ZipRecruiter

Log In

1

Cybersecurity Risk Management Jobs in Kentucky (NOW HIRING)

Daikin

Director, IT Audit

Louisville, KY · On-site

Cybersecurity & Technology Risk Expertise * ERP (SAP) & Automated Controls Knowledge * Digital Transformation & Program Assurance * Cloud & Infrastructure Risk Management * Executive Communication ...

Daikin

Director, IT Audit

Louisville, KY

Cybersecurity & Technology Risk Expertise * ERP (SAP) & Automated Controls Knowledge * Digital Transformation & Program Assurance * Cloud & Infrastructure Risk Management * Executive Communication ...

Daikin

Director, IT Audit

Louisville, KY · On-site

Cybersecurity & Technology Risk Expertise * ERP (SAP) & Automated Controls Knowledge * Digital Transformation & Program Assurance * Cloud & Infrastructure Risk Management * Executive Communication ...

Deloitte

Senior Manager - ServiceNow

Louisville, KY · On-site

... cybersecurity. Join our team to deliver powerful solutions to help our clients navigate the ever ... Develop and execute strategies for integrated risk management (IRM), governance, risk, and ...

Deloitte

Consultant - ServiceNow

Louisville, KY · Remote

... in cybersecurity. Join our team to deliver powerful solutions that help clients navigate an ... manage cyber, risk, and technology programs. Recruiting for this role ends on 12/31/2026. Work you ...

Deloitte

Cyber Data Protection Manager

Louisville, KY · Hybrid

$106K - $144K/yr

Project Management * Financials Cyber Security Cyber Security vigilantly protects Deloitte and client data. The team leads a strategic cyber risk program that adapts to a rapidly changing threat ...

Humana

Senior Cybersecurity Engineer

Louisville, KY · Remote

$110K - $150K/yr

Perform risk assessments, follow and enhance the security solutions lifecycle (evaluation, purchase ... Collaborated with cross-functional teams to manage Kubernetes resources, conduct performance tuning ...

next page

Showing results 1-20

All JobsCybersecurity Risk Management JobsCybersecurity Risk Management Jobs in Kentucky

Cybersecurity Risk Management information

See Kentucky salary details

$49.5K

$115.5K

$161.5K

How much do cybersecurity risk management jobs pay per year?

As of Jun 22, 2026, the average yearly pay for cybersecurity risk management in Kentucky is $115,481.00, according to ZipRecruiter salary data. Most workers in this role earn between $96,400.00 and $130,300.00 per year, depending on experience, location, and employer.

What is the role of a risk manager in cybersecurity?

A cybersecurity risk manager identifies, assesses, and prioritizes security risks to an organization’s information systems. They develop strategies to mitigate threats, implement security controls, and ensure compliance with industry standards, often using tools like risk assessment frameworks and security audits. Their role is essential in protecting digital assets and supporting overall cybersecurity posture.

Is security risk management a good career?

Security risk management is a valuable career in cybersecurity, focusing on identifying and mitigating threats to organizational assets. It often requires knowledge of security frameworks, risk assessment tools, and certifications like CISSP or CISM. The field offers strong job growth, competitive salaries, and opportunities across various industries.

What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?

Professionals in Cybersecurity Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, balancing security needs with business objectives, and ensuring compliance with industry regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and close collaboration with IT, legal, and business teams. Building strong partnerships across departments and investing in ongoing training can help mitigate these obstacles and support proactive risk management.

What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?

AspectCybersecurity Risk ManagementCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageFinancial, healthcare, government, large enterprisesIT departments, cybersecurity firms, corporate security teams

Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.

What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?

To thrive in Cybersecurity Risk Management, you need a solid understanding of information security principles, risk assessment methodologies, compliance standards, and typically a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security tools, and professional certifications like CISSP or CRISC is highly valued. Strong analytical thinking, effective communication, and problem-solving skills help professionals translate technical risks for non-technical stakeholders and foster collaboration. These competencies are crucial to proactively identifying threats, managing vulnerabilities, and ensuring organizational resilience in a rapidly evolving digital landscape.

What is cybersecurity risk management?

Cybersecurity risk management is the process of identifying, assessing, and prioritizing risks to an organization's digital assets and information systems. It involves implementing strategies and controls to minimize the impact of potential cyber threats, such as data breaches, malware, and unauthorized access. The goal is to balance security measures with business needs, ensuring sensitive information remains protected while maintaining operational efficiency. Effective risk management is ongoing, adapting to new threats and changes within the organization.

What is risk management in cyber security?

In cybersecurity risk management, professionals identify, assess, and prioritize potential security threats to an organization’s information systems. They implement strategies and controls to mitigate or accept risks, often using frameworks like NIST or ISO 27001, and may hold certifications such as CISSP or CISM to ensure effective risk handling.

Can you make $500,000 a year in cyber security?

Cybersecurity risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working in large organizations with complex security needs.
What are popular job titles related to Cybersecurity Risk Management jobs in Kentucky? For Cybersecurity Risk Management jobs in Kentucky, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Risk Management jobs in Kentucky look for? The top searched job categories for Cybersecurity Risk Management jobs in Kentucky are:
Cybersecurity Risk Management jobs near you
Director, IT Audit

Director, IT Audit

Daikin

Louisville, KY • On-site

Full-time

Posted 24 days ago

Daikin rating

7.7

Company rating: 7.7 out of 10

Based on 124 frontline employees who took The Breakroom Quiz

191st of 418 rated machine equipment manufacturers

Job description

The Director, IT Audit leads the enterprise IT audit strategy and execution across Daikin Americas, providing independent, risk-based assurance over technology governance, cybersecurity, digital transformation, data governance, and automated business processes. This role evaluates the design and effectiveness of technology controls supporting critical systems, infrastructure, and emerging technologies while ensuring alignment with leading governance and security frameworks including COSO, NIST Cybersecurity Framework, ISO 27001, COBIT, and JSOX requirements.
The Director will play a key leadership role in advancing a modern, technology-enabled Internal Audit function, leveraging data analytics, automation, and continuous auditing techniques to provide proactive insights and strengthen risk management across the enterprise.
Position Responsibilities may include:
  • Develop and maintain a risk-based IT audit strategy and multi-year technology audit roadmap aligned with enterprise risks and digital transformation initiatives
  • Lead development and execution of the annual IT audit plan
  • Integrate IT risk insights into the broader enterprise audit plan and risk assessment process
  • Provide independent assurance over the organization's cybersecurity programs
  • Provide independent oversight of critical enterprise systems, applications and technology initiatives
  • Evaluate governance frameworks and internal controls supporting the responsible use of AI technologies
  • Support the enterprise JSOX program through oversight of ITGC and application controls testing
  • Modernize the IT audit approach with advanced data analytics, automation, and AI-enabled tools
  • Build trusted relationships across the organization including IT leadership, Information Security, Enterprise Risk Management, Legal & Compliance, Finance and external auditors
  • Manage relationships with external co-sourcing partnerships

Nature & Scope:
  • Develops and implements strategic plans and objectives for the department/sub-function in an effective and innovative fashion
  • Understands the business and can put together comprehensive department solutions
  • Works with other leaders to establish strategic plans and works towards achieving them
  • Provides leadership and direction to managers in their respective division/department
  • Sees to department staffing needs (e.g. interviewing, hiring, new hire and ongoing training, annual evaluations, etc.)
  • Participates in budget development and monitoring of expenses
  • Level of signing authority established by company policy/guidelines

Knowledge & Skills:
  • Strong interpersonal and presentation skills, including the ability to communicate effectively with others at all levels inside and outside the company
  • Ability to work independently with minimal supervision
  • Expert Excel, Access, Word, Outlook and PowerPoint Skills
  • Analytic Skills: Ability to think objectively and interpret meaningful themes from quantitative and qualitative data
  • Problem Solving & Decision Quality: Able to use rigorous logic and methods to solve problems with effective solutions
  • Relationship Management: Able to build constructive and effective relationships with a broad and diverse group of business partners
  • Leadership and performance management skills
  • Strong verbal and written communications skills
  • Excellent organizational and time management skills
  • Possess strong interpersonal skills to deal effectively with a wide variety of people assertively and confidently

Competencies:
  • Risk-Based IT Audit Leadership
  • Cybersecurity & Technology Risk Expertise
  • ERP (SAP) & Automated Controls Knowledge
  • Digital Transformation & Program Assurance
  • Cloud & Infrastructure Risk Management
  • Executive Communication & Influence
  • Strategic Business Partnership
  • Audit Judgment & Critical Thinking
  • Data Analytics & Continuous Auditing
  • Leadership & Talent Development

Experience:
  • 12+ years of IT audit, cybersecurity, or technology risk experience
  • 8+ years in a leadership or management role
  • Experience in public company environments with SOX / JSOX
  • Experience auditing ERP environments (SAP preferred)
  • Experience with cloud technologies (AWS, Azure, or Google Cloud)
  • Experience assessing cybersecurity programs
  • Experience working with external audit firms and regulators

Education/Certification:
  • Bachelor's degree in Information Systems, Computer Science, Accounting, or related field
  • One or more of the following required:
  • CISA - Certified Information Systems Auditor
  • CISSP - Certified Information Systems Security Professional
  • CIA - Certified Internal Auditor
  • CISM - Certified Information Security Manager
  • CRISC - Certified in Risk and Information Systems Control

People Management Yes
Physical Requirements / Work Environment Must be able to perform essential responsibilities with or without reasonable accommodations
Reports To: Vice President, Internal Audit
The Company provides equal employment opportunity to all employees and applicants regardless of a person's race, color, religion (including religious dress or grooming practices), creed, national origin (including language use restrictions), citizenship, uniform service member or veteran status, ancestry, disability, physical or mental disability (including HIV/AIDS), medical condition (including cancer and genetic characteristics), genetic information, request for protected leave, marital status, sex, pregnancy, age (over 40), sexual orientation, gender, gender identity or expression, political affiliation, or any other characteristic protected by law. The Company will comply with all federal and state regulations and statutes about individuals with disabilities.
Equal Opportunity Employer
This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.

What Daikin employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

Apply