Research and recommend new or updated risk assessment methodologies, frameworks, and standards * Assist with other Security Assurance Program efforts including but not limited to tracking of ...
Research and recommend new or updated risk assessment methodologies, frameworks, and standards * Assist with other Security Assurance Program efforts including but not limited to tracking of ...
Risk & Compliance Analyst (IT)
Springfield, IL ยท On-site
$50K - $65K/yr
Conduct risk assessments to assist in managing risk mitigation strategies to protect organizational assets. * Policy Management: Manage review process of all security policies, standards, and ...
Risk & Compliance Analyst (IT)
Springfield, IL ยท On-site
$50K - $65K/yr
Conduct risk assessments to assist in managing risk mitigation strategies to protect organizational assets. * Policy Management: Manage review process of all security policies, standards, and ...
Conduct risk assessments to assist in managing risk mitigation strategies to protect organizational assets. * Policy Management: Manage review process of all security policies, standards, and ...
Conduct risk assessments to assist in managing risk mitigation strategies to protect organizational assets. * Policy Management: Manage review process of all security policies, standards, and ...
Security Engineer
Chicago, IL ยท On-site
Conduct risk assessments and provide actionable guidance to reduce application-level security risk * Communicate risk findings clearly, balancing technical detail with business impact Security ...
Security Engineer
Chicago, IL ยท On-site
Conduct risk assessments and provide actionable guidance to reduce application-level security risk * Communicate risk findings clearly, balancing technical detail with business impact Security ...
Information Security Risk Specialist with Security Clearance
Scott Air Force Base, IL ยท On-site
$99K - $225K/yr
Job Number: R0243094 Information Security Risk Specialist The Opportunity: Cyber threats are ... Experience managing and administering Assured Compliance Assessment Solution (ACAS) and Host-Based ...
Information Security Risk Specialist with Security Clearance
Scott Air Force Base, IL ยท On-site
$99K - $225K/yr
Job Number: R0243094 Information Security Risk Specialist The Opportunity: Cyber threats are ... Experience managing and administering Assured Compliance Assessment Solution (ACAS) and Host-Based ...
Digital - AI Security Architect - Senior Manager
Chicago, IL ยท On-site +1
$210K - $234K/yr
Assess AI supply chain risk , including model provenance, third-party models, and training data lineage * Define and recommend AI security standards, policies, and MLSecOps practices aligned to ...
Digital - AI Security Architect - Senior Manager
Chicago, IL ยท On-site +1
$210K - $234K/yr
Assess AI supply chain risk , including model provenance, third-party models, and training data lineage * Define and recommend AI security standards, policies, and MLSecOps practices aligned to ...
Digital - AI Security Architect - Senior Manager
Chicago, IL ยท On-site
$210K - $234K/yr
Assess AI supply chain risk , including model provenance, third-party models, and training data lineage * Define and recommend AI security standards, policies, and MLSecOps practices aligned to ...
Digital - AI Security Architect - Senior Manager
Chicago, IL ยท On-site
$210K - $234K/yr
Assess AI supply chain risk , including model provenance, third-party models, and training data lineage * Define and recommend AI security standards, policies, and MLSecOps practices aligned to ...
The team conducts risk assessments and security impact analyses of information systems.โฏโฏ Location: This is a hybrid role based in our Chicago Loop or Washington, DC office, with a minimum of six ...
The team conducts risk assessments and security impact analyses of information systems.โฏโฏ Location: This is a hybrid role based in our Chicago Loop or Washington, DC office, with a minimum of six ...
... Security perspective. This position is 100% Onsite and not open for Remote. Manager, Cybersecurity ... assessments to support InfoSec the identification of risk across policy domains, identify ...
... Security perspective. This position is 100% Onsite and not open for Remote. Manager, Cybersecurity ... assessments to support InfoSec the identification of risk across policy domains, identify ...
The team conducts risk assessments and security impact analyses of information systems. Location : This is a hybrid role based in our Chicago Loop or Washington, DC office, with a minimum of six days ...
