ZipRecruiter

Log In

1

Information Security Risk Analyst Jobs in Raleigh, NC

Procom Services

Network Security Engineer

Durham, NC

$101K - $138.20K/yr

... Information Security standards and practices - Internet security - LAN and or WAN routers and switches - Network security - Risk analysis - Routing protocols - BGP - OSPF - STP - IPV6 - MPLS ...

Procom Services

212406 Network Security Engineer

Durham, NC ยท On-site

$101K - $138.20K/yr

Information Security standards and practices * Internet security * LAN and or WAN routers and switches * Network security * Risk analysis * Routing protocols - BGP - OSPF - STP - IPV6 - MPLS

Lucid Software

Sr. Security Trust & Assurance Analyst

Raleigh, NC ยท On-site +1

$93.30K - $122K/yr

At least 1 year of working experience with information security management systems, including risk ... Understanding of common risk analysis methodologies (e.g. OCTAVE, FAIR, NIST 800-30). * Practical ...

next page

Showing results 1-20

People also search for

All JobsInformation Security Risk Analyst JobsInformation Security Risk Analyst Jobs in Raleigh, NC

Information Security Risk Analyst information

See Raleigh, NC salary details

$31

$56

$73

How much do information security risk analyst jobs pay per hour?

As of May 29, 2026, the average hourly pay for information security risk analyst in Raleigh, NC is $56.82, according to ZipRecruiter salary data. Most workers in this role earn between $44.18 and $63.80 per hour, depending on experience, location, and employer.

What Does an Information Security Risk Analyst Do?

As an information security risk analyst, your job is to help assess each potential threat and determine whether or not your current network system suffers from vulnerability to that threat. In this IT role, you may monitor network activity, help implement and manage safety protocols, and research emerging threats to help determine the best response to them. Information security risk analysts often work with many other IT personnel at the same company to manage security needs and, somewhat unusually for an IT role, may also collaborate with outside experts and volunteers to find the best way to counter a particular threat. This is an extremely collaborative position, so the ability to work well with other people, including those you may be meeting for the first time, is essential to your success.

What are the key skills and qualifications needed to thrive as an Information Security Risk Analyst, and why are they important?

To thrive as an Information Security Risk Analyst, you need a solid understanding of cybersecurity principles, risk management frameworks, and a relevant degree or certifications such as CISSP, CISM, or CRISC. Familiarity with tools like risk assessment platforms, vulnerability scanners, and security information and event management (SIEM) systems is typically required. Strong analytical thinking, communication, and attention to detail help you translate complex risks into actionable recommendations and collaborate with stakeholders. These skills are crucial for effectively identifying, assessing, and mitigating security risks to protect organizational assets and ensure compliance.

How does an Information Security Risk Analyst typically collaborate with other departments to address security risks?

Information Security Risk Analysts work closely with various departments such as IT, compliance, legal, and business units to identify and mitigate security risks. They often facilitate risk assessments, communicate findings, and recommend solutions tailored to each department's needs. Regular meetings and cross-functional projects are common, ensuring security measures align with business objectives while maintaining compliance. This collaborative approach helps foster a culture of security awareness throughout the organization.

What are Information Security Risk Analysts?

Information Security Risk Analysts are professionals responsible for identifying, assessing, and mitigating risks to an organization's information systems and data. They analyze potential threats, vulnerabilities, and impacts to ensure that appropriate security measures are in place. These analysts often develop risk management strategies, conduct security assessments, and recommend security enhancements. Their goal is to help organizations protect sensitive information and comply with relevant regulations.

What is the difference between Information Security Risk Analyst vs Cybersecurity Analyst?

AspectInformation Security Risk AnalystCybersecurity Analyst
CertificationsISO 27001, CISSP, CISACompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment teams, compliance departmentsSecurity operations centers, incident response teams
Employer & Industry UsageFinancial, healthcare, government sectorsTech companies, cybersecurity firms, enterprises

While both roles focus on protecting information assets, the Information Security Risk Analyst primarily assesses and manages risks related to information security policies and compliance. In contrast, the Cybersecurity Analyst actively monitors security systems, responds to threats, and handles incidents. Understanding these differences helps organizations assign the right responsibilities and professionals to safeguard their digital assets.

