Diverse Lynx is seeking a Medical Device Cybersecurity Risk Specialist to enhance their cybersecurity risk management program. The role involves conducting risk assessments, analyzing vulnerabilities ...
Diverse Lynx is seeking a Medical Device Cybersecurity Risk Specialist to enhance their cybersecurity risk management program. The role involves conducting risk assessments, analyzing vulnerabilities ...
... risk management frameworks such as NIST CSF, ISO 27001 / 27005, FAIR, and COSO. • Hands-on ... cybersecurity risk assessments, threat modeling, and evaluating risks across systems, vendors ...
... risk management frameworks such as NIST CSF, ISO 27001 / 27005, FAIR, and COSO. • Hands-on ... cybersecurity risk assessments, threat modeling, and evaluating risks across systems, vendors ...
Strong understanding of information security risk management frameworks such as NIST CSF, ISO 27001 / 27005, FAIR, and COSO. * Hands-on experience in conducting cybersecurity risk assessments, threat ...
Strong understanding of information security risk management frameworks such as NIST CSF, ISO 27001 / 27005, FAIR, and COSO. * Hands-on experience in conducting cybersecurity risk assessments, threat ...
Medical Device Cybersecurity Risk Specialist
Irvine, CA · On-site
$110K - $120K/yr
... risk management frameworks such as NIST CSF, ISO 27001 / 27005, FAIR, and COSO. • Hands-on ... cybersecurity risk assessments, threat modeling, and evaluating risks across systems, vendors ...
Medical Device Cybersecurity Risk Specialist
Irvine, CA · On-site
$110K - $120K/yr
... risk management frameworks such as NIST CSF, ISO 27001 / 27005, FAIR, and COSO. • Hands-on ... cybersecurity risk assessments, threat modeling, and evaluating risks across systems, vendors ...
Sr. Cybersecurity GRC Manager
Irvine, CA · On-site
$119K - $161K/yr
Strong knowledge of Information Security risk management frameworks, Governance, Risk, and ... Cybersecurity Regulation, PCI-DSS, FFIEC, SOX, and other relevant laws and regulations Strong ...
Sr. Cybersecurity GRC Manager
Irvine, CA · On-site
$119K - $161K/yr
Strong knowledge of Information Security risk management frameworks, Governance, Risk, and ... Cybersecurity Regulation, PCI-DSS, FFIEC, SOX, and other relevant laws and regulations Strong ...
Sr. Cybersecurity GRC Manager
Irvine, CA · On-site
$119K - $161K/yr
... risk management and the evolving threat landscape, ensuring the internal security risk strategy is resilient and forward-thinking to oversee the security risk posture internally, proactively ...
Sr. Cybersecurity GRC Manager
Irvine, CA · On-site
$119K - $161K/yr
... risk management and the evolving threat landscape, ensuring the internal security risk strategy is resilient and forward-thinking to oversee the security risk posture internally, proactively ...
CISSP-Cyber Security Analyst
Rancho Cucamonga, CA · Hybrid
$65/hr
Cybersecurity Risk Analyst The Cybersecurity Risk Analyst is a cybersecurity program and control ... Provide input to risk management process activities and related documentation (e.g., system life ...
Quick apply
CISSP-Cyber Security Analyst
Rancho Cucamonga, CA · Hybrid
$65/hr
Cybersecurity Risk Analyst The Cybersecurity Risk Analyst is a cybersecurity program and control ... Provide input to risk management process activities and related documentation (e.g., system life ...
Senior Information Analyst, GRC Cybersecurity Frameworks
Irvine, CA · On-site
$107K - $138K/yr
Cybersecurity Framework & Risk Management * Drive the ongoing operation and continuous improvement of the company's cybersecurity framework program aligned to industry best practices. * Facilitate ...
Senior Information Analyst, GRC Cybersecurity Frameworks
Irvine, CA · On-site
$107K - $138K/yr
Cybersecurity Framework & Risk Management * Drive the ongoing operation and continuous improvement of the company's cybersecurity framework program aligned to industry best practices. * Facilitate ...
Senior Information Analyst, GRC Cybersecurity Frameworks
Irvine, CA · On-site
$107K - $138K/yr
Cybersecurity Framework & Risk Management * Drive the ongoing operation and continuous improvement of the company's cybersecurity framework program aligned to industry best practices. * Facilitate ...
Senior Information Analyst, GRC Cybersecurity Frameworks
Irvine, CA · On-site
$107K - $138K/yr
Cybersecurity Framework & Risk Management * Drive the ongoing operation and continuous improvement of the company's cybersecurity framework program aligned to industry best practices. * Facilitate ...