The team conducts risk assessments and security impact analyses of information systems. Location : This is a hybrid role based in our Chicago Loop or Washington, DC office, with a minimum of six days ...
... Security perspective. This position is 100% Onsite and not open for Remote. Manager, Cybersecurity ... assessments to support InfoSec the identification of risk across policy domains, identify ...
... Security perspective. This position is 100% Onsite and not open for Remote. Manager, Cybersecurity ... assessments to support InfoSec the identification of risk across policy domains, identify ...
Director, Enterprise Risk Management
$175K - $200K/yr
Risk Assessment & Monitoring: Maintain and enhance the enterprise risk register, integrating Risk ... Collaborate with Technology and Security teams to report on data protection, and information ...
Director, Enterprise Risk Management
$175K - $200K/yr
Risk Assessment & Monitoring: Maintain and enhance the enterprise risk register, integrating Risk ... Collaborate with Technology and Security teams to report on data protection, and information ...
The scope of this project is to provide comprehensive lifecycle implementation and assessment ... Security Risk Assessments, standard operating procedures (SOPs), and technical analysis of ...
The scope of this project is to provide comprehensive lifecycle implementation and assessment ... Security Risk Assessments, standard operating procedures (SOPs), and technical analysis of ...
Director, Enterprise Risk Management
Chicago, IL ยท On-site
$175K - $200K/yr
Risk Assessment & Monitoring: Maintain and enhance the enterprise risk register, integrating Risk ... Collaborate with Technology and Security teams to report on data protection, and information ...
Director, Enterprise Risk Management
Chicago, IL ยท On-site
$175K - $200K/yr
Risk Assessment & Monitoring: Maintain and enhance the enterprise risk register, integrating Risk ... Collaborate with Technology and Security teams to report on data protection, and information ...
The scope of this project is to provide comprehensive lifecycle implementation and assessment ... Security Risk Assessments, standard operating procedures (SOPs), and technical analysis of ...
The scope of this project is to provide comprehensive lifecycle implementation and assessment ... Security Risk Assessments, standard operating procedures (SOPs), and technical analysis of ...
Manager - Third Party Risk The position will be primarily responsible for managing and leading the assessment of the information security posture of key clients' third parties while overseeing the ...
Manager - Third Party Risk The position will be primarily responsible for managing and leading the assessment of the information security posture of key clients' third parties while overseeing the ...
IG Compliance & Security Analyst
Chicago, IL ยท On-site
IG Compliance & Security Analyst Cooley is seeking an IG Compliance & Security Analyst to join the ... Conduct formal risk assessment reviews to determine the critical points of business exposure
IG Compliance & Security Analyst
Chicago, IL ยท On-site
IG Compliance & Security Analyst Cooley is seeking an IG Compliance & Security Analyst to join the ... Conduct formal risk assessment reviews to determine the critical points of business exposure
IG Compliance & Security Analyst
Chicago, IL ยท On-site
IG Compliance & Security Analyst Cooley is seeking an IG Compliance & Security Analyst to join the ... Conduct formal risk assessment reviews to determine the critical points of business exposure
IG Compliance & Security Analyst
Chicago, IL ยท On-site
IG Compliance & Security Analyst Cooley is seeking an IG Compliance & Security Analyst to join the ... Conduct formal risk assessment reviews to determine the critical points of business exposure
Information Security Risk Specialist, Senior with Security Clearance
Scott Air Force Base, IL ยท On-site
$99K - $225K/yr
R0243096 Information Security Risk Specialist, Senior The Opportunity: Cyber threats are everywhere ... Experience managing and administering Assured Compliance Assessment Solution (ACAS) and Host-Based ...
Information Security Risk Specialist, Senior with Security Clearance
Scott Air Force Base, IL ยท On-site
$99K - $225K/yr
R0243096 Information Security Risk Specialist, Senior The Opportunity: Cyber threats are everywhere ... Experience managing and administering Assured Compliance Assessment Solution (ACAS) and Host-Based ...
