e.g., agenda, data calls, etc.), tracking and aggregating the risk registers and performing risk to policy domain to control(s) mapping to provide prioritization and transparency into control and policy domains requiring remediation.
- Evolve risk methodologies, as well as conduct and support risk assessments to support InfoSec the identification of risk across policy domains, identify opportunities for control enhancement and risk mitigation.
- Assist InfoSec's TPRM and Client InfoSec Assessments, including assessment activities (completion and quality control reviews), developing or revising control narratives and supporting reporting efforts to InfoSec leadership and stakeholders.
- Facilitate the definition and maintenance of InfoSec governance and risk measures and metrics; and handle additional related projects as assigned.
Manager, Cybersecurity Governance and Risk Qualifications:
- Bachelor's degree in information security, Information Assurance, Computer Science, Information Systems, or other related field (2 years of additional experience may be substituted for 2 years of college credits).
- At least 7 years of combined information technology, information security and risk management experience.
- Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat landscape.
- Advanced understanding of risk management concepts, frameworks, and methodologies.
- Strong understanding of information security concepts and technologies.
- Strong project management skills and understanding of the technology and operational risks as related to technology solutions.
- Fundamental knowledge of the operation of law practices and advanced knowledge of MS Outlook, Word, Excel, Visio, and PowerPoint.
- Third party assessment experience, including the evaluation of SOC2 Type 2, SIG, Pen Test, etc., reports.
- Strong understanding of Operational Risk from a Technology perspective.
- Excellent analytical and problem-solving skills, inquisitive nature and comfort challenging current practices.
- Understanding of governance, risk and compliance (GRC) practices and technologies across governance, process and technical domains.
- Background in consulting preferred.
- Ability to develop and maintain solid working relationships across the departments, and high-level technical understanding of security applications, platforms and architectures.
- CISA, CISM, GSEC, CISSP, CRISC or other security-related certification preferred.
Benefits include medical insurance, retirement plan, Dental, Vision, PTO, etc.
Keywords: Chicago IL Jobs, Manager, Cybersecurity Governance and Risk, Information Security, Risk Management, Methodologies, Outlook, Word, Excel, Visio, PowerPoint, Project Management, CFS, NIST, ISO, COSO Framework, GRC, Governance Risk and Compliance, SOC2 Type 2, SIG, Pen Test, CISA, CISM, GSEC, CISSP, CRISC, Chicago Recruiters, Information Technology Jobs, IT Jobs, Chicago Recruiting
Looking to hire for similar positions in Chicago, IL or in other cities? Our IT recruiting agencies and staffing companies can help.
We help companies that are looking to hire Managers, Cybersecurity Governance and Risk for jobs in Chicago, Illinois and in other cities too. Please contact our IT recruiting agencies and IT staffing companies today! Phone 630-428-0600 ext. 11 or email us at jobs@nextstepsystems.com.
Atlanta Georgia IT Recruiters, Austin TX IT Recruiters, Baltimore Executive Staffing, Boston IT Recruiters, Charlotte IT Recruiters, Chicago Recruiting Agency, Cincinnati Executive Search Firms, Cleveland Executive Tech Recruiting, Columbus Technical Recruiters, Dallas Recruiters for IT, Denver Technology Headhunters, Detroit IT Headhunters, Fort Lauderdale Information Technology Recruiters, Houston IT Recruiters, Indianapolis IT Recruiters, Jacksonville IT Recruiters, Kansas City IT Recruiters, Los Angeles IT Recruiters, Miami IT Recruiters, Minneapolis IT Recruiters, Nashville IT Recruiters, New Jersey Tech Recruiters, New York IT Recruiters, Phoenix IT Recruiters, Raleigh IT Recruiters, Salt Lake City IT Recruitment, San Antonio Information Technology Recruiters, San Diego Executive Staffing, San Francisco Executive Search Firms, San Jose Executive Tech Recruiting, Seattle Technical Recruiters, Silicon Valley Tech Recruiters, St. Louis Technology Headhunters, Tampa Technology Headhunters, Washington DC IT Recruiters
Home"Manager, Cybersecurity Governance and Risk
About Next Step Systems
Sourced by ZipRecruiter
Industry
It services
Company size
11 - 50 Employees
Headquarters location
Naperville, IL, US
Year founded
1995