1

Cybersecurity Risk Management Jobs in Duluth, MN

... supporting cybersecurity operations, vulnerability management, or IT security functions ... risk management, POA&M governance, and compliance frameworks - Experience coordinating with ...

... Management (SIEM) and create/tailor complex event alarms/rules and summary reports * Assist in analyzing technical risk, upon request, of emerging cybersecurity tools and processes * Work as part of ...

Cybersecurity Risk Management information

See Duluth, MN salary details

$56.6K

$132.1K

$184.7K

How much do cybersecurity risk management jobs pay per year?

As of Jul 11, 2026, the average yearly pay for cybersecurity risk management in Duluth, MN is $132,060.00, according to ZipRecruiter salary data. Most workers in this role earn between $110,200.00 and $149,000.00 per year, depending on experience, location, and employer.

Can I make $200,000 a year in cyber security?

Cybersecurity risk management professionals can earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and roles in senior management or specialized fields. Salary levels vary based on industry, location, and the complexity of the organization's security needs.

What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?

Professionals in Cybersecurity Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, balancing security needs with business objectives, and ensuring compliance with industry regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and close collaboration with IT, legal, and business teams. Building strong partnerships across departments and investing in ongoing training can help mitigate these obstacles and support proactive risk management.

How much does a cybersecurity risk analyst make?

A cybersecurity risk analyst typically earns between $70,000 and $120,000 annually, depending on experience, certifications, and location. Entry-level positions may start lower, while experienced analysts with certifications like CISSP or CISA can earn higher salaries, especially in high-demand industries.

What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?

AspectCybersecurity Risk ManagementCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageFinancial, healthcare, government, large enterprisesIT departments, cybersecurity firms, corporate security teams

Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.

What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?

To thrive in Cybersecurity Risk Management, you need a solid understanding of information security principles, risk assessment methodologies, compliance standards, and typically a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security tools, and professional certifications like CISSP or CRISC is highly valued. Strong analytical thinking, effective communication, and problem-solving skills help professionals translate technical risks for non-technical stakeholders and foster collaboration. These competencies are crucial to proactively identifying threats, managing vulnerabilities, and ensuring organizational resilience in a rapidly evolving digital landscape.

What does a cyber risk manager do?

A cyber risk manager assesses and prioritizes cybersecurity threats to an organization, develops strategies to mitigate risks, and implements security policies. They often use tools like risk assessment frameworks and require certifications such as CISSP or CISM to effectively manage security risks and ensure compliance.

What is cybersecurity risk management?

Cybersecurity risk management is the process of identifying, assessing, and prioritizing risks to an organization's digital assets and information systems. It involves implementing strategies and controls to minimize the impact of potential cyber threats, such as data breaches, malware, and unauthorized access. The goal is to balance security measures with business needs, ensuring sensitive information remains protected while maintaining operational efficiency. Effective risk management is ongoing, adapting to new threats and changes within the organization.

Can you make $500,000 a year in cyber security?

Cybersecurity risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working for large organizations with complex security needs.
Risk, Quality and Performance Analyst

Risk, Quality and Performance Analyst

Maximus

Duluth, MN • On-site

Full-time

Medical, Life, Retirement, PTO

Posted 9 days ago


Maximus rating

6.9

Company rating: 6.9 out of 10

Based on 293 frontline employees who took The Breakroom Quiz

252nd of 449 rated business services


Job description

Description & Requirements

Maximus is a trusted federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on sustaining, operating, and improving essential government systems and services, with proven operational excellence, and a commitment to mission success for our customers.

Joining Maximus means becoming part of a collaborative, mission‑driven organization where teamwork, accountability, and professional growth are core to how we operate. We invest in our workforce through training, education, and career development, empowering professionals to deliver high‑impact solutions while contributing to outcomes that matter at a national scale.

This position is contingent upon contract award and position availability. Selected candidates will receive a contingent offer of employment, which will become final only upon successful contract award to Maximus, availability of the position, and receipt of authorization to proceed.

Ability to obtain and maintain a Public Trust is required. An active Public Trust and/or DHS suitability is preferred. Must be a U.S. Citizen without dual citizenship. This role is remote.

