Conduct comprehensive security risk assessments and gap analyses * Lead cybersecurity maturity assessments aligned to NIST, CIS, or industry frameworks * Perform vulnerability assessments and ...
Conduct comprehensive security risk assessments and gap analyses * Lead cybersecurity maturity assessments aligned to NIST, CIS, or industry frameworks * Perform vulnerability assessments and ...
IT Security Specialist (Pre-Incident Consulting & Incident Response Lead)
Louisville, KY · On-site
$90K - $120K/yr
Conduct comprehensive security risk assessments and gap analyses * Lead cybersecurity maturity assessments aligned to NIST, CIS, or industry frameworks * Perform vulnerability assessments and ...
IT Security Specialist (Pre-Incident Consulting & Incident Response Lead)
Louisville, KY · On-site
$90K - $120K/yr
Conduct comprehensive security risk assessments and gap analyses * Lead cybersecurity maturity assessments aligned to NIST, CIS, or industry frameworks * Perform vulnerability assessments and ...
Manage comprehensive security program supporting the Special Operations Forces Global Logistic ... Familiar with risk analysis process integrating intelligence, cyber posture, operational tempo, and ...
Manage comprehensive security program supporting the Special Operations Forces Global Logistic ... Familiar with risk analysis process integrating intelligence, cyber posture, operational tempo, and ...
$41.75 - $55.75/hr
The IT Governance/Risk/Compliance Analyst position offers a dynamic opportunity for an experienced ... Ensure data security and privacy compliance by providing guidance on appropriate access controls ...
$41.75 - $55.75/hr
The IT Governance/Risk/Compliance Analyst position offers a dynamic opportunity for an experienced ... Ensure data security and privacy compliance by providing guidance on appropriate access controls ...
Director, Security
Lexington, KY · On-site
Manage comprehensive security program supporting the Special Operations Forces Global Logistic ... Familiar with risk analysis process integrating intelligence, cyber posture, operational tempo, and ...
Director, Security
Lexington, KY · On-site
Manage comprehensive security program supporting the Special Operations Forces Global Logistic ... Familiar with risk analysis process integrating intelligence, cyber posture, operational tempo, and ...
IT Security and Governance Analyst
Louisville, KY · On-site
$43.25 - $57.75/hr
The IT Governance/Risk/Compliance Analyst position offers a dynamic opportunity for an experienced ... security posture through robust frameworks and controls. We're seeking candidates with strong ...
IT Security and Governance Analyst
Louisville, KY · On-site
$43.25 - $57.75/hr
The IT Governance/Risk/Compliance Analyst position offers a dynamic opportunity for an experienced ... security posture through robust frameworks and controls. We're seeking candidates with strong ...
IT Security and Governance Analyst
Louisville, KY · On-site
$43.25 - $57.50/hr
... IT Governance/Risk/Compliance Analyst. In this role, you will identify and mitigate IT risks ... enhance the organization's security posture through governance frameworks and controls.
IT Security and Governance Analyst
Louisville, KY · On-site
$43.25 - $57.50/hr
... IT Governance/Risk/Compliance Analyst. In this role, you will identify and mitigate IT risks ... enhance the organization's security posture through governance frameworks and controls.
Director, Security
Lexington, KY · On-site
Familiar with risk analysis process integrating intelligence, cyber posture, operational tempo, and ... Knowledge of current security vulnerabilities and threats; Ability to collaborate with all levels ...
Director, Security
Lexington, KY · On-site
Familiar with risk analysis process integrating intelligence, cyber posture, operational tempo, and ... Knowledge of current security vulnerabilities and threats; Ability to collaborate with all levels ...
Participates in sentinel event root cause analysis process; Assists Chief Legal Officer in ... and security requirements to maintain confidentiality at all times • Serves as a member of the ...
Participates in sentinel event root cause analysis process; Assists Chief Legal Officer in ... and security requirements to maintain confidentiality at all times • Serves as a member of the ...
Participates in sentinel event root cause analysis process; Assists Chief Legal Officer in ... security requirements to maintain confidentiality at all times Serves as a member of the system ...
Participates in sentinel event root cause analysis process; Assists Chief Legal Officer in ... security requirements to maintain confidentiality at all times Serves as a member of the system ...
Strengthen Control Environment: - Support issue identification, root cause analysis, and ... S. Department of Homeland Security E-Verify program in all facilities located in the United States ...
Strengthen Control Environment: - Support issue identification, root cause analysis, and ... S. Department of Homeland Security E-Verify program in all facilities located in the United States ...
Sr. GRC Analyst
$95K - $105K/yr
About the Role The Senior GRC Analyst acts as a strategic lead to advance security and risk operations. In this role, you will integrate people, policy, and technology to drive operational excellence ...
