1

Cybersecurity Risk Management Jobs in Raleigh, NC

Strong understanding of delivery governance, risk management, dependencies, and quality assurance ... Bachelor's degree in Cybersecurity, Information Security, Engineering, Computer Science ...

Design, plan, test and implement phases of cybersecurity technology projects. Essential Duties and ... in Risk and Information Systems Control (CRISC) or Certified Information Security Manager (CISM ...

next page

Showing results 1-20

Cybersecurity Risk Management information

See Raleigh, NC salary details

$55.4K

$129.3K

$180.8K

How much do cybersecurity risk management jobs pay per year?

As of Jul 1, 2026, the average yearly pay for cybersecurity risk management in Raleigh, NC is $129,250.00, according to ZipRecruiter salary data. Most workers in this role earn between $107,900.00 and $145,800.00 per year, depending on experience, location, and employer.

What is the role of a risk manager in cybersecurity?

A cybersecurity risk manager identifies, assesses, and prioritizes security risks to an organization’s information systems. They develop strategies to mitigate threats, implement security controls, and ensure compliance with industry standards, often using tools like risk assessment frameworks and security audits. Their role is essential in protecting digital assets and supporting overall cybersecurity posture.

Is security risk management a good career?

Security risk management is a valuable career in cybersecurity, focusing on identifying and mitigating threats to organizational assets. It often requires knowledge of security frameworks, risk assessment tools, and certifications like CISSP or CISM. The field offers strong job growth, competitive salaries, and opportunities across various industries.

What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?

Professionals in Cybersecurity Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, balancing security needs with business objectives, and ensuring compliance with industry regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and close collaboration with IT, legal, and business teams. Building strong partnerships across departments and investing in ongoing training can help mitigate these obstacles and support proactive risk management.

What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?

AspectCybersecurity Risk ManagementCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageFinancial, healthcare, government, large enterprisesIT departments, cybersecurity firms, corporate security teams

Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.

What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?

To thrive in Cybersecurity Risk Management, you need a solid understanding of information security principles, risk assessment methodologies, compliance standards, and typically a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security tools, and professional certifications like CISSP or CRISC is highly valued. Strong analytical thinking, effective communication, and problem-solving skills help professionals translate technical risks for non-technical stakeholders and foster collaboration. These competencies are crucial to proactively identifying threats, managing vulnerabilities, and ensuring organizational resilience in a rapidly evolving digital landscape.

What is cybersecurity risk management?

Cybersecurity risk management is the process of identifying, assessing, and prioritizing risks to an organization's digital assets and information systems. It involves implementing strategies and controls to minimize the impact of potential cyber threats, such as data breaches, malware, and unauthorized access. The goal is to balance security measures with business needs, ensuring sensitive information remains protected while maintaining operational efficiency. Effective risk management is ongoing, adapting to new threats and changes within the organization.

What is risk management in cyber security?

In cybersecurity risk management, professionals identify, assess, and prioritize potential security threats to an organization’s information systems. They implement strategies and controls to mitigate or accept risks, often using frameworks like NIST or ISO 27001, and may hold certifications such as CISSP or CISM to ensure effective risk handling.

Can you make $500,000 a year in cyber security?

Cybersecurity risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working in large organizations with complex security needs.
What are popular job titles related to Cybersecurity Risk Management jobs in Raleigh, NC? For Cybersecurity Risk Management jobs in Raleigh, NC, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Risk Management jobs in Raleigh, NC look for? The top searched job categories for Cybersecurity Risk Management jobs in Raleigh, NC are:
What cities near Raleigh, NC are hiring for Cybersecurity Risk Management jobs? Cities near Raleigh, NC with the most Cybersecurity Risk Management job openings:
Cyber Security Analyst III - App Security & Vulnerability (Remote)

Cyber Security Analyst III - App Security & Vulnerability (Remote)

First Citizens Bank

Raleigh, NC • On-site, Remote

Full-time

Posted 6 days ago


First Citizens Bank rating

7.5

Company rating: 7.5 out of 10

Based on 104 frontline employees who took The Breakroom Quiz

89th of 144 rated banks


Job description

Overview
This is aremote role in NC, AZ, and TX.
We are seeking a highly skilled Cyber Security Analyst with a strong background in application security and vulnerability management. This role focuses on identifying, analyzing, and mitigating security risks across software development pipelines using SAST, DAST, and SCA tools. The ideal candidate combines hands-on technical expertise with knowledge of modern security practices and emerging technologies, including AI/ML.
Responsibilities
Application Security & Code Analysis
  • Perform static (SAST), dynamic (DAST), and software composition analysis (SCA) to identify vulnerabilities in applications and third-party components
  • Analyze scan results, triage findings, and prioritize remediation efforts based on risk
  • Partner with development teams to remediate vulnerabilities and improve secure coding practices

Vulnerability Management
  • Conduct regular security assessments and vulnerability scans across applications and environments
  • Validate and reproduce vulnerabilities, including false positive elimination
  • Track and report vulnerability metrics, risk trends, and remediation progress

Security Tools & Automation
  • Configure, deploy, and maintain security scanning tools (e.g., Checkmarx, Veracode, Fortify, Snyk, Burp Suite, OWASP ZAP)
  • Automate security testing processes using scripting or APIs
  • Improve scanning efficiency and coverage through tuning and optimization

Qualifications
Bachelor's Degree and 6 years of experience in Information Security OR High School Diploma or GED and 10 years of experience in Information Security
Required Qualifications
  • Hands-on experience with:
    • SAST, DAST, and SCA tools
    • Web application security testing (OWASP Top 10, API security)
  • Strong understanding of:
    • Secure software development lifecycle (SDLC / DevSecOps)
    • Common vulnerabilities (e.g., injection, XSS, authentication flaws)
  • Proficiency in one or more programming/scripting languages (e.g., Python, Java, JavaScript, Bash)
  • Experience interpreting and prioritizing scan results and remediation plans

Preferred Qualifications
  • Experience integrating security tools into CI/CD pipelines (e.g., Jenkins, GitHub Actions, Azure DevOps)
  • Familiarity of container and cloud security (AWS, Azure, GCP)
  • Familiarity with AI/ML concepts and security implications
  • Industry certifications such as:
    • CEH, Security+, SSCP, GIAC or comparable.

Key Skills
  • Strong analytical and problem-solving skills
  • Provide risk-based recommendations to stakeholders
  • Ability to communicate technical findings to both technical and non-technical stakeholders
  • Experience working cross-functionally with development and engineering teams
  • Attention to detail with a risk-based security mindset

Nice-to-Have Experience
  • API security testing tools (Postman, SoapUI)
  • AI-assisted security tooling (e.g., anomaly detection, code analysis assistants)
  • Knowledge of regulatory frameworks (NIST, ISO 27001, SOC 2)
  • AI/ML & Emerging Technologies
    • Leverage AI/ML-based security tools for enhanced detection and analysis
    • Assess risks related to AI/ML models (e.g., data poisoning, model inversion, adversarial attacks)
    • Participate in securing AI-driven applications and data pipelines
  • Threat Analysis & Risk Management
    • Assess potential threats and attack vectors relevant to applications and APIs
    • Apply threat modeling techniques (e.g., STRIDE) during development lifecycle

Benefits are an integral part of total rewards and First Citizens Bank is committed to providing a competitive, thoughtfully designed and quality benefits program to meet the needs of our associates. More information can be found at https://jobs.firstcitizens.com/benefits.

What First Citizens Bank employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom