1

Cybersecurity Risk Management Jobs in Tulsa, OK (NOW HIRING)

Cyber Security Program Manager

Tulsa, OK · On-site

$101K - $136K/yr

... risk of loss versus operating cost. Present results to Senior Management for review and acceptance ... years of cybersecurity practices and technologies spanning risk management, governance ...

Cyber Security Tutor

Tulsa, OK · Remote

$18 - $40/hr

Emphasizes a systematic approach to security assessment and connects cybersecurity to business risk management, compliance requirements, and ethical computing practices. * Curriculum Awareness ...

Cyber Security Program Manager

Tulsa, OK · On-site

$95K - $128K/yr

Extensive experience in cybersecurity program management and operations. 8+ years of cybersecurity practices and technologies spanning risk management, governance, architecture, cloud security ...

Cyber Security Program Manager

Tulsa, OK · On-site

$95K - $128K/yr

Extensive experience in cybersecurity program management and operations. 8+ years of cybersecurity practices and technologies spanning risk management, governance, architecture, cloud security ...

Senior IT Governance Analyst

Tulsa, OK · On-site

$78K - $105K/yr

Determine the operational and business risk impacts of cybersecurity lapses * Determine if ... Monitor and report on risk management activities and outcomes. * Ensure compliance with relevant ...

Senior IT Governance Analyst

Tulsa, OK · On-site

$78K - $105K/yr

Determine the operational and business risk impacts of cybersecurity lapses * Determine if ... Monitor and report on risk management activities and outcomes. * Ensure compliance with relevant ...

Project Management * Financials Cyber Security Cyber Security vigilantly protects Deloitte and client data. The team leads a strategic cyber risk program that adapts to a rapidly changing threat ...

next page

Showing results 1-20

Cybersecurity Risk Management information

See Tulsa, OK salary details

$49.4K

$115.3K

$161.3K

How much do cybersecurity risk management jobs pay per year?

As of Jul 14, 2026, the average yearly pay for cybersecurity risk management in Tulsa, OK is $115,274.00, according to ZipRecruiter salary data. Most workers in this role earn between $96,200.00 and $130,000.00 per year, depending on experience, location, and employer.

Can I make $200,000 a year in cyber security?

Cybersecurity risk management professionals can earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and roles in senior management or specialized fields. Salary levels vary based on industry, location, and the complexity of the organization's security needs.

What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?

Professionals in Cybersecurity Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, balancing security needs with business objectives, and ensuring compliance with industry regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and close collaboration with IT, legal, and business teams. Building strong partnerships across departments and investing in ongoing training can help mitigate these obstacles and support proactive risk management.

How much does a cybersecurity risk analyst make?

A cybersecurity risk analyst typically earns between $70,000 and $120,000 annually, depending on experience, certifications, and location. Entry-level positions may start lower, while experienced analysts with certifications like CISSP or CISA can earn higher salaries, especially in high-demand industries.

What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?

AspectCybersecurity Risk ManagementCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageFinancial, healthcare, government, large enterprisesIT departments, cybersecurity firms, corporate security teams

Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.

What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?

To thrive in Cybersecurity Risk Management, you need a solid understanding of information security principles, risk assessment methodologies, compliance standards, and typically a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security tools, and professional certifications like CISSP or CRISC is highly valued. Strong analytical thinking, effective communication, and problem-solving skills help professionals translate technical risks for non-technical stakeholders and foster collaboration. These competencies are crucial to proactively identifying threats, managing vulnerabilities, and ensuring organizational resilience in a rapidly evolving digital landscape.

What does a cyber risk manager do?

A cyber risk manager assesses and prioritizes cybersecurity threats to an organization, develops strategies to mitigate risks, and implements security policies. They often use tools like risk assessment frameworks and require certifications such as CISSP or CISM to effectively manage security risks and ensure compliance.

What is cybersecurity risk management?

Cybersecurity risk management is the process of identifying, assessing, and prioritizing risks to an organization's digital assets and information systems. It involves implementing strategies and controls to minimize the impact of potential cyber threats, such as data breaches, malware, and unauthorized access. The goal is to balance security measures with business needs, ensuring sensitive information remains protected while maintaining operational efficiency. Effective risk management is ongoing, adapting to new threats and changes within the organization.

Can you make $500,000 a year in cyber security?

