ZipRecruiter

Log In

1

Cybersecurity Risk Management Jobs in Philadelphia, PA

Hanchey

Associate Cyber Risk Advisor

Philadelphia, PA · On-site

... risk or their cyber insurance policy services * Work with clients both internally and externally to ... cyber security disciplines including vulnerability management, patch management, user access ...

UGI

Global Sr GRC Analyst

King Of Prussia, PA

The Global GRC Senior Analyst will report directly to the Global Cybersecurity Governance, Risk and Compliance Manager. This role involves collaborating with cross-functional teams to design ...

UGI

Global Sr GRC Analyst

King Of Prussia, PA · On-site

The Global GRC Senior Analyst will report directly to the Global Cybersecurity Governance, Risk and Compliance Manager. This role involves collaborating with cross-functional teams to design ...

PJM

Lead Information Security Analyst

Audubon, PA · On-site

Bachelor's degree in Computer Engineering, Computer Science, Information Technology, Cyber Security, Risk Management or equivalent work experience * Ability to produce high-quality work products with ...

GS1 US

Cybersecurity Manager

Ewing, NJ · Hybrid

$120K - $145K/yr

GS1 US is seeking a Cybersecurity Lead to drive hands-on execution of the cybersecurity program in ... Risk Management, Governance & Maturity Drive risk management and security maturity by identifying ...

GS1

Cybersecurity Manager

Ewing, NJ · Hybrid

$120K - $145K/yr

GS1 US is seeking a Cybersecurity Lead to drive hands-on execution of the cybersecurity program in ... Risk Management, Governance & Maturity Drive risk management and security maturity by identifying ...

next page

Showing results 1-20

People also search for

All JobsCybersecurity Risk Management JobsCybersecurity Risk Management Jobs in Philadelphia, PA

Cybersecurity Risk Management information

See Philadelphia, PA salary details

$57.5K

$134.2K

$187.7K

How much do cybersecurity risk management jobs pay per year?

As of May 28, 2026, the average yearly pay for cybersecurity risk management in Philadelphia, PA is $134,170.00, according to ZipRecruiter salary data. Most workers in this role earn between $112,000.00 and $151,400.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?

To thrive in Cybersecurity Risk Management, you need a solid understanding of information security principles, risk assessment methodologies, compliance standards, and typically a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security tools, and professional certifications like CISSP or CRISC is highly valued. Strong analytical thinking, effective communication, and problem-solving skills help professionals translate technical risks for non-technical stakeholders and foster collaboration. These competencies are crucial to proactively identifying threats, managing vulnerabilities, and ensuring organizational resilience in a rapidly evolving digital landscape.

What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?

Professionals in Cybersecurity Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, balancing security needs with business objectives, and ensuring compliance with industry regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and close collaboration with IT, legal, and business teams. Building strong partnerships across departments and investing in ongoing training can help mitigate these obstacles and support proactive risk management.

What is cybersecurity risk management?

Cybersecurity risk management is the process of identifying, assessing, and prioritizing risks to an organization's digital assets and information systems. It involves implementing strategies and controls to minimize the impact of potential cyber threats, such as data breaches, malware, and unauthorized access. The goal is to balance security measures with business needs, ensuring sensitive information remains protected while maintaining operational efficiency. Effective risk management is ongoing, adapting to new threats and changes within the organization.

What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?

AspectCybersecurity Risk ManagementCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageFinancial, healthcare, government, large enterprisesIT departments, cybersecurity firms, corporate security teams

Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.

What are popular job titles related to Cybersecurity Risk Management jobs in Philadelphia, PA? For Cybersecurity Risk Management jobs in Philadelphia, PA, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Risk Management jobs in Philadelphia, PA look for? The top searched job categories for Cybersecurity Risk Management jobs in Philadelphia, PA are:
What cities near Philadelphia, PA are hiring for Cybersecurity Risk Management jobs? Cities near Philadelphia, PA with the most Cybersecurity Risk Management job openings:
Cybersecurity Risk Management jobs near you
Manager, IT Security, Governance, Risk and Compliance

Manager, IT Security, Governance, Risk and Compliance

Burlington Stores

Beverly, NJ • On-site

Other

Medical, Dental, Vision, Life, Retirement, PTO

This job post has expired today. Applications are no longer accepted.

Burlington rating

4.4

Company rating: 4.4 out of 10

Based on 904 frontline employees who took The Breakroom Quiz

19th of 21 rated department stores

Job description

Position Overview
The Manager of Governance, Risk and Compliance (GRC) plays a critical mid-level leadership role within the Information Security function, responsible for translating strategy into operational execution across the GRC program. Reporting to the Director of GRC, this role provides daily oversight of analysts and leads, drives process maturity, and ensures consistent delivery of risk, audit, policy, and continuity efforts. The Manager of GRC helps shape the enterprise's risk posture while mentoring a high-performing team and fostering cross-functional collaboration. This role requires a deep understanding of regulatory frameworks and an ability to communicate complex risk concepts in clear, actionable terms. The ideal candidate will proactively identify control gaps, coordinate effective mitigation, and ensure security efforts remain aligned with evolving business needs.
A Day In The Life
Enterprise Cyber Risk Management:
  • Lead enterprise-wide cybersecurity risk assessments across business units and IT domains.
  • Own the accuracy and ongoing maintenance of the enterprise risk register, ensuring it is consistently updated and informed by stakeholder input.
  • Collaborate with business and IT leaders to define and apply enterprise risk tolerance thresholds.
  • Translate technical risk findings into actionable, business-relevant recommendations.
  • Identify and escalate systemic risks that could materially impact operations or compliance.
  • Monitor industry trends, threat intelligence, and regulatory changes to adjust risk posture.
  • Deliver clear, timely risk reports and dashboards to senior leadership and governance bodies.
  • Implement structured risk governance processes, including review cycles and escalation protocols.
  • Implement automated GRC tools and data analytics to improve cybersecurity risk management efficiency and accuracy.
  • Develop KPIs and KRIs for the security organization and maintain tactical and strategic dashboards to monitor risk and compliance efforts.
Management & Collaboration:
  • Oversee GRC team operations, assigning work, setting priorities, and ensuring effective collaboration.
  • Partner with senior leadership and business stakeholders to align GRC efforts with enterprise goals.
  • Foster a high-performing, collaborative team culture through coaching, accountability, and career development.
Business Continuity and Disaster Recovery (BC/DR):
  • Lead collaboration with IT and business leaders to identify mission-critical applications and conduct comprehensive BIA, define RTO/RPO, and recovery procedures.
  • Develop dependency mappings for critical systems with application and infrastructure teams.
  • Oversee documentation of recovery procedures, including technical and business continuity procedures.
  • Lead tabletop exercises and failover/failback recovery testing with IT and business users.
  • Identify gaps in the BC/DR program and take ownership of remediation.
  • Ensure business continuity objectives are effectively aligned with IT capabilities to support organizational resilience during disruptions.
  • Contribute to recovery planning efforts and facilitate coordination among IT and business teams to ensure effective response during disruptions.
Vendor Risk Management:
  • Partner with the procurement and legal teams to integrate cybersecurity function into the overall process, mitigating supply chain risks for the company.
  • Manage third-party risk processes, including assessments and reviews. Continuously identify opportunities for improvement to enhance its effectiveness and efficiency
  • Escalate high-risk vendor issues to leadership and work with business stakeholders to develop and execute mitigation plans.
  • Oversee monthly reporting on security assessments of AI vendors, provide expert analysis to leadership on AI-related risks and recommend strategic actions to resolve identified issues.
  • Establish and manage a comprehensive set of criteria and assessment questions to support third-party risk management activities.
Managed Security Service Provider (MSSP) and Third-Party Security Incidents:
  • Own vendor incident response governance program and playbooks.
  • Ensure vendors provide formal evidence of incident containment and remediation and ensure compliance with security requirements before closing a third incident.
  • Consolidate third party incident and GRC-owned MSSP results into executive dashboards.
  • Embed incident response obligations into contracts and procurement.
Audit and Compliance:
  • Oversee internal/external audit readiness and evidence collection.
  • Ensure compliance with SOX, PCI, and privacy frameworks.
  • Serve as audit liaison for the GRC function.
  • Act as the primary contact for internal audit and take ownership of recreating risk and compliance assessment findings.
Policy Implementation:
  • Manage the policy lifecycle from creation through enforcement.
  • Ensure policies align with frameworks like NIST and PCI DSS.
  • Ensure the organization adheres to all relevant policies and standards.
Cybersecurity Education:
  • Manage company-wide security training programs.
  • Strategically identify education and awareness needs based on enterprise-wide cybersecurity threats and business priorities.
  • Establish metrics to evaluate the success of training initiatives, including trends in knowledge retention, behavior changes, and overall effectiveness of the security culture.
  • Oversee continuous improvement of the training curriculum, ensuring it evolves to address new threats and compliance requirements.
You'll Come With
  • 8+ years in security governance, risk, or compliance roles.
  • Demonstrated success in leading cross-functional projects.
  • Deep understanding of controls, audits, and frameworks.
  • Maintain relevant certifications such as CISM, CISSP, or CISA.
  • Communicate effectively with technical and non-technical stakeholders.
  • Resolve conflicts and drive consensus across teams.
  • Provided leadership and oversight for a cybersecurity team of 3+ members
  • Mentor team members and model professional behavior.
  • Bachelor's degree in Information Systems, Cybersecurity or related field required; Master's preferred.

#LI-TG1
Come join our team. You're going to like it here!
You will enjoy competitive wages, flexible hours, and an associate discount. Burlington's benefits package includes medical, dental and vision coverage including life and disability insurance. Full-time associates are also eligible for paid time off, paid holidays and a 401(k) plan. We are a rapidly growing brand and provide a variety of training and development opportunities so our associates can grow with us. Our teams work hard and have fun together! Burlington associates make a difference in the lives of customers, colleagues, and the communities where we live and work every day. Burlington Stores, Inc. is an equal opportunity employer committed to workplace diversity.
Individual pay decisions will be based on a variety of factors, such as but not limited to, qualifications, education, job-related skills, relevant experience, and geographic location.
Min-Mid $115,000.00 - $150,000.00
Posting Number R101697
Location New Jersey-Edgewater Park
Address 4287 Route 130 S
Zip Code 08010
Pay Rate Salaried
Career Site Category Corporate
Position Category Information Technology
Job Type Full-Time
Remote Type Hybrid
Evergreen No

What Burlington employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

Burlington logo

About Burlington

Sourced by ZipRecruiter

At Burlington, we embrace the many facets of diversity that strengthen our communities where we live and work every day. If you want to grow your retail career with a caring and inclusive organization, come join the Burlington Stores team as a Customer Service Supervisor, Selling Floor Supervisor or Receiving Team Supervisor!

Industry

Retail

Company size

10,000+ Employees

Headquarters location

Burlington, NJ, US

View All Burlington Jobs

Apply