1

Cybersecurity Risk Management Jobs in Tennessee (NOW HIRING)

Cybersecurity Lead

Oak Ridge, TN · On-site

$96K - $130K/yr

NIST 800-53 Rev 5, Risk Management Framework, NIST Cybersecurity Framework (CSF), FedRAMP ... Authorization, Tenable Nessus (ACAS), and DISA STIGs. Desired Skills * Strategic thinker with ...

next page

Showing results 1-20

Cybersecurity Risk Management information

See Tennessee salary details

$51.7K

$120.7K

$168.8K

How much do cybersecurity risk management jobs pay per year?

As of Jul 12, 2026, the average yearly pay for cybersecurity risk management in Tennessee is $120,679.00, according to ZipRecruiter salary data. Most workers in this role earn between $100,700.00 and $136,100.00 per year, depending on experience, location, and employer.

Can I make $200,000 a year in cyber security?

Cybersecurity risk management professionals can earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and roles in senior management or specialized fields. Salary levels vary based on industry, location, and the complexity of the organization's security needs.

What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?

Professionals in Cybersecurity Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, balancing security needs with business objectives, and ensuring compliance with industry regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and close collaboration with IT, legal, and business teams. Building strong partnerships across departments and investing in ongoing training can help mitigate these obstacles and support proactive risk management.

How much does a cybersecurity risk analyst make?

A cybersecurity risk analyst typically earns between $70,000 and $120,000 annually, depending on experience, certifications, and location. Entry-level positions may start lower, while experienced analysts with certifications like CISSP or CISA can earn higher salaries, especially in high-demand industries.

What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?

AspectCybersecurity Risk ManagementCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageFinancial, healthcare, government, large enterprisesIT departments, cybersecurity firms, corporate security teams

Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.

What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?

To thrive in Cybersecurity Risk Management, you need a solid understanding of information security principles, risk assessment methodologies, compliance standards, and typically a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security tools, and professional certifications like CISSP or CRISC is highly valued. Strong analytical thinking, effective communication, and problem-solving skills help professionals translate technical risks for non-technical stakeholders and foster collaboration. These competencies are crucial to proactively identifying threats, managing vulnerabilities, and ensuring organizational resilience in a rapidly evolving digital landscape.

What does a cyber risk manager do?

A cyber risk manager assesses and prioritizes cybersecurity threats to an organization, develops strategies to mitigate risks, and implements security policies. They often use tools like risk assessment frameworks and require certifications such as CISSP or CISM to effectively manage security risks and ensure compliance.

What is cybersecurity risk management?

Cybersecurity risk management is the process of identifying, assessing, and prioritizing risks to an organization's digital assets and information systems. It involves implementing strategies and controls to minimize the impact of potential cyber threats, such as data breaches, malware, and unauthorized access. The goal is to balance security measures with business needs, ensuring sensitive information remains protected while maintaining operational efficiency. Effective risk management is ongoing, adapting to new threats and changes within the organization.

Can you make $500,000 a year in cyber security?

Cybersecurity risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working for large organizations with complex security needs.
What are popular job titles related to Cybersecurity Risk Management jobs in Tennessee? For Cybersecurity Risk Management jobs in Tennessee, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Risk Management jobs in Tennessee look for? The top searched job categories for Cybersecurity Risk Management jobs in Tennessee are:
What cities in Tennessee are hiring for Cybersecurity Risk Management jobs? Cities in Tennessee with the most Cybersecurity Risk Management job openings:
Infographic showing various Cybersecurity Risk Management job openings in Tennessee as of July 2026, with employment types broken down into 2% Locum Tenens, 88% Full Time, 5% Part Time, 1% Temporary, and 4% Contract. Highlights an 79% Physical, 5% Hybrid, and 16% Remote job distribution, with an average salary of $120,679 per year, or $58 per hour.

$107K - $144K/yr

Full-time

Posted 26 days ago


Job description

Job Description

Who We Are
Creative Artists Agency (CAA) is the leading entertainment and sports agency, with global expertise in filmed and live entertainment, digital media, publishing, sponsorship sales and endorsements, media finance, consumer investing, fashion, trademark licensing, and philanthropy.Distinguished by its culture of collaboration and exceptional client service, CAA's diverse workforce identifies, innovates, and amplifies opportunities for the people and organizations that shape culture and inspire the world.The trailblazer of the agency business, CAA was the first to build a sports business, create an investment bank, launch a venture fund, found technology start-up companies, establish a philanthropic arm, build a business in China, and form a brand marketing services division, among other innovations. Named Most Valuable Sports Agency by Forbes for eight consecutive years, CAA represents more than 2,000 of the world's top athletes in football, baseball, basketball, hockey, soccer, in addition to coaches, on-air broadcasters, and sports personalities and works in the areas of broadcast rights, corporate marketing initiatives, social impact, and sports properties for sales and sponsorship opportunities.Founded in 1975, CAA is headquartered in Los Angeles, and has offices in New York, Nashville, Memphis, Chicago, Miami, London, Munich, Geneva, Stockholm, Shanghai, and Beijing, among other locations globally.

