ZipRecruiter

Log In

1

Cybersecurity Risk Management Jobs (NOW HIRING)

next page

Showing results 1-20

All JobsCybersecurity Risk Management Jobs

Cybersecurity Risk Management information

See salary details

$57K

$133K

$186K

How much do cybersecurity risk management jobs pay per year?

As of Jun 20, 2026, the average yearly pay for cybersecurity risk management in the United States is $132,962.00, according to ZipRecruiter salary data. Most workers in this role earn between $111,000.00 and $150,000.00 per year, depending on experience, location, and employer.

What is the role of a risk manager in cybersecurity?

A cybersecurity risk manager identifies, assesses, and prioritizes security risks to an organization’s information systems. They develop strategies to mitigate threats, implement security controls, and ensure compliance with industry standards, often using tools like risk assessment frameworks and security audits. Their role is essential in protecting digital assets and supporting overall cybersecurity posture.

Is security risk management a good career?

Security risk management is a valuable career in cybersecurity, focusing on identifying and mitigating threats to organizational assets. It often requires knowledge of security frameworks, risk assessment tools, and certifications like CISSP or CISM. The field offers strong job growth, competitive salaries, and opportunities across various industries.

What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?

Professionals in Cybersecurity Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, balancing security needs with business objectives, and ensuring compliance with industry regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and close collaboration with IT, legal, and business teams. Building strong partnerships across departments and investing in ongoing training can help mitigate these obstacles and support proactive risk management.

What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?

AspectCybersecurity Risk ManagementCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageFinancial, healthcare, government, large enterprisesIT departments, cybersecurity firms, corporate security teams

Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.

What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?

To thrive in Cybersecurity Risk Management, you need a solid understanding of information security principles, risk assessment methodologies, compliance standards, and typically a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security tools, and professional certifications like CISSP or CRISC is highly valued. Strong analytical thinking, effective communication, and problem-solving skills help professionals translate technical risks for non-technical stakeholders and foster collaboration. These competencies are crucial to proactively identifying threats, managing vulnerabilities, and ensuring organizational resilience in a rapidly evolving digital landscape.

What is cybersecurity risk management?

Cybersecurity risk management is the process of identifying, assessing, and prioritizing risks to an organization's digital assets and information systems. It involves implementing strategies and controls to minimize the impact of potential cyber threats, such as data breaches, malware, and unauthorized access. The goal is to balance security measures with business needs, ensuring sensitive information remains protected while maintaining operational efficiency. Effective risk management is ongoing, adapting to new threats and changes within the organization.

What is risk management in cyber security?

In cybersecurity risk management, professionals identify, assess, and prioritize potential security threats to an organization’s information systems. They implement strategies and controls to mitigate or accept risks, often using frameworks like NIST or ISO 27001, and may hold certifications such as CISSP or CISM to ensure effective risk handling.

Can you make $500,000 a year in cyber security?

Cybersecurity risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working in large organizations with complex security needs.
More about Cybersecurity Risk Management jobs
What cities are hiring for Cybersecurity Risk Management jobs? Cities with the most Cybersecurity Risk Management job openings:
What states have the most Cybersecurity Risk Management jobs? States with the most job openings for Cybersecurity Risk Management jobs include:
What job categories do people searching Cybersecurity Risk Management jobs look for? The top searched job categories for Cybersecurity Risk Management jobs are:
Cybersecurity Risk Management jobs near you
Infographic showing various Cybersecurity Risk Management job openings in the United States as of June 2026, with employment types broken down into 99% Full Time, and 1% Temporary. Highlights an 92% Physical, 2% Hybrid, and 6% Remote job distribution, with an average salary of $132,962 per year, or $63.9 per hour.

Senior - Third-Party Cybersecurity & Risk Management

Ruri Software Technologies LLC

Raleigh, NC • On-site

Full-time

Posted yesterday

Job description

Job Title :Senior - Third-Party Cybersecurity & Risk Management
Location :Hybrid, (3 days onsite) Charlotte, NC, Mt Laurel Township, NJ
Top Skills Requried :
TP Cybersecurity & Risk Management, Hands-on Cybersecurity & Risk Management, 3rd Party experience / skillset
Job Description/ Responsibilities :
We are seeking a Senior Engineer (Cyber, Data & Security) with 6 to 8 years of experience to join our Governance, Risk & Compliance (GRC) team. The ideal candidate will focus on Third-Party (TP) Cybersecurity & Risk Management.
In this role, you will conduct cybersecurity and risk management activities focused on third-party relationships and vendor security assessments.
Key Responsibilities
Third-Party Cybersecurity Management
• Vendor Assessments: Conduct cybersecurity assessments of third-party vendors.
• Risk Documentation: Document cybersecurity risks associated with third-party relationships.
• Security Reviews: Review and validate vendor security controls and practices.
Risk Management
• Risk Analysis: Analyze and assess third-party cybersecurity risks.
• Compliance Monitoring: Monitor vendor compliance with security requirements.
• Remediation Support: Support remediation of identified third-party risks.
Required Technical Skills & Qualifications
• Experience: 6-8 years of experience in Cybersecurity & Risk Management.
• Third-Party Risk: Experience in third-party risk assessment and management.
• Security Frameworks: Knowledge of security frameworks (NIST, ISO 27001, SOC 2).
• Assessment Skills: Vendor security assessment capabilities.
Soft Skills & Team Alignment
• Collaborative: Work effectively with vendors and internal teams.
• Detail-Oriented: Meticulous documentation and tracking of risks.
• Strong Communicator: Clearly communicate risk findings and requirements.
Years of Experience: 10.00 Years of Experience
Regards
Surya
Surya@rurisoft.com

Apply