1

Cybersecurity Risk Management Jobs in Kentucky (NOW HIRING)

Establishing and operating the enterprise cybersecurity risk management program, including risk identification, prioritization, and tracking * Defining and enforcing risk acceptance, escalation, and ...

Establishing and operating the enterprise cybersecurity risk management program, including risk identification, prioritization, and tracking * Defining and enforcing risk acceptance, escalation, and ...

IT Director

Louisville, KY · On-site

$130K - $150K/yr

Advise executive leadership on technology investments, cybersecurity risk management, and emerging technologies. * Establish and enforce IT governance policies, cybersecurity standards, and best ...

IT Director

Louisville, KY · On-site

$130K - $150K/yr

Advise executive leadership on technology investments, cybersecurity risk management, and emerging technologies. * Establish and enforce IT governance policies, cybersecurity standards, and best ...

IT Director

Louisville, KY · On-site

$130K - $150K/yr

Advise executive leadership on technology investments, cybersecurity risk management, and emerging technologies. * Establish and enforce IT governance policies, cybersecurity standards, and best ...

Cyber Security Tutor

Lexington, KY · Remote

$18 - $40/hr

Emphasizes a systematic approach to security assessment and connects cybersecurity to business risk management, compliance requirements, and ethical computing practices. * Curriculum Awareness ...

... of cybersecurity risk management and access control frameworks. • Experience mentoring business analysts and contributing to team development. • Familiarity with enterprise-scale IAM ...

Emphasizes a systematic approach to security assessment and connects cybersecurity to business risk management, compliance requirements, and ethical computing practices. * Curriculum Awareness ...

Internal Audit Manager - Technology

Louisville, KY · On-site +1

$97K - $128K/yr

Strong track record of leading cybersecurity audits and advising on IT risk, including areas such as access management, data protection, cloud security, and third-party risk * Ability to think ...

next page

Showing results 1-20

Cybersecurity Risk Management information

See Kentucky salary details

$49.5K

$115.5K

$161.5K

How much do cybersecurity risk management jobs pay per year?

As of Jul 11, 2026, the average yearly pay for cybersecurity risk management in Kentucky is $115,481.00, according to ZipRecruiter salary data. Most workers in this role earn between $96,400.00 and $130,300.00 per year, depending on experience, location, and employer.

Can I make $200,000 a year in cyber security?

Cybersecurity risk management professionals can earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and roles in senior management or specialized fields. Salary levels vary based on industry, location, and the complexity of the organization's security needs.

What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?

Professionals in Cybersecurity Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, balancing security needs with business objectives, and ensuring compliance with industry regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and close collaboration with IT, legal, and business teams. Building strong partnerships across departments and investing in ongoing training can help mitigate these obstacles and support proactive risk management.

How much does a cybersecurity risk analyst make?

A cybersecurity risk analyst typically earns between $70,000 and $120,000 annually, depending on experience, certifications, and location. Entry-level positions may start lower, while experienced analysts with certifications like CISSP or CISA can earn higher salaries, especially in high-demand industries.

What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?

AspectCybersecurity Risk ManagementCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageFinancial, healthcare, government, large enterprisesIT departments, cybersecurity firms, corporate security teams

Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.

What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?

To thrive in Cybersecurity Risk Management, you need a solid understanding of information security principles, risk assessment methodologies, compliance standards, and typically a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security tools, and professional certifications like CISSP or CRISC is highly valued. Strong analytical thinking, effective communication, and problem-solving skills help professionals translate technical risks for non-technical stakeholders and foster collaboration. These competencies are crucial to proactively identifying threats, managing vulnerabilities, and ensuring organizational resilience in a rapidly evolving digital landscape.

What does a cyber risk manager do?

A cyber risk manager assesses and prioritizes cybersecurity threats to an organization, develops strategies to mitigate risks, and implements security policies. They often use tools like risk assessment frameworks and require certifications such as CISSP or CISM to effectively manage security risks and ensure compliance.

What is cybersecurity risk management?

Cybersecurity risk management is the process of identifying, assessing, and prioritizing risks to an organization's digital assets and information systems. It involves implementing strategies and controls to minimize the impact of potential cyber threats, such as data breaches, malware, and unauthorized access. The goal is to balance security measures with business needs, ensuring sensitive information remains protected while maintaining operational efficiency. Effective risk management is ongoing, adapting to new threats and changes within the organization.

