ZipRecruiter

Log In

1

Cybersecurity Risk Management Analyst Jobs in Texas

Ercot

Sr Enterprise Risk Management Analyst

Taylor, TX · On-site

$93K - $127K/yr

JOB SUMMARY The Enterprise Risk Management (ERM) Analyst supports the organization's risk management program by identifying, analyzing, and quantifying risks that could impact strategic objectives.

next page

Showing results 1-20

All JobsCybersecurity Risk Management Analyst JobsCybersecurity Risk Management Analyst Jobs in Texas

Cybersecurity Risk Management Analyst information

What are the key skills and qualifications needed to thrive as a Cybersecurity Risk Management Analyst, and why are they important?

To thrive as a Cybersecurity Risk Management Analyst, you need a solid understanding of information security principles, risk assessment methodologies, and regulatory frameworks, typically backed by a degree in cybersecurity or a related field. Familiarity with tools such as risk management software, vulnerability scanners, and certifications like CISSP, CISM, or CRISC is highly valued. Strong analytical thinking, attention to detail, and effective communication skills help in translating technical risks into actionable insights for stakeholders. These skills ensure organizations can proactively identify, assess, and mitigate cyber risks to protect sensitive information and maintain regulatory compliance.

What does a Cybersecurity Risk Management Analyst do?

A Cybersecurity Risk Management Analyst is responsible for identifying, assessing, and mitigating risks to an organization's information systems and data. They analyze security policies, conduct risk assessments, and recommend controls to minimize potential threats. Their work involves monitoring security measures, ensuring compliance with regulations, and helping develop strategies to protect the organization from cyberattacks. Ultimately, they play a crucial role in safeguarding sensitive information and supporting overall cybersecurity posture.

What are some typical challenges a Cybersecurity Risk Management Analyst faces when working with cross-functional teams?

Cybersecurity Risk Management Analysts often collaborate with IT, legal, compliance, and business units to identify and mitigate risks. A common challenge is bridging the communication gap between technical and non-technical stakeholders, ensuring that risk recommendations are understood and actionable. Additionally, balancing business objectives with security requirements can be complex, requiring strong negotiation and diplomacy skills. Analysts must also stay updated on evolving threats while tailoring solutions to each department’s unique needs.

What is the difference between Cybersecurity Risk Management Analyst vs Cybersecurity Analyst?

AspectCybersecurity Risk Management AnalystCybersecurity Analyst
CertificationsCompTIA Security+, CISSP, CISMCompTIA Security+, CEH, CISSP
Work EnvironmentFocus on risk assessment, policy development, and complianceFocus on threat detection, incident response, and system monitoring
Employer & Industry UsageUsed in organizations prioritizing risk mitigation and complianceUsed across various sectors for security operations and monitoring

While both roles involve cybersecurity, the Cybersecurity Risk Management Analyst primarily assesses and manages risks, ensuring compliance and policy adherence. In contrast, the Cybersecurity Analyst concentrates on identifying threats, monitoring security systems, and responding to incidents. Both roles are essential but focus on different aspects of cybersecurity defense.

What are popular job titles related to Cybersecurity Risk Management Analyst jobs in Texas? For Cybersecurity Risk Management Analyst jobs in Texas, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Risk Management Analyst jobs in Texas look for? The top searched job categories for Cybersecurity Risk Management Analyst jobs in Texas are:
Cybersecurity Risk Management Analyst jobs near you
Infographic showing various Cybersecurity Risk Management Analyst job openings in Texas as of June 2026, with employment types broken down into 94% Full Time, 3% Part Time, 1% Temporary, and 2% Contract. Highlights an 85% Physical, 5% Hybrid, and 10% Remote job distribution.

Senior Cyber Security Analyst Governance (Disaster Recovery, Business Impact)

Vytwo

Prosper, TX

$91K - $118K/yr

Full-time

Posted 17 days ago

Job description

Role: Senior Cyber Security Analyst Governance (Disaster Recovery, Business Impact)
Location: Minneapolis, MN - Hybrid
Rate: Depends on Experience
Job Description
The Senior Cyber Security Analyst Governance (Disaster Recovery) is responsible for governing and overseeing the organizations disaster recovery (DR) program to ensure the resilience and recoverability of critical IT systems.
This role provides independent governance oversight across Business Impact Analyses (BIAs), disaster recovery planning, testing, risk management, and continuous improvement activities.
The position partners with application owners, technology teams, and risk and audit stakeholders to ensure disaster recovery requirements are consistently implemented, tested, and maintained in alignment with enterprise standards and industry frameworks such as ISO 22301 and NIST SP 800-34.
The role also serves as a trusted advisor to application owners, supporting the development and ongoing maintenance of application-level disaster recovery plans.
Key Responsibilities

Disaster Recovery Governance
  • Govern execution of the enterprise disaster recovery framework to ensure recoverability expectations are defined, implemented, and sustained for in-scope systems.
  • Apply and enforce disaster recovery governance standards, processes, and controls across the organization.
  • Maintain oversight of disaster recovery scope, critical system classifications, recovery objectives, and assurance requirements.
Business Impact Analysis (BIA) Oversight
  • Govern the completion and ongoing maintenance of Business Impact Analyses (BIAs) to identify critical applications, recovery objectives, and system dependencies.
  • Review and challenge BIAs for quality, consistency, and alignment with enterprise resilience requirements.
  • Ensure BIAs remain current and reflect changes in business operations, technology, and risk.
Disaster Recovery Testing & Exercises
  • Provide governance oversight of periodic disaster recovery simulations, tabletop exercises, and recovery tests.
  • Evaluate testing outcomes to assess the organizations ability to recover systems within defined recovery objectives.
  • Identify testing gaps, trends, and weaknesses, and recommend improvements to testing practices.
Risk, Issues, and Corrective Action
  • Maintain oversight of disaster recoveryrelated risks, findings, and corrective action plans.
  • Ensure issues identified through BIAs, testing, or audits are documented, assigned, tracked, and remediated.
  • Monitor remediation progress and escalate risks or delays as appropriate.
Audit & Continuous Improvement
  • Support internal and external audits related to disaster recovery by coordinating evidence and preparing governance documentation.
  • Ensure disaster recovery governance activities are audit-ready and defensible.
  • Drive continuous improvement by identifying recurring issues and recommending process or control enhancements.
Advisory & Stakeholder Engagement
  • Provide guidance and consultation to application owners on disaster recovery planning and alignment with enterprise standards.
  • Act as an escalation point for complex disaster recovery planning or governance issues.
  • Collaborate with IT, infrastructure, cloud, and business continuity teams to promote consistent implementation of disaster recovery requirements.
Required Qualifications
  • Bachelors degree in Information Technology, Cybersecurity, Risk Management, Business Continuity, or a related field (or equivalent experience).
  • 46 years of experience in cybersecurity governance, IT risk management, disaster recovery, business continuity, or technology audit.
  • Experience governing or assessing BIAs, disaster recovery planning, recovery testing, and issue remediation.
  • Working knowledge of disaster recovery and resilience frameworks such as ISO 22301 and NIST SP 800-34.
  • Strong analytical, documentation, and stakeholder communication skills.
Preferred Qualifications
  • Experience in a large, complex, or regulated enterprise environment.
  • Familiarity with GRC tools, risk registers, or audit management platforms.
Relevant certifications (preferred but not required): CBCP, CISA, CRISC, CISSP.

Key Competencies
 Governance judgment: ability to apply policy and standards pragmatically while maintaining control integrity.
Risk-based thinking: ability to assess recoverability gaps in terms of business impact.
Influence without authority: effectively challenging and guiding stakeholders to improve resilience outcomes.
Program discipline: strong follow-through on tracking, issue management, and audit readiness.
Clear communication: translating technical disaster recovery concepts into actionable governance expectations.