More about Information Security Risk Analyst jobs
What are popular job titles related to Information Security Risk Analyst jobs in Raleigh, NC? For Information Security Risk Analyst jobs in Raleigh, NC, the most frequently searched job titles are:
What job categories do people searching Information Security Risk Analyst jobs in Raleigh, NC look for? The top searched job categories for Information Security Risk Analyst jobs in Raleigh, NC are:
Information Security Risk Analyst jobs near you
Security Risk & Compliance Assistant

Security Risk & Compliance Assistant

Robinson Bradshaw & Hinson

Chapel Hill, NC โ€ข Hybrid

Full-time

Posted 16 days ago

Job description

The Security Risk and Compliance Assistantโ€™s primary responsibility is to coordinate the Firmโ€™s security compliance efforts and support the Firmโ€™s overall information security program in collaboration with other key stakeholders in the Firm. Reporting to the Firmโ€™s Security Risk and Compliance Analyst, the assistant will have a range of responsibilities to assist with the Firmโ€™s interaction and compliance with client-directed security controls, the Firmโ€™s internal security governance and compliance efforts, and furtherance of the Firmโ€™s information security initiatives to satisfy to the Firmโ€™s ethical, legal and contractual obligations.

JOB RESPONSIBILITIES:

  • Provide administrative assistance to the Security Risk & Compliance Analyst to coordinate and execute projects designed to manage and reduce risk for the firm and its clients.
  • Assist Security Risk & Compliance Analyst in maintaining files related to risk management and compliance functions and identifying, tracking, and mitigating risks related to firm and client information.
  • Assist Security Risk and Compliance Analyst to develop, maintain, evaluate, and implement policies and procedures in line with business requirements and national and international legislative and regulatory changes (i.e., ISO 27001/22301, HIPAA, NIST).
  • Assist with maintaining an inventory of security improvement opportunities and action items; prepare periodic reports on trends and compliance.
  • Assist with status reports on security matters to develop security risk analysis exceptions.
  • Assist with security and risk management audits, assessments, and mitigation plans.
  • Assist with the creation and maintenance of security and risk management documentation, including policies, procedures, internal risk assessments, risk registries, and similar tracking documents.
  • Assist with security risk management programs such as access management, vulnerability management, business continuity, data protection, and risk governance.
  • Assist with third-party vendor risk management program.
  • Other duties, as assigned, are based on the ongoing evolution of the Information Security program.

KNOWLEDGE, SKILLS, AND ABILITIES:

  • Proficiency with Microsoft Office Suite 365 (Word, Excel, Power Point, etc.).
  • Ability to learn and adopt to innovative technology and software packages specific to Governance Risk & Compliance.
  • Willing to learn department specific databases or software as necessary (e.g., Vendor Risk Management and project tracking software).
  • Bachelorโ€™s degree with a cyber risk or cybersecurity focus or a combination of a cyber-security certificate from an accredited two year college program at least two years of office clerical or general office experience required
  • Foundational understanding of Information Security controls, governance principles, and standards/frameworks (e.g., NIST Cybersecurity Framework and the Health Insurance Portability and Accountability Act (HIPAA).
  • A passion for learning about Information Security in the legal industry.
  • Ability to always provide Distinctively Robinson Bradshaw service to all internal and external clients.
  • Actively participates as a member of a team to move forward toward the completion of team goals.
  • Demonstrate good critical thinking, analytical, and critical thinking skills, and ability to share constructive insights.
  • Works effectively and cooperatively with others; establishes and maintains good working relationships.
  • Ability to communicate effectively both verbally and in writing.
  • Ownership, accuracy, and thoroughness of work product; work must be complete and organized.
  • Strong ethical standards and a commitment to maintaining confidentiality and integrity in all activities.
  • Must be able to travel as needed to support remote offices and attend training or conferences.
  • Ability to work in a hybrid environment remotely and regularly in the office.).