The Role
The Cybersecurity Project Manager will manage the Identity Access and Lifecycle Management (IAM, ILM) and data protection programs include maintaining alignment to the IT General Controls (ITGC) program. This role will work hand in hand with Cybersecurity, Risk leadership and Program Owners to drive forward an enterprise wide, highly visible Identity Governance Administration and Data Protection programs. In partnership with key stakeholders, you will focus on managing enterprise-wide processes and solutions to mature CAA's identity management practice, develop strategies and roadmaps, lead various projects/programs, define and develop the product backlog, and manage/maintain the health of the IAM and Data Protection environments to progress the program's strategic direction.

Responsibilities

  • Manage and coordinate efforts across security teams, service owners and stakeholders to successfully deliver Identity Access and Lifecycle Management (IAM, ILM) and Data Protection capabilities.
  • Drive critical IAM, ILM and Data Protection workstreams ensuring adherence to regulatory requirements and continuing to progress the programs strategic direction.
  • Collect and manage stakeholder requirements, aligning stakeholder needs to the IAM, ILM, Data Protection programs.
  • Identify, track and manage dependencies across security and risk programs as well as other inter-connected projects/programs and associated workstreams.
  • Serve as the primary liaison between the security and risk teams to ensure alignment of objectives and strategies.
  • Facilitate regular meetings and communications to maintain a strong collaboration.
  • Decide and deliver on suitable short-term and long-term objectives.
  • Manage program and product issues, risks, and changes to ensure goals are achieved.
  • Deliver issues and risk tracking and resolution, decision logs, communication plans and other program documentation.
  • Engage with stakeholders to make communication easy and transparent.
  • Deliver change management and communication strategies.
  • Establish and monitor program metrics and evaluation methods to assess strengths, identify opportunities for improvement as well as timely reporting of program throughout its lifecycle.
  • Prepare and present reports /presentations for program sponsors and executive leaders.
  • Resolve program scope issues and deadlines.
  • Ensure project milestones and deliverables are met according to established timelines.
  • Lead efforts to define epics, features, and create user stories, ensuring delivery of business value.
  • Communicate project status, risks and issues to key stakeholders including senior management in a clear and concise manner.

Qualifications

  • Bachelor's Degree in Computer Engineering, Computer Science, Mathematics, Engineering or equivalent education/experience
  • 5+ years of related experience
  • 3+ years of working experience with Agile
  • 1+ years of experience with JIRA
  • Entertainment industry experience a plus
  • Extensive experience leading and delivering large and complex IAM, ILM programs across multiple teams, creates environment for successful collaboration, effective management of executive stakeholders, drives resolution of complex issues and roadblocks, inspires and leads quality project delivery.


Preferred Qualifications

  • Hands on experience deploying and operating IAM, ILM technologies
  • Hands on experience deploying structured and unstructured Data Protection technologies
  • An understanding of cloud computing, web platforms, networking, and AI.
  • Familiarity with one or more programing languages (C#, JavaScript, C++, Java, Python, etc).
  • Working knowledge of the Security Development Lifecycle, static/dynamic analysis tools, and threat modeling.
  • Comfortable presenting technical security content internally and to external customers and partners.
  • Experience with enterprise-wide program implementations
  • Strong Executive communication and presentation skills
  • Knowledge of Azure Cloud Services, Active Directory, and, Privileged Management
  • Ability to prioritize, manage time and organize.
  • Ability to take on complex systems and processes and drive simplification and improvements.
  • Ability to work with a dotted line reporting structure to collaborate with and report to other leaders across the organization.
  • Ability to overcome ambiguity, maintains focus, and drive to clarity to provide innovative solutions

Location

This role is hybrid, based in our Nashville office.

Compensation

The annual base salary for this position is in the range of $139,000 - $152,000 in Nashville. This position is also eligible for benefits and a discretionary bonus. Ultimately, the salary may vary based upon, but not limited to, relevant experience, time in the role, business sector, and geographic location, among other criteria. Please talk with a CAA Recruiter to learn more.

Creative Artists Agency, LLC (the "Company") is committed to a policy of Equal Employment Opportunity and will not discriminate on the basis of race (inclusive of traits historically associated with race, including hair texture and protective hairstyles), color, religion, creed, gender or sex (including pregnancy, childbirth, breastfeeding or related medical conditions), national origin, ancestry, age, physical disability, mental disability, medical condition, genetic information, family and medical care leave status, military or veteran status, marital status, family status, sexual orientation, gender identity, gender expression, political affiliation, an employee's or their dependent's reproductive health decision making (e.g., the decision to use or access a particular drug, device or medical service), or any other characteristic protected by applicable law.The absence of a permanent address is not a bar to employment. The Company does not discriminate against individuals based on housing status, including the absence of a fixed address.The Company also complies with the Americans with Disabilities Act and applicable state and local laws with regard to providing reasonable accommodation for qualified individuals with disabilities.CAA does not accept unsolicited resumes from third-party recruiters unless they were contractually engaged by CAA to provide candidates for a specified opening. Any such employment agency, person or entity that submits an unsolicited resume does so with the acknowledgement and agreement that CAA will have the right to hire that applicant at its discretion without any fee owed to the submitting employment agency, person or entity.