1

Cyber Security Risk Management Jobs in Ohio (NOW HIRING)

Senior Cybersecurity Manager

Dayton, OH · On-site

$107K - $145K/yr

Senior Cybersecurity Manager KBR is seeking an experienced Cybersecurity Manager to assist and ... Support Risk Management Framework (RMF) Assessment and Authorization (A&A) processes leading to ...

Senior Cybersecurity Manager

Beavercreek, OH

$103K - $139K/yr

ESSENTIAL DUTIES & RESPONSIBILITIES Support Risk Management Framework (RMF) Assessment and ... key cybersecurity analyses and use technical risk management principles to assess Air Force ...

Senior Cybersecurity Manager

Beavercreek, OH · On-site

$103K - $139K/yr

ESSENTIAL DUTIES & RESPONSIBILITIES • Support Risk Management Framework (RMF) Assessment and ... key cybersecurity analyses and use technical risk management principles to assess Air Force ...

Provide the PMO/Capability Development Manager (CDM) cybersecurity support per DoDI 8500.01. * Assessing and continuously monitoring cybersecurity risk ensuring that legacy and new capabilities ...

Senior Cybersecurity Specialist Job Location: Dayton, OH Job Type: Full-Time • Own the PG ... Risk Management Framework (RMF) process from categorization through authorization; shepherd ...

Cybersecurity SME

Dayton, OH · On-site

$90K - $140K/yr

Have knowledge of the Systems Security Engineering disciplines to include Anti-Tamper, Trusted Systems & Networks, Cybersecurity, Hardware/Software/Firmware Assurance, Supply Chain Risk Management ...

next page

Showing results 1-20

Cyber Security Risk Management information

See Ohio salary details

$54.2K

$126.4K

$176.8K

How much do cyber security risk management jobs pay per year?

As of Jul 4, 2026, the average yearly pay for cyber security risk management in Ohio is $126,407.00, according to ZipRecruiter salary data. Most workers in this role earn between $105,500.00 and $142,600.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Cyber Security Risk Management professional, and why are they important?

To thrive in Cyber Security Risk Management, you need a solid understanding of risk assessment methodologies, information security frameworks (such as ISO 27001 or NIST), and often a relevant degree or certification like CISSP or CISM. Familiarity with security tools, vulnerability assessment platforms, and risk management software is typically required. Strong analytical thinking, attention to detail, and effective communication are crucial soft skills for identifying threats and conveying risk to stakeholders. These skills ensure that organizations can proactively manage and mitigate cyber threats, safeguarding critical assets and maintaining compliance.

What is cyber security risk management?

Cyber security risk management is the process of identifying, assessing, and prioritizing risks to an organization's information systems and data. It involves evaluating potential threats and vulnerabilities, determining the likelihood and impact of these risks, and implementing measures to mitigate or manage them. Effective risk management helps organizations protect sensitive data, ensure regulatory compliance, and minimize the impact of cyber attacks. This process is ongoing and adapts to new threats and changes in technology.

What is the difference between Cyber Security Risk Management vs Cyber Security Analyst?

AspectCyber Security Risk ManagementCyber Security Analyst
CertificationsCompTIA Security+, CISSP, CISMCompTIA Security+, CEH, CISSP (preferred)
Work EnvironmentPolicy development, risk assessment, strategic planningMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageOrganizations focusing on risk mitigation and complianceOrganizations implementing and maintaining security measures

Cyber Security Risk Management professionals focus on identifying, assessing, and mitigating security risks at an organizational level, often involved in policy and strategy. Cyber Security Analysts primarily monitor security systems, analyze threats, and respond to incidents. While both roles require similar certifications and work within the same industry, their core responsibilities differ: risk managers develop strategies, whereas analysts execute security measures and respond to threats.

What does a cyber risk manager do?

A cyber risk manager assesses and prioritizes cybersecurity threats to an organization, develops strategies to mitigate risks, and implements security policies. They often use tools like risk assessment frameworks and require certifications such as CISSP or CISM to effectively manage security risks in a dynamic environment.

What are some typical challenges faced by professionals in Cyber Security Risk Management, and how can they be addressed?

Professionals in Cyber Security Risk Management often encounter challenges such as staying updated with rapidly evolving threats, balancing security needs with business objectives, and ensuring compliance with various regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and the implementation of robust risk assessment frameworks. Collaboration with IT, legal, and business teams is essential to develop practical security policies that protect assets without hindering operations.

Can you make $500,000 a year in cyber security?

Cyber security risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working for large organizations with complex security needs.

Can I make $200,000 a year in cyber security?

Cyber Security Risk Management professionals can potentially earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and roles in high-demand sectors or leadership positions. Salaries vary based on location, company size, and individual expertise, but high-level cybersecurity roles often reach or exceed this income level.

Is security risk management a good career?

Security risk management is a valuable career in cybersecurity, focusing on identifying and mitigating potential threats to an organization’s information systems. It often requires knowledge of security frameworks, risk assessment tools, and certifications like CISSP or CISM, and offers strong job growth and demand across various industries.
What are popular job titles related to Cyber Security Risk Management jobs in Ohio? For Cyber Security Risk Management jobs in Ohio, the most frequently searched job titles are:
What job categories do people searching Cyber Security Risk Management jobs in Ohio look for? The top searched job categories for Cyber Security Risk Management jobs in Ohio are:
Infographic showing various Cyber Security Risk Management job openings in Ohio as of June 2026, with employment types broken down into 83% Full Time, 14% Part Time, 1% Temporary, and 2% Contract. Highlights an 93% Physical, 3% Hybrid, and 4% Remote job distribution, with an average salary of $126,407 per year, or $60.8 per hour.
Cybersecurity Engineer, Senior (ISSM)

Cybersecurity Engineer, Senior (ISSM)

Torch Technologies, Inc.

Kettering, OH • On-site

$51 - $62.50/hr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 13 days ago


Job description

Torch Technologies
Thank you for your interest in employment with Torch Technologies. We are a 100% employee-owned, Certified Great Place To Work and named Best Places to Work in Huntsville/Madison County, headquartered in Huntsville, AL. Our team provides superior research, development, and engineering services to the Federal Government and Department of War. As one of the nation's top 100 defense companies, the services we provide directly support the men and women who serve our country. Our corporate mission sums up the pride our employee-owners take in the work we do: "Lighting the Pathway of Freedom". And, as a Certified Evergreen ESOP, we have made the commitment to grow and sustain our company for the next 100 years! Come grow with us!
Torch Technologies has an exciting opportunity for a Cybersecurity Engineer, Senior (ISSM) located Kettering, OH (Dayton/WPAFB area) to support our EPASS GB contract. As part of the AFLCMC/GB Business and Enterprise Systems Directorate (BES), the Stock Control System (SCS) is a web-based and mainframe wholesale and depot retail asset management system. It provides enhanced processing of stock control transactions and management information for Air Force and Marine Corps (USMC) operations. The system directly supports AF, USMC, and other service/agency customers. It provides worldwide combat readiness and sustainability for the warfighter through allocation, custody, and distribution of supply and equipment items supporting the full range of Air Force weapon systems such as F-35, F22, F-15, F-16, A-10, C-130, C-17, C-5, etc. The SCS FIAR RDT&E efforts are focused on modernizing and improving this Air Force capability. The successful candidate will provide the PMO/Capability Development Manager (CDM) cybersecurity support per DoDI 8500.01. Support includes assessing and continuously monitoring cybersecurity risk ensuring that legacy and new capabilities adhere to enterprise standards such as Risk Management Framework (RMF), Cybersecurity Framework (CSF), and National Institute of Standards and Technology (NIST) and per Authorization Official's Information System's Continuous Monitoring (ISCM) strategy.
As a Cybersecurity Engineer, Senior (ISSM) your duties include, but are not limited to:
  • Serves as the primary cybersecurity technical advisor to the AO, PM and ISO.
  • Ensures the integration of cybersecurity into, and throughout, the lifecycle of the IT, on behalf of the AO and in accordance with DoWI 8510.0.
  • Completes and maintains required cybersecurity certification IAW AFMAN 17-1303;
  • Ensures all AF IT cybersecurity-related documentation is current and accessible to properly authorized individuals;
  • Supports the PM or ISO in maintaining current authorization to operate, approval to connect (if required), and implementing corrective actions identified in the plan of actions and milestones;
  • Coordinates, with the PM and AO staffs, development of an ISCM strategy and monitors any proposed or actual changes to the system and its environment;
  • Continuously monitors the IT and environment for security-relevant events;
  • Assesses proposed configuration changes for potential impact to the cybersecurity posture;
  • Assesses the quality of security controls implementation against performance indicators;
  • Ensures cybersecurity-related events or configuration changes that impact AF IT authorization or adversely impact the security posture are formally reported to the AO and other affected parties, such as IOs, stewards, and AOs of interconnected IT;
  • Ensures all ISSOs and privileged users receive necessary technical training and obtain cybersecurity certification IAW AFMAN 17-1301, Computer Security (COMPUSEC), AFMAN 17-1303, and maintain proper clearances IAW DoWI 8500.01; and,
  • Ensures the AF IT is acquired, documented, operated, used, maintained, and disposed of properly IAW DoWI 5000.02 and DoWI 8510.01.

Job Requirements:
  • U.S. Citizenship
  • Master's or Doctorate Degree in a related field and 10 years of experience in the respective technical/professional discipline being performed, five years of which must be in the DoW OR
  • Bachelor's Degree and 12 years of experience in the respective technical/professional discipline being performed, five of which must be in the DoW OR
  • 15 years of directly related experience with proper certifications as described in the PWS labor category performance requirements, eight of which must be in the DoW.
  • Must have the knowledge, experience and recognized ability to be considered highly skilled in their technical/professional field.
  • Must possess the ability to perform tasks independently and oversee the efforts of junior and journeyman contractor personnel within the technical/professional discipline. Demonstrates advanced knowledge of their technical/professional discipline as well as possess a comprehensive understanding and ability to apply associated standards, procedures and practices in their area of expertise (Program Office, Enterprise and Staff Level Support interface).
  • All Cybersecurity professionals should possess experience providing guidance on the following to include, but not limited to:
    • Access control.
    • Configuration management.
    • System and communications protection.
    • Contingency planning.
    • Incident handling.
    • System and information integrity.
    • Security and privacy training and awareness; and,
    • Software development activities, software and tools related to Cybersecurity.
  • Experience performing cybersecurity duties as outlined in DoDI 8500.01, AFI 17-130, and AFI 17-1301 for assigned AF IT.
  • Experience validating, evaluating and analyzing finding results and developer adjudications using automated testing tools, e.g., Fortify, Checkmarx, SonarQube, and AppScan.
  • Experience utilizing DoD tracking systems to input/document cybersecurity deficiencies, vulnerabilities, and change requests in the appropriate tracking system for each program, e.g., Jira, HP ALM, and eMASS.
  • Experience with conducting information security continuous monitoring (ISCM) by maintaining ongoing awareness of information security, vulnerabilities, and threats to support organizational risk management decisions IAW approved ISCM strategy.
  • At a minimum, the successful candidate will meet the requirements for and maintain a personnel certification associated with the DCWF ISSM work role (722) at an advanced (senior) proficiency level as outlined in DoWI 8510.01, AFMAN 17-1305 and AFI 17-101 for assigned systems/applications:
    • ISACA CISM
    • United America Technologies CISSO
    • FITSI FITSP-M
    • GIAC GCIA
    • GIAC GCSA
    • GIAC GCIH
    • GIAC GSLC
    • GIAC GICSP
    • (ISC)2 CISSP-ISSMP
    • (ISC)2 CISSP

Preferred Qualifications:
  • Working knowledge of the Agile Development methodology
  • Experience using any, or all, of the following tools:
    • CheckMarx
    • SonarQube
    • Jira
    • Confluence
    • Mavin
    • Jenkins
    • Bitbucket

Schedule: 40 Hrs/week
Work Location: Kettering, OH
Travel: 0-10%
Relocation Assistance Available: No
Position Contingent Upon Award of Contract: No
#LI-EW1
Benefits:
Torch Technologies is proud to offer a stable and professional work environment, a competitive salary, and an excellent, comprehensive benefit package including: ESOP participation, 401(k) match and safe-harbor contribution, medical, dental, vision, life insurance, short-term disability, long-term disability, flexible spending accounts, Health Saving Accounts and Health Reimbursement Accounts, EAP, education assistance, paid time off, and holidays.
Applying to Torch Technologies:
Only those candidates invited for an interview will be contacted. Employment at Torch Technologies is contingent upon the successful completion of a comprehensive background check.
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, citizenship, ancestry, marital status, protected veteran status, disability status or any other status protected by federal, state, or local law. Torch Technologies, Inc. participates in E-Verify.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access Careers Link as a result of your disability. You can request reasonable accommodations by sending an email to HR@torchtechnologies.com. Thank you for your interest in Torch Technologies.