ZipRecruiter

Log In

1

Information Security Risk Analyst Jobs (NOW HIRING)

next page

Showing results 1-20

People also search for

All JobsInformation Security Risk Analyst Jobs

Information Security Risk Analyst information

See salary details

$31

$58

$75

How much do information security risk analyst jobs pay per hour?

As of Jun 6, 2026, the average hourly pay for information security risk analyst in the United States is $58.45, according to ZipRecruiter salary data. Most workers in this role earn between $45.43 and $65.62 per hour, depending on experience, location, and employer.

What is the difference between Information Security Risk Analyst vs Cybersecurity Analyst?

AspectInformation Security Risk AnalystCybersecurity Analyst
CertificationsISO 27001, CISSP, CISACompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment teams, compliance departmentsSecurity operations centers, incident response teams
Employer & Industry UsageFinancial, healthcare, government sectorsTech companies, cybersecurity firms, enterprises

While both roles focus on protecting information assets, the Information Security Risk Analyst primarily assesses and manages risks related to information security policies and compliance. In contrast, the Cybersecurity Analyst actively monitors security systems, responds to threats, and handles incidents. Understanding these differences helps organizations assign the right responsibilities and professionals to safeguard their digital assets.

What are the key skills and qualifications needed to thrive as an Information Security Risk Analyst, and why are they important?

To thrive as an Information Security Risk Analyst, you need a solid understanding of cybersecurity principles, risk management frameworks, and a relevant degree or certifications such as CISSP, CISM, or CRISC. Familiarity with tools like risk assessment platforms, vulnerability scanners, and security information and event management (SIEM) systems is typically required. Strong analytical thinking, communication, and attention to detail help you translate complex risks into actionable recommendations and collaborate with stakeholders. These skills are crucial for effectively identifying, assessing, and mitigating security risks to protect organizational assets and ensure compliance.

What are Information Security Risk Analysts?

Information Security Risk Analysts are professionals responsible for identifying, assessing, and mitigating risks to an organization's information systems and data. They analyze potential threats, vulnerabilities, and impacts to ensure that appropriate security measures are in place. These analysts often develop risk management strategies, conduct security assessments, and recommend security enhancements. Their goal is to help organizations protect sensitive information and comply with relevant regulations.

What Does an Information Security Risk Analyst Do?

As an information security risk analyst, your job is to help assess each potential threat and determine whether or not your current network system suffers from vulnerability to that threat. In this IT role, you may monitor network activity, help implement and manage safety protocols, and research emerging threats to help determine the best response to them. Information security risk analysts often work with many other IT personnel at the same company to manage security needs and, somewhat unusually for an IT role, may also collaborate with outside experts and volunteers to find the best way to counter a particular threat. This is an extremely collaborative position, so the ability to work well with other people, including those you may be meeting for the first time, is essential to your success.

How does an Information Security Risk Analyst typically collaborate with other departments to address security risks?

Information Security Risk Analysts work closely with various departments such as IT, compliance, legal, and business units to identify and mitigate security risks. They often facilitate risk assessments, communicate findings, and recommend solutions tailored to each department's needs. Regular meetings and cross-functional projects are common, ensuring security measures align with business objectives while maintaining compliance. This collaborative approach helps foster a culture of security awareness throughout the organization.
More about Information Security Risk Analyst jobs
What cities are hiring for Information Security Risk Analyst jobs? Cities with the most Information Security Risk Analyst job openings:
What are the most commonly searched types of Information Security Risk Analyst jobs? The most popular types of Information Security Risk Analyst jobs are:
Who are the top companies hiring for Information Security Risk Analyst jobs? The top employers for Information Security Risk Analyst jobs are:
What states have the most Information Security Risk Analyst jobs? States with the most job openings for Information Security Risk Analyst jobs include:
What job categories do people searching Information Security Risk Analyst jobs look for? The top searched job categories for Information Security Risk Analyst jobs are:
What are popular job titles related to Information Security Risk Analyst jobs? For Information Security Risk Analyst jobs, the most frequently searched job titles are:
Information Security Risk Analyst jobs near you
Infographic showing various Information Security Risk Analyst job openings in the United States as of May 2026, with employment types broken down into 36% Full Time, 57% Part Time, and 7% Contract. Highlights an 94% Physical, 2% Hybrid, and 4% Remote job distribution, with an average salary of $121,577 per year, or $58.5 per hour.
Security Risk & Compliance Assistant