Cybersecurity risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working for large organizations with complex security needs.
What are popular job titles related to Cybersecurity Risk Management jobs in Tulsa, OK? For Cybersecurity Risk Management jobs in Tulsa, OK, the most frequently searched job titles are:
What cities near Tulsa, OK are hiring for Cybersecurity Risk Management jobs? Cities near Tulsa, OK with the most Cybersecurity Risk Management job openings:
Infographic showing various Cybersecurity Risk Management job openings in Tulsa, OK as of July 2026, with employment types broken down into 2% Locum Tenens, 86% Full Time, 9% Part Time, and 3% Contract. Highlights an 79% Physical, 5% Hybrid, and 16% Remote job distribution, with an average salary of $115,274 per year, or $55.4 per hour.
Cyber Security Program Manager

Cyber Security Program Manager

QuikTrip

Tulsa, OK • On-site

$101K - $136K/yr

Full-time

Re-posted 23 days ago


QuikTrip rating

7.1

Company rating: 7.1 out of 10

Based on 636 frontline employees who took The Breakroom Quiz

2nd of 48 rated convenience stores


Job description

Job Summary:
QuikTrip is seeking a Cyber Security Program Manager to lead and operationalize their Enterprise Cyber Security Program. This role involves developing and implementing security strategies, ensuring compliance with regulations, and managing cybersecurity initiatives across the organization and its subsidiaries.
Responsibilities:
• Assist in developing and overseeing QuikTrip’s Enterprise Cyber Security Strategy, practices, and programs. Assist in planning and implementing security for all computing hardware and software systems. (60%)
• Assist and advise user departments in appropriate security procedures.
• Protect the corporate computing infrastructure from unauthorized access.
• Protect the company network from attacks.
• Protect the confidentiality of company data and employee information.
• Oversee the development and maintenance of Information Technology security and compliance standards.
• Set policy on introduction of third-party software to the network, implement end point protection software, and monitor compliance.
• Assist in the maintenance, development, and operation of QuikTrip’s Privacy program. (5%)
• Governance - Ensure policies, standards and procedures are kept up to date, monitor adherence to program, establish and maintain Privacy Committee involving business leaders from across the enterprise.
• Ensure Privacy Impact Assessments are continually run across projects or efforts around privacy, continual development of processes related to PIA’s, and perform regular compliance assessments to validate policies are affecting and being adhered to.
• Ensure Continuous Compliance Monitoring across the enterprise to make sure the Privacy program is operating effectively. This will include audits of process, third party, controls, reporting, and incident response measures.
• Ensure the creation of a Personal Data Inventory, including usage, processing activities, data retention, and anonymization.
• Ensure Awareness, Training, and other communications related to the Privacy program are in place and effective.
• Liaise and communicate effectively with external entities, such as supervisory and regulatory authorities. Ensure Cyber Security program follows relevant industry and governmental standards, including but not limited to the Payment Card Industry Data Security Standard and HIPAA Standard. (10%)
• Fill the role of HIPAA Security Officer (HSO) by managing information security policies, procedures, and technical systems to maintain the confidentiality, integrity, and availability of healthcare information systems, conducting investigations, and maintaining records.
• Keep apprised of changes to the standard.
• Evaluate new systems for impact.
• Conduct annual PCI audit and submit result to QuikTrip’s acquirer.
• Directing the work effort and providing information to internal and external resources as required. (10%)
• Conduct an annual risk assessment of QuikTrip’s systems, evaluating risk of loss versus operating cost. Present results to Senior Management for review and acceptance.
• Develop and produce metrics on IT Security for Board of Directors, IT Leadership, and general QT employees.
• On request of management, present reports concerning security-related activity of specific employees or vendors.
• Interface with QT internal auditors, financial auditors, PCI auditors, and any other external auditors as required. Provide any requested information and arrange meetings with QT personnel. Provide responses and compensating controls to audit comments.
• Provide security support to IT department and the Company at large. (5%)
• Lead troubleshooting efforts to resolve security issues and problems for QT systems.
• Work with technology groups to provide general security direction, guidelines, and controls.
• Ensure the technical design of all major systems have the appropriate levels of technology security as well as making sure all new systems adhere to QuikTrip security standards. Conduct risk assessments of new technology and custom applications. (5%)
• Contribute to IT Strategic Planning and budgeting process, as well as day-to-day security planning, by analyzing future security needs, make recommendations on computer hardware, software, and processes. (5%)
Qualifications:
Required:
• Bachelor’s Degree, preferably in MIS or Computer Science or equivalent work experience.
• Extensive experience in cybersecurity program management and operations.
• 8+ years of cybersecurity practices and technologies spanning risk management, governance, architecture, cloud security, threat detection, incident response, and vulnerability management.
• Intimately familiar with cyber security frameworks like NIST and CIS.
• Solid grasp of the issues associated with standards, compliance, security, and disaster recovery including the costs, benefits, and risks to the company.
• Strong oral and written communications skills.
• Project leadership skills.
Preferred:
• Certification as an Information Systems Security Professional. (CISM, CISA, CISSP, SANS, or equivalent)
• Disaster Recovery planning, CSIRT, regulatory compliance (PCI, HIPAA, Privacy), ITIL
• AD and MS servers, AS400, security and audit tools, Network and Telecommunications experience.
Company:
QuikTrip is 24 hour hour convenience store that offers gasoline and various grocery items. Founded in 1958, the company is headquartered in Tulsa, USA, with a team of 10001+ employees. The company is currently Late Stage.

What QuikTrip employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom