1

Security Risk Analyst Jobs in Columbus, OH (NOW HIRING)

The role requires working directly with technical risk, technology, and security teams to drive ... Analyze risk findings, prioritize remediation efforts, and track progress against established ...

Prior work experience of risk management disciplines, security policies and standards, technology ... Current or previous experience with risk assessment methodologies and conducting risk analysis in a ...

Prior work experience of risk management disciplines, security policies and standards, technology ... Current or previous experience with risk assessment methodologies and conducting risk analysis in a ...

... monitoring and analyzing data, identifying security, risk or compliance issues and/or events ... Review risk assessment questionnaires, perform information security control reviews and complete ...

Current or previous experience with risk assessment methodologies and conducting risk analysis in a ... Knowledge of security and control frameworks, such as ISO 27002, NIST, CobiT, COSO and ITIL

... risk identification, analysis, tracking, monitoring, documenting exceptions, and communicating ... Security Policy Development and Management * Assist with documenting security policies, standards ...

next page

Showing results 1-20

Security Risk Analyst information

See Columbus, OH salary details

$9

$48

$67

How much do security risk analyst jobs pay per hour?

As of Jul 19, 2026, the average hourly pay for security risk analyst in Columbus, OH is $48.69, according to ZipRecruiter salary data. Most workers in this role earn between $39.47 and $58.03 per hour, depending on experience, location, and employer.

Can I make $200,000 a year in cyber security?

Security Risk Analysts and other cybersecurity professionals can earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP, and expertise in areas such as threat analysis or security architecture. High salaries are often found in senior roles, management, or specialized fields within cybersecurity.

What does a Security Risk Analyst do?

A Security Risk Analyst is responsible for identifying, assessing, and mitigating risks to an organization's information systems and data. They analyze security measures, conduct vulnerability assessments, and recommend strategies to protect against threats such as cyberattacks, data breaches, and unauthorized access. Their work helps ensure that a company's digital assets remain safe and compliant with industry regulations. Security Risk Analysts collaborate with IT teams and management to implement effective security policies and respond to incidents as needed.

What are the key skills and qualifications needed to thrive as a Security Risk Analyst, and why are they important?

To thrive as a Security Risk Analyst, you need a strong background in risk assessment, information security principles, and analytical thinking, often supported by a degree in cybersecurity, IT, or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security assessment tools, and certifications like CISSP or CISM is highly valuable. Excellent communication, attention to detail, and problem-solving abilities help you translate complex risks for varied stakeholders and drive mitigation strategies. These skills and qualities are crucial for identifying vulnerabilities, minimizing threats, and maintaining organizational security and compliance.

What are some common challenges Security Risk Analysts face when collaborating with other departments?

Security Risk Analysts often work closely with IT, compliance, and business units to assess and mitigate risks. A common challenge is bridging the gap between technical security requirements and business objectives, as not all stakeholders may have a cybersecurity background. Effective communication and education are key to ensuring that risk recommendations are understood and adopted. Additionally, prioritizing risks with limited resources and balancing security with operational needs can be complex, requiring strong collaboration and negotiation skills.

Can you make $500,000 a year in cyber security?

Security Risk Analysts typically earn salaries below $200,000 annually, but senior roles such as Chief Information Security Officers or cybersecurity executives can reach or exceed $500,000 with extensive experience, certifications, and leadership responsibilities. Achieving this level often requires advanced skills, industry certifications like CISSP, and years of experience in high-level security management. Salary potential varies based on the organization, location, and individual expertise.

Is SOC an entry-level job?

A Security Operations Center (SOC) analyst role is often considered an entry-level position in cybersecurity, suitable for individuals with foundational knowledge of security principles, network protocols, and security tools. However, some SOC roles may require prior experience or certifications such as CompTIA Security+ or Certified SOC Analyst (CSA).

What is the difference between Security Risk Analyst vs Security Analyst?

AspectSecurity Risk AnalystSecurity Analyst
CertificationsCompTIA Security+, CISSP, CISACompTIA Security+, CISSP, CEH
Work EnvironmentRisk assessment, vulnerability analysis, policy developmentMonitoring security systems, incident response, security audits
Employer & Industry UsageFinancial, healthcare, government sectors focusing on risk mitigationIT departments across various industries focusing on security operations

While both roles focus on cybersecurity, Security Risk Analysts primarily assess and manage potential security threats and vulnerabilities, emphasizing risk mitigation strategies. Security Analysts tend to monitor security systems, respond to incidents, and ensure ongoing security measures. Both roles often require similar certifications and work environments but differ in their core responsibilities within cybersecurity teams.

What is a security risk analyst?

A security risk analyst is a professional who identifies, assesses, and mitigates security threats to an organization’s information systems. They analyze vulnerabilities, develop security strategies, and often use tools like risk assessment frameworks and security software to protect data and infrastructure.
Infographic showing various Security Risk Analyst job openings in Columbus, OH as of July 2026, with employment types broken down into 1% Locum Tenens, 1% Internship, 86% Full Time, 6% Part Time, 1% Temporary, and 5% Contract. Highlights an 82% Physical, 5% Hybrid, and 13% Remote job distribution, with an average salary of $101,272 per year, or $48.7 per hour.
Risk Analyst

Risk Analyst

Apex Systems

Columbus, OH • On-site

Other

Medical, Dental, Vision, Life, Retirement

Posted 7 days ago


Job description

Job#: 3037295
Job Description:
Risk Analyst
Location: Columbus, Ohio
Role Overview
This position will support the Information Technology and Cyber Security organizations in matters related to audit, compliance, and the remediation of risk. The role requires working directly with technical risk, technology, and security teams to drive tasks to completion on agreed schedules. This position is responsible for driving the delivery of remediation initiatives and working with cross-functional teams to ensure successful resolution of risk issues.
Key Responsibilities
  • Lead and manage risk remediation projects from initiation through completion.
  • Collaborate with business units, IT, Risk, and Internal Audit teams to drive risk evaluation and remediation processes.
  • Build partnerships with key technology partners and IT areas.
  • Evaluate and understand findings to help ensure proper planning of priorities and resources.
  • Analyze risk findings, prioritize remediation efforts, and track progress against established metrics.
  • Facilitate communication across teams to meet project requirements and deliverables.
  • Work with subject matter experts to create and maintain remediation strategies, tasks, and documentation.
  • Ensure alignment of remediation activities with organizational policies and regulatory requirements.
  • Identify process improvements to enhance risk management and remediation effectiveness.
  • Support audits, assessments, and regulatory reviews by providing evidence of remediation activities.
  • Maintain knowledge of relevant regulations, frameworks, and emerging risks.
  • Prepare and deliver status reports and presentations to management.
Required Qualifications
Education: Bachelor's degree in Risk Management, Business Administration, Information Security, or a related field.
Experience: 3+ years in risk management, remediation, or related fields, preferably within a large organization or consulting environment.
Skills:
  • Ability to analyze complex risk issues, synthesize data, and develop actionable remediation strategies.
  • Proven track record of managing multiple projects and meeting deadlines.
  • Verbal and written communication skills with the ability to present complex information to technical and non-technical audiences.
  • Demonstrated ability to work effectively in cross-functional teams and build working relationships.
  • Familiarity with risk assessment tools, GRC platforms, and IT security concepts.
  • Understanding of key regulations and industry standards (e.g., SOX, GDPR, FFIEC, ISO 27001, NIST CSF, NIST RMF).
Preferred Qualifications
  • Experience in using GRC systems or other related systems.
  • Experience using Azure DevOps or similar agile toolsets.
  • Experience with technical writing.
  • Experience with risk remediation in financial services, healthcare, or highly regulated industries.
  • Knowledge of control testing and associated tests.
  • Knowledge in Information Technology, Cybersecurity, Infrastructure, Cloud, Architecture, and Application Delivery.
  • Professional certifications in risk management or cybersecurity (e.g., CISSP, CISM, CISA, CySA+, Security+, CRISC).

Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico.
Everforth Apex uses a virtual recruiter as part of the application process. Click for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at
Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide.
Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law.
If you require an accommodation under the Americans with Disabilities Act to participate in an interview with a virtual recruiter or to use our website for a search or application, please contact our Benefits Department at or . Please note that this contact information is strictly to be used for medical ADA accommodations and that no other inquiries will be answered.
UnitedHealthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Everforth Apex Systems.