Senior Physical Security Manager
Chicago, IL ยท On-site +1
$160K - $180K/yr
Hardening & Risk Assessment: Conduct comprehensive Physical Security Risk Assessments (PSRA) for all sites. Identify vulnerabilities and implement physical hardening measures (ballistic glass ...
Senior Physical Security Manager
Chicago, IL ยท On-site +1
$160K - $180K/yr
Hardening & Risk Assessment: Conduct comprehensive Physical Security Risk Assessments (PSRA) for all sites. Identify vulnerabilities and implement physical hardening measures (ballistic glass ...
Security Risk Assessment information
See Illinois salary details
$10.02 - $15.27
2% of jobs
$15.27 - $20.52
0% of jobs
$20.52 - $25.77
1% of jobs
$25.77 - $31.02
1% of jobs
$31.02 - $36.27
1% of jobs
$40.21 is the 25th percentile. Wages below this are outliers.
$36.27 - $41.53
26% of jobs
$41.53 - $46.78
11% of jobs
The median wage is $48.65 / hr.
$46.78 - $52.03
22% of jobs
$52.03 - $57.28
9% of jobs
$57.69 is the 75th percentile. Wages above this are outliers.
$57.28 - $62.53
17% of jobs
$62.53 - $67.78
9% of jobs
$10
$48
$67
How much do security risk assessment jobs pay per hour?
What is a Security Risk Assessment job?
A Security Risk Assessment job involves identifying, analyzing, and mitigating potential security threats to an organization's systems, data, and operations. Professionals in this role evaluate vulnerabilities, assess risks, and recommend security controls to protect against cyber threats, fraud, and compliance issues. They work with IT teams, management, and stakeholders to ensure security measures align with business objectives and regulatory requirements. This job often requires knowledge of cybersecurity frameworks, risk management methodologies, and relevant industry standards.
What are the key skills and qualifications needed to thrive in the Security Risk Assessment position, and why are they important?
To thrive in Security Risk Assessment, a strong background in risk analysis, information security principles, and regulatory compliance is essential, often supported by a degree in cybersecurity or related fields. Familiarity with risk assessment tools, frameworks like NIST or ISO 27001, and certifications such as CISSP or CISA are highly valued. Exceptional attention to detail, analytical thinking, and effective communication skills set top professionals apart in this role. These competencies enable accurate identification of potential security threats and development of strategic mitigation plans, which are crucial for safeguarding organizational assets.
What are some common challenges faced in a Security Risk Assessment role?
Professionals in Security Risk Assessment often face the challenge of keeping up with constantly evolving cyber threats and adapting assessment methodologies accordingly. Balancing thorough analysis with the need to provide timely recommendations can be demanding, especially when collaborating with multiple departments or stakeholders. Additionally, communicating complex risk findings to non-technical audiences requires both clarity and diplomacy. Overcoming these challenges is critical for delivering actionable insights that drive effective security decision-making and protect organizational assets.
- Information Technology Security Analyst
- Cyber Security Analyst Contract
- Urgently Hiring Information Security Compliance Analyst
- Trainee Security Risk Consultant
- Global Security Analyst
- Flexible Cloud Security Analyst
- Information Security Risk Analyst
- Full Time Vulnerability Analyst
- Remote Workday Security Analyst
- Information Security Compliance Analyst
Full-time
Medical, Dental, Vision, Retirement, PTO
Posted 22 days ago
Job description
To be considered for this position, applications and resumes are accepted only through our careers site by directly applying to the posted job. We do not accept unsolicited resumes or sales solicitations from staffing agencies. Any OCC employee wishing to submit a referral must do so through their Workday account. Any resume submitted outside of an active job posting will not be considered for employment.
What You'll Do:
The Lead Associate Principal, Security Assurance is responsible for leading the scoping, planning, conducting, and reporting of various Security assessments, including collaboration with other Security teams to assess risk and requirements for new technology onboarding and PoCs, Third Party Security Assessments to support OCC's Third Party Risk Management team, assisting with oversight of the Security Observation Risk Tracking process, and special risk assessments as requested by the CSO or DCSO. This position includes supporting Security Assurance team members in the development of these various risk assessments listed above.