Security Risk & Compliance Assistant

Robinson Bradshaw & Hinson

Chapel Hill, NC • Hybrid

Full-time

Posted 25 days ago

Job description

The Security Risk and Compliance Assistant’s primary responsibility is to coordinate the Firm’s security compliance efforts and support the Firm’s overall information security program in collaboration with other key stakeholders in the Firm. Reporting to the Firm’s Security Risk and Compliance Analyst, the assistant will have a range of responsibilities to assist with the Firm’s interaction and compliance with client-directed security controls, the Firm’s internal security governance and compliance efforts, and furtherance of the Firm’s information security initiatives to satisfy to the Firm’s ethical, legal and contractual obligations.

JOB RESPONSIBILITIES:

  • Provide administrative assistance to the Security Risk & Compliance Analyst to coordinate and execute projects designed to manage and reduce risk for the firm and its clients.
  • Assist Security Risk & Compliance Analyst in maintaining files related to risk management and compliance functions and identifying, tracking, and mitigating risks related to firm and client information.
  • Assist Security Risk and Compliance Analyst to develop, maintain, evaluate, and implement policies and procedures in line with business requirements and national and international legislative and regulatory changes (i.e., ISO 27001/22301, HIPAA, NIST).
  • Assist with maintaining an inventory of security improvement opportunities and action items; prepare periodic reports on trends and compliance.
  • Assist with status reports on security matters to develop security risk analysis exceptions.
  • Assist with security and risk management audits, assessments, and mitigation plans.
  • Assist with the creation and maintenance of security and risk management documentation, including policies, procedures, internal risk assessments, risk registries, and similar tracking documents.
  • Assist with security risk management programs such as access management, vulnerability management, business continuity, data protection, and risk governance.
  • Assist with third-party vendor risk management program.
  • Other duties, as assigned, are based on the ongoing evolution of the Information Security program.

KNOWLEDGE, SKILLS, AND ABILITIES:

  • Proficiency with Microsoft Office Suite 365 (Word, Excel, Power Point, etc.).
  • Ability to learn and adopt to innovative technology and software packages specific to Governance Risk & Compliance.
  • Willing to learn department specific databases or software as necessary (e.g., Vendor Risk Management and project tracking software).
  • Bachelor’s degree with a cyber risk or cybersecurity focus or a combination of a cyber-security certificate from an accredited two year college program at least two years of office clerical or general office experience required
  • Foundational understanding of Information Security controls, governance principles, and standards/frameworks (e.g., NIST Cybersecurity Framework and the Health Insurance Portability and Accountability Act (HIPAA).
  • A passion for learning about Information Security in the legal industry.
  • Ability to always provide Distinctively Robinson Bradshaw service to all internal and external clients.
  • Actively participates as a member of a team to move forward toward the completion of team goals.
  • Demonstrate good critical thinking, analytical, and critical thinking skills, and ability to share constructive insights.
  • Works effectively and cooperatively with others; establishes and maintains good working relationships.
  • Ability to communicate effectively both verbally and in writing.
  • Ownership, accuracy, and thoroughness of work product; work must be complete and organized.
  • Strong ethical standards and a commitment to maintaining confidentiality and integrity in all activities.
  • Must be able to travel as needed to support remote offices and attend training or conferences.
  • Ability to work in a hybrid environment remotely and regularly in the office.).