Senior Cybersecurity Risk Analyst - USA Remote
Los Angeles, CA · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Senior Cybersecurity Risk Analyst - USA Remote
Los Angeles, CA · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Senior Cybersecurity Risk Analyst - USA Remote
Orange, CA · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Senior Cybersecurity Risk Analyst - USA Remote
Orange, CA · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Lead and execute risk assessments across systems, applications, and cloud environments. * Assist with Cybersecurity audit preparation and participate in Cybersecurity audits. * Manage and review ...
Lead and execute risk assessments across systems, applications, and cloud environments. * Assist with Cybersecurity audit preparation and participate in Cybersecurity audits. * Manage and review ...
Lead and execute risk assessments across systems, applications, and cloud environments. * Assist with Cybersecurity audit preparation and participate in Cybersecurity audits. * Manage and review ...
Lead and execute risk assessments across systems, applications, and cloud environments. * Assist with Cybersecurity audit preparation and participate in Cybersecurity audits. * Manage and review ...
Cybersecurity Engineering, Risk & Governance Senior Advisor
Rosemead, CA · On-site
$182K - $274K/yr
Driving complex cybersecurity projects from strategy through execution, managing dependencies ... Risk reduction: Turning assessments, findings, and technical concerns into actionable remediation ...
Cybersecurity Engineering, Risk & Governance Senior Advisor
Rosemead, CA · On-site
$182K - $274K/yr
Driving complex cybersecurity projects from strategy through execution, managing dependencies ... Risk reduction: Turning assessments, findings, and technical concerns into actionable remediation ...
Every day, we combine in-depth knowledge of cybersecurity, technology, and compliance to help ... Enterprise Risk Management (ERM) * Aid in the development and maintenance of Enterprise Risk ...
Every day, we combine in-depth knowledge of cybersecurity, technology, and compliance to help ... Enterprise Risk Management (ERM) * Aid in the development and maintenance of Enterprise Risk ...
Senior Software Quality Engineer, Product/Software Cybersecurity (Medical Device Software)
Irvine, CA · On-site
$108K - $153K/yr
Review and approve product cybersecurity related deliverables across the lifecycle, including planning, requirements, architecture/design, risk management, verification and validation, and problem ...
Senior Software Quality Engineer, Product/Software Cybersecurity (Medical Device Software)
Irvine, CA · On-site
$108K - $153K/yr
Review and approve product cybersecurity related deliverables across the lifecycle, including planning, requirements, architecture/design, risk management, verification and validation, and problem ...
Senior Software Quality Engineer, Product/Software Cybersecurity (Medical Device Software)
$108K - $153K/yr
Review and approve product cybersecurity related deliverables across the lifecycle, including planning, requirements, architecture/design, risk management, verification and validation, and problem ...
Senior Software Quality Engineer, Product/Software Cybersecurity (Medical Device Software)
$108K - $153K/yr
Review and approve product cybersecurity related deliverables across the lifecycle, including planning, requirements, architecture/design, risk management, verification and validation, and problem ...
... cybersecurity, risk management or related fields, and most importantly cloud/security architecture, particularly in highly regulated industries such as financial, or professional services. • ...
... cybersecurity, risk management or related fields, and most importantly cloud/security architecture, particularly in highly regulated industries such as financial, or professional services. • ...
Cybersecurity Engineer
Pasadena, CA · On-site
Cybersecurity risk management frameworks including NIST RMF, secure system development lifecycle (SDLC), and mission assurance methodologies. * Experience supporting cybersecurity assessments ...
Cybersecurity Engineer
Pasadena, CA · On-site
Cybersecurity risk management frameworks including NIST RMF, secure system development lifecycle (SDLC), and mission assurance methodologies. * Experience supporting cybersecurity assessments ...
Management of cybersecurity risk in accordance with the Authorizing Official's risk appetite * Alignment of cybersecurity efforts across JPL information systems to meet POA&M and other key ...
Management of cybersecurity risk in accordance with the Authorizing Official's risk appetite * Alignment of cybersecurity efforts across JPL information systems to meet POA&M and other key ...
Cybersecurity Risk Management information
See Brea, CA salary details
$59K - $71.2K
1% of jobs
$71.2K - $83.3K
4% of jobs
$83.3K - $95.5K
5% of jobs
$95.5K - $107.6K
9% of jobs
$114.3K is the 25th percentile. Wages below this are outliers.
$107.6K - $119.8K
11% of jobs
$119.8K - $131.9K
10% of jobs
The median wage is $136.6K / yr.
$131.9K - $144.1K
28% of jobs
$151.1K is the 75th percentile. Wages above this are outliers.
$144.1K - $156.2K
14% of jobs
$156.2K - $168.4K
11% of jobs
$168.4K - $180.5K
4% of jobs
$180.5K - $192.7K
4% of jobs
$59K
$137.7K
$192.7K
How much do cybersecurity risk management jobs pay per year?
What is the role of a risk manager in cybersecurity?
Is security risk management a good career?
What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?
What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?
| Aspect | Cybersecurity Risk Management | Cybersecurity Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CEH, CISSP |
| Work Environment | Risk assessment, policy development, strategic planning | Monitoring security systems, incident response, vulnerability analysis |
| Employer & Industry Usage | Financial, healthcare, government, large enterprises | IT departments, cybersecurity firms, corporate security teams |
Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.
What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?
What is cybersecurity risk management?
What is risk management in cyber security?
Can you make $500,000 a year in cyber security?
Full-time
Posted 7 days ago
Key responsibilities
Develop, maintain, and improve the cybersecurity risk management program for medical devices.
Perform qualitative and quantitative risk assessments and analyze medical device cybersecurity vulnerabilities to determine impact and likelihood.
Collaborate with internal teams and vendors to identify, validate, and track risk mitigation strategies and alternative risk treatment options.
Job description
Diverse Lynx is seeking a Medical Device Cybersecurity Risk Specialist to enhance their cybersecurity risk management program. The role involves conducting risk assessments, analyzing vulnerabilities, and collaborating with internal teams and vendors to implement effective risk mitigation strategies.
Responsibilities:
• Develop, maintain, and continuously improve the organization’s cybersecurity risk management program, with emphasis on practical and sustainable risk reduction.
• Perform qualitative and quantitative risk assessments for systems, projects, vendors, healthcare technologies, and business processes.
• Analyze medical device cybersecurity vulnerabilities, penetration testing findings, and technical risks to determine impact, likelihood, and patient/business impact.
• Partner with internal teams, vendors, and business owners to identify, validate, and track approved mitigation strategies and alternative risk treatment options where needed.
• Maintain accurate and up-to-date risk registers, risk treatment plans, issue logs, and risk dashboards.
• Support the selection, implementation, and validation of technical, administrative, and procedural security controls.
• Provide cybersecurity and risk management input into projects, cloud initiatives, system integrations, device onboarding, and service changes.
• Coordinate and support third-party/vendor risk assessments, follow-up actions, and remediation closure tracking.
• Translate technical cybersecurity issues into clear business impact statements and communicate them effectively to leadership and non-technical stakeholders.
• Produce recurring risk posture reports, trends, metrics, and remediation summaries for management and governance forums.
• Support incident response activities and perform post-incident risk analysis to identify lessons learned and strengthen controls.
• Promote a strong security and risk-aware culture by engaging with stakeholders, educating teams, and encouraging proactive risk identification.
• Collaborate effectively across cybersecurity, engineering, quality, clinical/biomedical, IT, and vendor teams to ensure balanced decision-making that protects both operations and patient safety.
• Stay current on evolving cybersecurity threats, healthcare technology risks, and relevant compliance expectations.
Qualifications:
Required:
• Strong understanding of information security risk management frameworks such as NIST CSF, ISO 27001 / 27005, FAIR, and COSO.
• Hands-on experience in conducting cybersecurity risk assessments, threat modeling, and evaluating risks across systems, vendors, projects, and business processes.
• Solid knowledge of medical device cybersecurity, including vulnerability analysis, security risk mitigation, and patient safety considerations.
• Familiarity with medical device integration, healthcare application ecosystems, and interactions with EHR systems and third-party healthcare vendor applications.
• Understanding of common cybersecurity controls including network security, endpoint protection, identity and access management, encryption, logging/monitoring, and secure system configuration.
• Experience reviewing penetration testing findings, identifying practical mitigation options, and validating remediation approaches in partnership with vendors or technical teams.
• Ability to maintain and manage risk registers, risk treatment plans, dashboards, and remediation tracking mechanisms using GRC platforms or structured spreadsheet-based tools.
• Working knowledge of cloud security, security operations, and cybersecurity input into SDLC, infrastructure changes, and new service introductions.
• Familiarity with regulatory and compliance expectations relevant to healthcare and medical devices, including cybersecurity documentation and risk-based decision-making.
• Ability to research emerging threats, assess business relevance, and proactively recommend risk reduction actions.
Preferred:
• Exposure to Agile / Scrum methodologies and cross-functional project execution is highly desirable.
Company:
Diverse Lynx is a WBENC- and NMSDC-certified partner, helping organizations turn diversity goals into measurable impact through staffing and contingent workforce solutions. Founded in 2002, the company is headquartered in Princeton, New Jersey, US, , with a team of 1001-5000 employees. The company is currently Late Stage.
About Diverse Lynx
Sourced by ZipRecruiter
Diverse Lynx, based in Princeton, NJ, US, is a reputable company in the Information Technology sector. The firm, as reflected through its website diverselynx.com, specializes in delivering comprehensive IT solutions. These solutions range from IT consulting to robust digital transformation strategies, IT staffing, and full-time placements services. The company was established in 2008, and it prides itself on providing simplified, efficient technology solutions designed to meet the unique needs of each client.
Industry
It services
Company size
51 - 200 Employees
Headquarters location
Princeton, NJ, US
Year founded
2002