Secondary responsibilities include developing and enhancing Security Assurance processes. This includes automation enhancements, the advancement of Cyber Risk practices, and updating relevant policies and procedures to reflect these changes.
Primary Duties and Responsibilities:
To perform this job successfully, an individual must be able to perform each primary duty satisfactorily.
Scoping, planning, conducting, and reporting Security assessments for internal departments and of OCC third parties and technologies
Collaborate with the Security Engineering & Technology Integration and Threat Intelligence teams to assess risk and set security requirements for new technology onboarding and PoCs
Assist with oversight of the Security Observation Risk Tracking process which includes processing security observations nominated from various sources, assessing risk ratings for observations, communicating observations to risk owners, and managing the observation lifecycle
Participate in Security review and approval of Linux server privilege elevation, proxy exception, and firewall exception requests
Participate in Security review and approval of Risk Intake, Risk Action Plan, and Risk Acceptance records managed by the Operational Risk Management & Controls team
Research and recommend new or updated risk assessment methodologies, frameworks, and standards
Assist with other Security Assurance Program efforts including but not limited to tracking of remediation and validation of audit, compliance, and regulatory findings as needed.
Collaborate with automation and AI teams to assess opportunities for incorporating AI into team processes
Documenting process flow enhancements and working with Security Business Operations to develop and enhance Security Assurance processes.
Assist Security Analysts, transferring technical and risk management knowledge
Partnering with IT department to disseminate, train, and provide guidance against the Security requirements
Assist in project planning, program development, and process formalization.
Perform other duties as assigned
Supervisory Responsibilities:
None
Qualifications:
The requirements listed are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the primary functions.
Effective oral and written communication, analytical, judgment and collaboration skills.
Analytical skills to successfully analyze, model, and present complex risk assessments
Ability to work independently and effectively with local and remote OCC staff, management, vendors, and consultants while exercising sound judgment
Strong understanding of information technology, risk management concepts, and analytics
Possesses critical OCC values (i.e., fact based, collaborative, credibility/trust and judgment).
Technical Skills:
Advanced understanding of information related frameworks and standards such as COBIT, NIST 800-53, NIST CSF, ISO etc.
Experience in security risk management principles and practices.
Experience in working with regulatory frameworks and requirements relevant to OCC such as, Reg SCI, CFTC 99.18, etc.
Experience working in ServiceNow, Tableau, Archer GRC, Jira, and Confluence
Education and/or Experience:
5 years hands-on Information Security experience, preferably within previous work in Compliance, Audit, Risk Management, or Security.
Bachelor's degree in Computer Science, Management Information Systems, Statistics & Quantitative Modeling, Mathematics a plus or the equivalent combination of education and/or relevant experience.
Certificates or Licenses:
Professional network and/or security certifications are a plus, but not required (i.e., GIAC, CISSP, CISA, CISM, CRISC, AWS cloud computing)
About Us
The Options Clearing Corporation (OCC) is the world's largest equity derivatives clearing organization. Founded in 1973, OCC is dedicated to promoting stability and market integrity by delivering clearing and settlement services for options, futures and securities lending transactions. As a Systemically Important Financial Market Utility (SIFMU), OCC operates under the jurisdiction of the U.S. Securities and Exchange Commission (SEC), the U.S. Commodity Futures Trading Commission (CFTC), and the Board of Governors of the Federal Reserve System. OCC has more than 100 clearing members and provides central counterparty (CCP) clearing and settlement services to 19 exchanges and trading platforms. More information about OCC is available at www.theocc.com.
Benefits
A highly collaborative and supportive environment developed to encourage work-life balance and employee wellness. Some of these components include:
- A hybrid work environment, up to 2 days per week of remote work
- Tuition Reimbursement to support your continued education
- