ZipRecruiter

Log In

1

Security Risk Analyst Jobs in Kentucky (NOW HIRING)

Bitwerx, Inc

Information Security Engineer

Lexington, KY · On-site

$120K/yr

Manage vendor risk workflows Cloud and Platform Security * Implement Azure security guardrails ... Perform root cause analysis * Manage tabletop exercises using real-world examples for team training ...

Humana

Configuration Management Analyst

Louisville, KY · On-site +1

$73.40K - $100.10K/yr

... best practices, risk, and security. * Support IT asset management by maintaining accurate ... Strong analytical, organizational, and documentation skills. * Excellent communication and ...

Humana

Configuration Management Analyst

Louisville, KY · On-site +1

$73.40K - $100.10K/yr

... best practices, risk, and security. * Support IT asset management by maintaining accurate ... Strong analytical, organizational, and documentation skills. * Excellent communication and ...

Humana

Configuration Management Analyst

Louisville, KY · On-site +1

$73.40K - $100.10K/yr

... best practices, risk, and security. * Support IT asset management by maintaining accurate ... Strong analytical, organizational, and documentation skills. * Excellent communication and ...

Valvoline

IT Controls Analyst II

Frankfort, KY · On-site +1

Experience with controls and information security frameworks and standards as well as risk ... Strong analytical and problem-solving skills * Ability to work both independently and as part of a ...

VIOC

IT Controls Analyst II

Frankfort, KY

Experience with controls and information security frameworks and standards as well as risk ... Strong analytical and problem-solving skills * Ability to work both independently and as part of a ...

Fidelity TalentSource

Security Officer

Latonia, KY · On-site

$15.50 - $18.50/hr

... risk, and ensuring overall safety at a variety of locations. This is not a typical "security guard ... Good analytical skills • Availability to work a flexible schedule, including days, nights, or ...

Humana

Lead Software Engineer

Louisville, KY · Remote

... Security & Risk Management * Define software quality standards, testing practices, and performance benchmarks * Lead debugging, defect resolution, and root-cause analysis * Ensure compliance with ...

Humana

Lead Software Engineer

Louisville, KY · Remote

... Security & Risk Management * Define software quality standards, testing practices, and performance benchmarks * Lead debugging, defect resolution, and root-cause analysis * Ensure compliance with ...

Tarian

GSOC Manager

Louisville, KY · On-site

$85 - $95K/hr

Director, Global Intelligence & Security Risk Salary: $85-$95K Position Summary Tarian is seeking ... Strong leadership, analytical, organizational, and communication skills * Ability to manage ...

Tarian

GSOC Manager

Louisville, KY

$85 - $95K/hr

Director, Global Intelligence & Security Risk Salary: $85-$95K Position Summary Tarian is seeking ... Strong leadership, analytical, organizational, and communication skills * Ability to manage ...

Tarian

GSOC Manager

Louisville, KY · On-site

$85 - $95K/hr

Director, Global Intelligence & Security Risk Salary: $85-$95K Position Summary Tarian is seeking ... Strong leadership, analytical, organizational, and communication skills * Ability to manage ...

next page

Showing results 1-20

People also search for

All JobsSecurity Risk Analyst JobsSecurity Risk Analyst Jobs in Kentucky

Security Risk Analyst information

See Kentucky salary details

$8

$43

$60

How much do security risk analyst jobs pay per hour?

As of May 29, 2026, the average hourly pay for security risk analyst in Kentucky is $43.78, according to ZipRecruiter salary data. Most workers in this role earn between $35.48 and $52.21 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Security Risk Analyst, and why are they important?

To thrive as a Security Risk Analyst, you need a strong background in risk assessment, information security principles, and analytical thinking, often supported by a degree in cybersecurity, IT, or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security assessment tools, and certifications like CISSP or CISM is highly valuable. Excellent communication, attention to detail, and problem-solving abilities help you translate complex risks for varied stakeholders and drive mitigation strategies. These skills and qualities are crucial for identifying vulnerabilities, minimizing threats, and maintaining organizational security and compliance.

What are some common challenges Security Risk Analysts face when collaborating with other departments?

Security Risk Analysts often work closely with IT, compliance, and business units to assess and mitigate risks. A common challenge is bridging the gap between technical security requirements and business objectives, as not all stakeholders may have a cybersecurity background. Effective communication and education are key to ensuring that risk recommendations are understood and adopted. Additionally, prioritizing risks with limited resources and balancing security with operational needs can be complex, requiring strong collaboration and negotiation skills.

What does a Security Risk Analyst do?

A Security Risk Analyst is responsible for identifying, assessing, and mitigating risks to an organization's information systems and data. They analyze security measures, conduct vulnerability assessments, and recommend strategies to protect against threats such as cyberattacks, data breaches, and unauthorized access. Their work helps ensure that a company's digital assets remain safe and compliant with industry regulations. Security Risk Analysts collaborate with IT teams and management to implement effective security policies and respond to incidents as needed.