Can you make $500,000 a year in cyber security?

Cybersecurity risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working for large organizations with complex security needs.
What are popular job titles related to Cybersecurity Risk Management jobs in Kentucky? For Cybersecurity Risk Management jobs in Kentucky, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Risk Management jobs in Kentucky look for? The top searched job categories for Cybersecurity Risk Management jobs in Kentucky are:
Infographic showing various Cybersecurity Risk Management job openings in Kentucky as of July 2026, with employment types broken down into 2% Locum Tenens, 86% Full Time, 9% Part Time, and 3% Contract. Highlights an 79% Physical, 5% Hybrid, and 16% Remote job distribution, with an average salary of $115,481 per year, or $55.5 per hour.
Cybersecurity Risk Manager - (In-Person / No Relocation)

Cybersecurity Risk Manager - (In-Person / No Relocation)

Navigant Credit Union

Douglas, KY

Full-time

Medical, Dental, Vision, Retirement

Posted 11 days ago


Job description

About the Role:

We're looking for a Cybersecurity Risk Manager who can spot weaknesses before they become problems. In this role, you'll evaluate risks in our technology systems, our use of artificial intelligence, and the vendors we rely on. You'll turn complex technical issues into clear guidance for leaders and help shift our security program from reactive to proactive-using data, intelligence, and forwardthinking strategies.

What You'll Do:
  • Lead highvalue technical risk assessments that directly strengthen the Credit Union's security and protect members' financial wellbeing.
  • Shape the organization's AI and emergingtech strategy by evaluating new technologies, automation trends, and advanced attacker capabilities.
  • Become a trusted advisor to leadership by turning complex technical findings into clear, actionable insights that influence major decisions.
  • Build and operationalize the AI Governance Program-defining responsible, ethical, and compliant AI use across the enterprise and its vendors.
  • Lead rigorous thirdparty security and AI reviews that shape vendor selection, strengthen partnerships, and reduce supplychain risk.
  • Stay ahead of evolving threats by monitoring vendor breaches, correlating alerts, and tracking AIdriven attack techniques to proactively strengthen defenses.
  • Own incident readiness and response through tabletop exercises, scenario planning, and postincident improvements that elevate organizational resilience.
  • Drive meaningful control enhancements by collaborating with IT and business teams to uncover root causes and improve security across systems and processes.
  • Transform risk data into intelligence by making AI, vendor, and cyber event information actionable within Archer IRM.
  • Grow and mentor analysts-building a stronger, more capable Information Security team while serving as the escalation point for complex risk decisions.



Qualifications:
  • Bachelor's degree in cybersecurity, information assurance, or risk (or equivalent experience).

  • 5+ years of risk management experience required, ideally in a financial institution.

  • Certification in Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or equivalent certification preferred.
  • Handson experience with enterprise risk management tools (Archer IRM preferred).

  • Strong technical understanding of cybersecurity risks, systems, and controls.

  • Ability to explain complex technical issues in simple, clear terms.

  • Knowledge of GLBA, NIST, and FFIEC requirements.

  • Strong problemsolving skills, attention to detail, and ability to manage multiple priorities.

  • High integrity and ability to handle confidential information.

  • Proficiency with Microsoft Office.


ABOUT:

People helping people is what makes Navigant Credit Union truly special. Our mission is to improve the financial well-being of the families, businesses, and communities we serve, and have been since our founding in 1915.

At $4 billion in assets, Navigant Credit Union is the largest credit union in Rhode Island and third largest in New England. Our success is founded upon our community-based values and our belief in putting people first. These are just a few of the reasons why Navigant Credit Union has been named "Rhode Island's Best Place to Work" year-after-year by the Providence Business News.

Our Core Values of "Leadership, Unity, Caring, and Integrity" are the guiding principles for our organization. They are the qualities and/or traits that we consider a high priority for Navigant Credit Union employees.

Navigant Credit Union prides itself on investing in our workforce, while exceeding member expectations. We offer tremendous opportunities for professional development, career advancement, and a best-in-class benefits package including robust medical and dental plans, vision benefits, 401(k) with a generous employer match, tuition reimbursement, competitive salaries, paid volunteer days, and more.

If you believe you'd be a great fit, and are interested in joining our team, check out our open positions and apply today!