Quick apply
Sr. GRC Analyst
$95K - $105K/yr
About the Role The Senior GRC Analyst acts as a strategic lead to advance security and risk operations. In this role, you will integrate people, policy, and technology to drive operational excellence ...
Business Risk Specialist
$20 - $24.38/hr
Strong attention to detail, organization, and analytical skills If there's anything we can do to ... S. Department of Homeland Security E-Verify program in all facilities located in the United States ...
Business Risk Specialist
$20 - $24.38/hr
Strong attention to detail, organization, and analytical skills If there's anything we can do to ... S. Department of Homeland Security E-Verify program in all facilities located in the United States ...
AI Security Architect - Erlanger, KY
$92K - $172K/yr
Apply AI risk management standards to assess and mitigate risks in AI pipelines.Mentor architects, engineers, and analysts in AI security best practices and contribute to the advancement of AI ...
AI Security Architect - Erlanger, KY
$92K - $172K/yr
Apply AI risk management standards to assess and mitigate risks in AI pipelines.Mentor architects, engineers, and analysts in AI security best practices and contribute to the advancement of AI ...
Business Risk Specialist
Owensboro, KY · On-site
$20 - $24.38/hr
Strong attention to detail, organization, and analytical skills If there's anything we can do to ... S. Department of Homeland Security E-Verify program in all facilities located in the United States ...
Business Risk Specialist
Owensboro, KY · On-site
$20 - $24.38/hr
Strong attention to detail, organization, and analytical skills If there's anything we can do to ... S. Department of Homeland Security E-Verify program in all facilities located in the United States ...
AI Security Architect - Erlanger, KY
$64 - $82.75/hr
Apply AI risk management standards to assess and mitigate risks in AI pipelines. * Mentor architects, engineers, and analysts in AI security best practices and contribute to the advancement of AI ...
AI Security Architect - Erlanger, KY
$64 - $82.75/hr
Apply AI risk management standards to assess and mitigate risks in AI pipelines. * Mentor architects, engineers, and analysts in AI security best practices and contribute to the advancement of AI ...
AI Security Architect - Erlanger, KY
Erlanger, KY · On-site
$92K - $172K/yr
Apply AI risk management standards to assess and mitigate risks in AI pipelines. * Mentor architects, engineers, and analysts in AI security best practices and contribute to the advancement of AI ...
AI Security Architect - Erlanger, KY
Erlanger, KY · On-site
$92K - $172K/yr
Apply AI risk management standards to assess and mitigate risks in AI pipelines. * Mentor architects, engineers, and analysts in AI security best practices and contribute to the advancement of AI ...
Security Operations Shift Lead
Louisville, KY · On-site
... risk posture, and security metrics. - Support continuous improvement of cybersecurity processes and operational effectiveness through feedback and analysis of response activities. Job-Specific ...
Security Operations Shift Lead
Louisville, KY · On-site
... risk posture, and security metrics. - Support continuous improvement of cybersecurity processes and operational effectiveness through feedback and analysis of response activities. Job-Specific ...
... risk posture, and security metrics. - Support continuous improvement of cybersecurity processes and operational effectiveness through feedback and analysis of response activities. Job-Specific ...
... risk posture, and security metrics. - Support continuous improvement of cybersecurity processes and operational effectiveness through feedback and analysis of response activities. Job-Specific ...
Grow and mentor analysts-building a stronger, more capable Information Security team while serving as the escalation point for complex risk decisions. Qualifications: * Bachelor's degree in ...
Grow and mentor analysts-building a stronger, more capable Information Security team while serving as the escalation point for complex risk decisions. Qualifications: * Bachelor's degree in ...
Security Risk Analyst information
See Kentucky salary details
$8.98 - $13.68
2% of jobs
$13.68 - $18.39
0% of jobs
$18.39 - $23.10
1% of jobs
$23.10 - $27.81
1% of jobs
$27.81 - $32.51
1% of jobs
$36.04 is the 25th percentile. Wages below this are outliers.
$32.51 - $37.22
26% of jobs
$37.22 - $41.93
11% of jobs
The median wage is $43.61 / hr.
$41.93 - $46.63
22% of jobs
$46.63 - $51.34
9% of jobs
$51.71 is the 75th percentile. Wages above this are outliers.
$51.34 - $56.05
17% of jobs
$56.05 - $60.76
9% of jobs
$8
$43
$60
How much do security risk analyst jobs pay per hour?
Can I make $200,000 a year in cyber security?
What does a Security Risk Analyst do?
What are the key skills and qualifications needed to thrive as a Security Risk Analyst, and why are they important?
What are some common challenges Security Risk Analysts face when collaborating with other departments?
Can you make $500,000 a year in cyber security?
Is SOC an entry-level job?
What is the difference between Security Risk Analyst vs Security Analyst?
| Aspect | Security Risk Analyst | Security Analyst |
|---|---|---|
| Certifications | CompTIA Security+, CISSP, CISA | CompTIA Security+, CISSP, CEH |
| Work Environment | Risk assessment, vulnerability analysis, policy development | Monitoring security systems, incident response, security audits |
| Employer & Industry Usage | Financial, healthcare, government sectors focusing on risk mitigation | IT departments across various industries focusing on security operations |
While both roles focus on cybersecurity, Security Risk Analysts primarily assess and manage potential security threats and vulnerabilities, emphasizing risk mitigation strategies. Security Analysts tend to monitor security systems, respond to incidents, and ensure ongoing security measures. Both roles often require similar certifications and work environments but differ in their core responsibilities within cybersecurity teams.
What is a security risk analyst?

Full-time
Medical, Dental, Vision, Life, Retirement, PTO
Posted 28 days ago
Job description
Mirazon is a scaling, people-centered IT company that believes strong security starts long before an incident occurs, and that calm, capable leadership matters most when it does. We're looking for aSecurity Specialistwho thrives at the intersection of strategy and execution: someone who enjoys strengthening security postures proactively and who can step confidently into high-pressure situations to guide clients through complex cybersecurity events.
Mission of the Position
This role is designed for an experienced individual contributor with deep technical expertise, sound judgment, and executive presence. You value preparation, documentation, and disciplined processes, and you're equally comfortable designing preventative controls as you are leading incident response efforts in real time. You bring clarity to chaos, translate technical risk into business impact, and act as a trusted advisor to clients when the stakes are highest.
Key Criteria/Requirements
- 5+ years in cybersecurity or infrastructure security roles
- 3+ years leading security incidents
- Strong experience with:
- Firewalls (FortiGate, Cisco, SonicWall, Palo Alto, etc.)
- Endpoint detection and response (EDR/XDR)
- Microsoft 365 security stack
- Identity and access management
- Backup and disaster recovery systems
- Experience with ransomware containment and recovery
- Deep understanding of networking and Active Directory environments
- Strong written and verbal communication skills
- Ability to lead under pressure
Preferred Certifications
- CISSP
- CISM
- CEH
- GIAC (GCIA, GCIH, etc.)
- Security+
- Microsoft Security certifications
- Vendor firewall certifications
Key Accountabilities
1. Pre-Incident Security Consulting (Strategic & Preventative)
- Conduct comprehensive security risk assessments and gap analyses
- Lead cybersecurity maturity assessments aligned to NIST, CIS, or industry frameworks
- Perform vulnerability assessments and coordinate remediation planning
- Design and review:
- Network security architecture
- Firewall and segmentation strategies
- Endpoint security strategies
- MFA and identity security implementation
- Develop incident response plans and business continuity playbooks
- Conduct tabletop exercises with client executive teams
- Provide executive-level reporting with risk prioritization and budget guidance
- Assist sales/engineering with scoping security engagements and SOW development
2. Incident Response Leadership
- Serve as Incident Response Lead during cybersecurity events
- Direct containment, eradication, and recovery efforts
- Coordinate with:
- Internal engineering teams
- Client leadership
- Insurance carriers
- Legal counsel
- Forensics vendors
- Perform initial triage and determine scope of compromise
- Oversee forensic evidence preservation
- Guide ransomware response and recovery strategy
- Lead root-cause analysis and post-incident reporting
- Develop corrective action plans
3. Client & Executive Communication
- Act as trusted advisor to C-suite and ownership groups
- Translate technical findings into business risk language
- Present findings and remediation plans in board-level settings
- Provide calm, decisive leadership during crisis situations
- Maintain strict confidentiality and professionalism
4. Documentation & Process Development
- Maintain standardized security assessment templates
- Develop and refine internal IR procedures
- Create security standards and best practices
- Ensure all engagements are properly documented in PSA systems
- Contribute to continuous improvement of security offerings
Insurance Benefits
Eligibility begins the first day of full-time employment (date of hire).
- Life Insurance
- Short-term Disability
- Long-term Disability
- Cafeteria Plan - Premium, Medical, & Child Care Reimbursement
- Health Insurance
- Dental Plan
- Vision Plan
Other Benefits
- 401K Matching
- Referral Bonuses
- Tuition Reimbursement
- Performance Incentives
- Time Off- benefitsaccrueon a pro-rated basis each pay period over a 12-month period with the following maximums:
- Vacation Time -10 daysper calendar year
- Sick Leave- 5 days per calendar year
- Paid Company Holidays (7)
- Paid Floating Holidays (2)
- Volunteer 1
- Cell Phone & Internet Reimbursement
About Mirazon
Sourced by ZipRecruiter
Company size
11 - 50 Employees
Headquarters location
Louisville, KY, US
Year founded
2000