ZipRecruiter

Log In

1

Security Risk Analyst Jobs in Chicago, IL (NOW HIRING)

City Of Chicago

Senior Security Anaylst

Chicago, IL · On-site

$120K/yr

... security analysis, incident response, resiliency, threat management, identity and access management, governance, risk and compliance, network security management, and performs related duties as ...

Rothera

Director, Enterprise Risk Management

Chicago, IL · On-site

$175K - $200K/yr

Drive automation and infrastructure for risk monitoring, integrating real-time analytics into risk ... Collaborate with Technology and Security teams to report on data protection, and information ...

Wedbush

Vice President, Market Risk Manager

Chicago, IL · On-site

$125K - $200K/yr

Invite a friend Back to job search Wedbush Securities is one of the largest securities firms and ... The primary function of this role is to act as a Market Risk Analytics Manager focusing on futures ...

next page

Showing results 1-20

All JobsSecurity Risk Analyst JobsSecurity Risk Analyst Jobs in Chicago, IL

Security Risk Analyst information

See Chicago, IL salary details

$10

$51

$72

How much do security risk analyst jobs pay per hour?

As of Jun 25, 2026, the average hourly pay for security risk analyst in Chicago, IL is $51.97, according to ZipRecruiter salary data. Most workers in this role earn between $42.12 and $61.97 per hour, depending on experience, location, and employer.

Can I make $200,000 a year in cyber security?

Security Risk Analysts and other cybersecurity professionals can potentially earn $200,000 or more annually, especially with advanced skills, certifications like CISSP, and experience in high-demand areas such as threat intelligence or security architecture. Achieving this level often requires several years of experience, specialized knowledge, and working in senior or managerial roles within organizations or consulting firms.

What does a Security Risk Analyst do?

A Security Risk Analyst is responsible for identifying, assessing, and mitigating risks to an organization's information systems and data. They analyze security measures, conduct vulnerability assessments, and recommend strategies to protect against threats such as cyberattacks, data breaches, and unauthorized access. Their work helps ensure that a company's digital assets remain safe and compliant with industry regulations. Security Risk Analysts collaborate with IT teams and management to implement effective security policies and respond to incidents as needed.

What are the key skills and qualifications needed to thrive as a Security Risk Analyst, and why are they important?

To thrive as a Security Risk Analyst, you need a strong background in risk assessment, information security principles, and analytical thinking, often supported by a degree in cybersecurity, IT, or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security assessment tools, and certifications like CISSP or CISM is highly valuable. Excellent communication, attention to detail, and problem-solving abilities help you translate complex risks for varied stakeholders and drive mitigation strategies. These skills and qualities are crucial for identifying vulnerabilities, minimizing threats, and maintaining organizational security and compliance.

What are some common challenges Security Risk Analysts face when collaborating with other departments?

Security Risk Analysts often work closely with IT, compliance, and business units to assess and mitigate risks. A common challenge is bridging the gap between technical security requirements and business objectives, as not all stakeholders may have a cybersecurity background. Effective communication and education are key to ensuring that risk recommendations are understood and adopted. Additionally, prioritizing risks with limited resources and balancing security with operational needs can be complex, requiring strong collaboration and negotiation skills.

Can you make $500,000 a year in cyber security?

Security Risk Analysts typically earn salaries below $200,000 annually, but senior roles such as Chief Information Security Officers or cybersecurity executives can reach or exceed $500,000 with extensive experience, certifications, and leadership responsibilities. Achieving this level often requires advanced skills, industry certifications like CISSP, and years of experience in high-level security management.

Is SOC an entry level job?

A Security Operations Center (SOC) analyst role is typically not entry-level and usually requires some experience in cybersecurity, network monitoring, or related fields. Entry-level positions may be labeled as SOC analyst I or junior SOC analyst, but higher-level roles often demand certifications like CompTIA Security+ or CISSP and familiarity with security tools such as SIEM systems.

What is the difference between Security Risk Analyst vs Security Analyst?

AspectSecurity Risk AnalystSecurity Analyst
CertificationsCompTIA Security+, CISSP, CISACompTIA Security+, CISSP, CEH
Work EnvironmentRisk assessment, vulnerability analysis, policy developmentMonitoring security systems, incident response, security audits
Employer & Industry UsageFinancial, healthcare, government sectors focusing on risk mitigationIT departments across various industries focusing on security operations

While both roles focus on cybersecurity, Security Risk Analysts primarily assess and manage potential security threats and vulnerabilities, emphasizing risk mitigation strategies. Security Analysts tend to monitor security systems, respond to incidents, and ensure ongoing security measures. Both roles often require similar certifications and work environments but differ in their core responsibilities within cybersecurity teams.

What is a security risk analyst?

A security risk analyst is a professional who identifies, assesses, and mitigates security threats to an organization’s information systems. They analyze vulnerabilities, develop security strategies, and often use tools like risk assessment frameworks and security software to protect data and infrastructure.
What are popular job titles related to Security Risk Analyst jobs in Chicago, IL? For Security Risk Analyst jobs in Chicago, IL, the most frequently searched job titles are:
What job categories do people searching Security Risk Analyst jobs in Chicago, IL look for? The top searched job categories for Security Risk Analyst jobs in Chicago, IL are:
Security Risk Analyst jobs near you
Infographic showing various Security Risk Analyst job openings in Chicago, IL as of June 2026, with employment types broken down into 1% As Needed, 97% Full Time, 1% Part Time, and 1% Contract. Highlights an 94% Physical, 2% Hybrid, and 4% Remote job distribution, with an average salary of $108,090 per year, or $52 per hour.
Principal, Technology Risk and Control

Principal, Technology Risk and Control

Northern Trust

Chicago, IL • On-site

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 28 days ago

Northern Trust rating

8.0

Company rating: 8.0 out of 10

Based on 23 frontline employees who took The Breakroom Quiz

Job description

About Northern Trust:
Northern Trust, a Fortune 500 company, is a globally recognized, award-winning financial institution that has been in continuous operation since 1889.
Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to our enduring principles of service, expertise, and integrity. With more than 130 years of financial experience and over 22,000 partners, we serve the world's most sophisticated clients using leading technology and exceptional service.
Title: Principal, Technology Risk and Control
Role Overview
  • The Technology Risk and Control function at Northern Trust plays a critical role in enabling Global Information Technology to operate within a strong First Line of Defense, foster a robust control-aware culture, and deliver secure, compliant, and resilient technology capabilities. The function supports regulatory compliance, protects client interests, and strengthens enterprise-wide risk management practices.
  • The Principal, Technology Risk and Control role is accountable for end-to-end ownership of the Technology Risk and Control Issue Management Program Operations. This role will be part of a highly skilled global team dedicated to promoting control awareness and ensuring disciplined management of technology risks across the organization.
  • The successful candidate will partner closely with Global Technology stakeholders, advising on compliance with Issue Management requirements, and will collaborate with Risk, Compliance, and Audit partners to ensure a complete, accurate inventory of technology control-related issues. The role also provides operational leadership and oversight of a team responsible for executing the full lifecycle of high-risk issue management, including pre-assertion validation.

Key Responsibilities
Responsibilities include, but are not limited to:
  • Support the Issue Management Process Owner in overseeing program operations and driving the strategic direction of the Technology Issue Management process.
  • Provide strong program and project management leadership in the design, development, and implementation of operational enhancements to the Technology Risk and Control Issue Management Program, ensuring alignment with the Enterprise Issue Management framework and Technology-specific expectations.
  • Lead the simplification, standardization, and automation of Technology Issue Management metrics and reporting, leveraging Power BI to deliver accurate, timely, and actionable insights; design, develop, and implement advanced analytics and AI-enabled use cases focused on issue quality assessment, trend analysis, and identification of data quality gaps to enhance decision-making, risk visibility, and program effectiveness.
  • Design, deliver, and administer comprehensive training programs for Risk and Control staff, Technology teams, issue source owners, and business stakeholders.
  • Manage day-to-day operational activities, including development of executive-level meeting materials, facilitation of issue review forums, documentation and tracking of follow-up actions, high-risk issue validation, and status reporting.
  • Drive accountability by holding Control Officers and stakeholders accountable to defined process requirements and standards.
  • Continuously assess program effectiveness and identify opportunities for process improvement and maturity enhancement.
  • Serve as the primary point of contact and visible advocate ("face") for the Technology Issue Management Program, partnering with stakeholders on adoption, integration, and potential expansion of program usage and supporting tools.
  • Ensure appropriate governance, challenge, and oversight of issues progressing through risk acceptance.
  • Facilitate governance committees, working groups, and stakeholder forums, acting as a trusted advisor on technology risk and control matters within the Issue Management scope.
  • Partner with Second Line of Defense teams to align on issue management expectations, aggregated risk measurement, and risk analysis; take appropriate actions to address identified gaps or emerging risk trends.
  • Oversee executive reporting, issue tracking and remediation, and measurement against defined risk appetite thresholds.
  • Influence behaviors and decision-making to reduce risk exposure and strengthen a proactive technology risk management culture across the enterprise.

Qualifications
  • Strong program and project management capabilities, including product/process ownership, milestone management, risk and issue escalation, system development oversight, training and awareness initiatives, and management reporting.
  • Demonstrated expertise in control identification and definition, issue validation methodologies, and remediation governance.
  • Deep understanding of information security principles, technology risk assessments, and security risk management frameworks.
  • Proven ability to build and sustain strong collaborative relationships across functions, including senior and executive leadership.
  • Excellent written and verbal communication skills, with the ability to clearly articulate complex risk and control topics to senior stakeholders.

Experience and Education
  • Bachelor's degree in technology, information security, cybersecurity, or related discipline.
  • Minimum of 10+ years of experience in technology risk management, control functions, audit services, or related roles with transferable skills.
  • Prior experience within the financial services industry is strongly preferred.
  • Relevant technology or security certifications (e.g., CISSP, CISA and CRIC) and professional qualifications are an advantage.

Applicants must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. Northern Trust will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa)
Salary Range:
$114,700 - 194,900 USD
Salary range is a good faith estimate of base pay. Northern Trust provides a comprehensive benefits package including retirement benefits (401k and pension), health and welfare benefits (medical, dental, vision, spending accounts and disability), paid time off, parental and caregiver leave, life & accident insurance, and other voluntary and well-being benefits. Northern Trust also provides a discretionary bonus program that may include an equity component.
Working with Us:
As a Northern Trust partner, greater achievements await. You will be part of a flexible and collaborative work culture in an organization where financial strength and stability is an asset that emboldens us to explore new ideas.
Movement within the organization is encouraged, senior leaders are accessible, and you can take pride in working for a company committed to assisting the communities we serve! Join a workplace with a greater purpose.
We'd love to learn more about how your interests and experience could be a fit with one of the world's most admired and sustainable companies! Build your career with us and apply today. #MadeForGreater
Reasonable accommodation
Northern Trust is committed to working with and providing reasonable accommodations to individuals with disabilities. If you need a reasonable accommodation for any part of the employment process, please email our HR Service Center at MyHRHelp@ntrs.com.
We hope you're excited about the role and the opportunity to work with us. We value an inclusive workplace and understand flexibility means different things to different people.
Apply today and talk to us about your flexible working requirements and together we can achieve greater.

What Northern Trust employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

Apply