What is the difference between Security Risk Analyst vs Security Analyst?

AspectSecurity Risk AnalystSecurity Analyst
CertificationsCompTIA Security+, CISSP, CISACompTIA Security+, CISSP, CEH
Work EnvironmentRisk assessment, vulnerability analysis, policy developmentMonitoring security systems, incident response, security audits
Employer & Industry UsageFinancial, healthcare, government sectors focusing on risk mitigationIT departments across various industries focusing on security operations

While both roles focus on cybersecurity, Security Risk Analysts primarily assess and manage potential security threats and vulnerabilities, emphasizing risk mitigation strategies. Security Analysts tend to monitor security systems, respond to incidents, and ensure ongoing security measures. Both roles often require similar certifications and work environments but differ in their core responsibilities within cybersecurity teams.

What are popular job titles related to Security Risk Analyst jobs in Kentucky? For Security Risk Analyst jobs in Kentucky, the most frequently searched job titles are:
What job categories do people searching Security Risk Analyst jobs in Kentucky look for? The top searched job categories for Security Risk Analyst jobs in Kentucky are:
What are popular job titles related to Security Risk Analyst jobs in KY? For Security Risk Analyst jobs in KY, the most frequently searched job titles are:
Security Risk Analyst jobs near you
Infographic showing various Security Risk Analyst job openings in Kentucky as of May 2026, with employment types broken down into 1% As Needed, 92% Full Time, 5% Part Time, and 2% Contract. Highlights an 95% Physical, 2% Hybrid, and 3% Remote job distribution, with an average salary of $91,063 per year, or $43.8 per hour.
Information Security Engineer

Information Security Engineer

Bitwerx, Inc

Lexington, KY • On-site

$120K/yr

Full-time

Medical, Dental, Vision, Retirement, PTO

Posted 27 days ago

Job description

Information Security Engineer
About Bitwerx
Bitwerx, Inc. is a team of industry experts focused on designing, building, and supporting innovative software solutions that leverage data to improve the customer journey. Our experience spans many industries with a focus on veterinary, and our partners range from startups trying to bring a new idea to market to Fortune 500 companies looking to become more agile.
About the role
We are seeking an Information Security Engineer to serve as the primary owner of Bitwerx's Information Security governance, policies, and compliance framework, leading the design, implementation, and ongoing maturation of the security program with a core focus on SOC 2 Type 2 and broader U.S. and international compliance requirements.
This is a hands-on individual contributor role. You will be responsible for building practical, scalable security controls; refining policies and standards; operationalizing compliance requirements; and partnering closely with our Platform Delivery and Software Engineering teams to embed security into day-to-day operations.
This role may be based in Lexington, KY (hybrid) or performed remotely from select U.S. locations.
What You'll Do
Security & Compliance Program Ownership
  • Own end-to-end SOC 2 Type 2 execution
  • Design, refine, and validate security controls
  • Prepare audit evidence and remediation plans

Policy, Risk and Governance
  • Author and maintain security policies and standards
  • Maintain the risk register and treatment plans
  • Manage vendor risk workflows

Cloud and Platform Security
  • Implement Azure security guardrails
  • Enforce IAM, RBAC, MFA and conditional access
  • Maintain the risk register and treatment plans
  • Secure CI/CD pipelines and secrets

Monitoring and Incident Response
  • Implement centralized logging and alerting
  • Maintain Incident Response playbooks and lead response efforts
  • Perform root cause analysis
  • Manage tabletop exercises using real-world examples for team training

Audit and Automation
  • Automate compliance evidence collection
  • Ensure controls are sustainable year over year

What You'll Bring
  • 3+ years in security and/or compliance engineering
  • SOC 2 Type 2 hands-on experience
  • Experience implementing international security and privacy compliance controls (e.g., GDPR, OSFI, and similar regulatory frameworks)
  • Strong understanding of security architecture and risk management for data-centric organizations, including large-scale data storage, processing, access controls, and data lifecycle governance
  • Azure cloud security experience
  • Strong written and technical communication skills
  • Proactive, collaborative team player who thrives in a fast paced, small company environment
  • Experience with Drata is preferred

What Success Looks Like
  • Predictable, low-stress audits
  • Embedded security controls
  • Automated evidence collection

Why This Role Matters
Security and compliance are foundational to Bitwerx's growth, reputation and customer trust.
What We Offer
  • 100% company-paid health, vision, and dental insurance
  • 401(k) with company match
  • Robust PTO policy
  • A collaborative and inclusive work culture
  • Opportunities for professional growth and development
  • The chance to make a significant impact on a growing company

Bitwerx, Inc. is an Equal Opportunity Employer. Your application will be considered regardless of race, color, national origin, age, disability, gender, sexual orientation, gender identity or expression, marital status, or veteran status. You must be legally authorized to work in the U.S.

Apply