The Risk, Quality, and Performance Analyst serves as the Risk, Quality, and Performance Analyst supporting an enterprise IT services contract. This role is responsible for monitoring and reporting on service quality, performance metrics, and risk management activities to ensure compliance with contract requirements and federal standards. The analyst supports continuous improvement initiatives, validates deliverables and operational processes, and contributes to performance reviews, SLA tracking, and governance reporting. The position also provides backup support for onboarding and administrative compliance functions as required by the contract.

Maximus TCS (Technology and Consulting Services) Internal Job Profile Code: TCS015, P3, Band 6

Job-Specific Essential Duties and Responsibilities:

- Serve as the Risk, Quality, and Performance Analyst, ensuring compliance with service quality, performance metrics, and governance requirements.

- Develop, monitor, and report on performance metrics, KPIs, and SLAs, supporting continuous service improvement and operational transparency.

- Conduct quality assurance reviews of operational processes, deliverables, and reporting artifacts to ensure alignment with agency standards and federal best practices.

- Support risk identification, tracking, and mitigation activities, including operational risks, compliance risks, and performance risks across functional areas.

- Assist with audit readiness, process documentation, and quality controls, ensuring artifacts meet agency and federal oversight expectations.

- Coordinate with program management, operations, and cybersecurity teams to support service reviews, performance reporting, and corrective action plans.

- Provide support for onboarding, administrative, and compliance functions, including documentation tracking, training verification, and access readiness as required.

Job-Specific Minimum Requirements:

- Ability to obtain and maintain a Public Trust is required. An active Public Trust and/or DHS suitability is preferred. Must be a U.S. Citizen without dual citizenship.

- Bachelor’s degree in Business, Information Systems, Computer Science, Engineering, or a related field.

- 5+ years of experience in quality assurance, performance management, risk management, or IT service management in a federal or enterprise IT environment.

- Demonstrated experience performing quality assurance, performance analysis, or risk management functions in a federal or enterprise IT environment, including validation of deliverables, processes, and reporting artifacts.

- Proven ability to develop, monitor, and report Key Performance Indicators (KPIs), Service Level Agreements (SLAs), and performance metrics in support of continuous service improvement.

- Experience supporting risk identification, tracking, mitigation, and reporting, including maintenance of risk registers and corrective action plans.

- Knowledge of IT Service Management (ITSM) concepts and operational governance, including quality controls, performance reviews, and compliance monitoring.

- Ability to review, assess, and validate documentation for accuracy, completeness, and compliance with federal standards, policies, and contract requirements.

- Experience producing clear, accurate written reports and briefings for program management and government stakeholders.

- Familiarity with federal information security and compliance environments, sufficient to support quality and performance oversight activities.

Preferred Skills and Qualifications:

- Knowledge of IT Service Management (ITSM), SLA monitoring, and performance reporting frameworks.

- Familiarity with ServiceNow, SharePoint, or similar enterprise reporting and workflow tools.

- Experience supporting risk registers, quality management plans, and continuous improvement initiatives.

- Strong written and verbal communication skills for executive‑level reporting and stakeholder coordination.

#techjobs #clearance #veteransPage #LI-remote

Minimum Requirements

TCS015, P3, Band 6

#TSTECH

EEO Statement

Maximus is an equal opportunity employer. We evaluate qualified applicants without regard to race, color, religion, sex, age, national origin, disability, veteran status, genetic information and other legally protected characteristics.

Pay Transparency

Maximus compensation is based on various factors including but not limited to job location, a candidate's education, training, experience, expected quality and quantity of work, required travel (if any), external market and internal value analysis including seniority and merit systems, as well as internal pay alignment. Annual salary is just one component of Maximus's total compensation package. Other rewards may include short- and long-term incentives as well as program-specific awards. Additionally, Maximus provides a variety of benefits to employees, including health insurance coverage, life and disability insurance, a retirement savings plan, paid holidays and paid time off. Compensation ranges may differ based on contract value but will be commensurate with job duties and relevant work experience. An applicant's salary history will not be used in determining compensation. Maximus will comply with regulatory minimum wage rates and exempt salary thresholds in all instances.

Accommodations

Maximus provides reasonable accommodations to individuals requiring assistance during any phase of the employment process due to a disability, medical condition, or physical or mental impairment. If you require assistance at any stage of the employment process-including accessing job postings, completing assessments, or participating in interviews,-please contact People Operations at applicantaccom@maximus.com .


What Maximus employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom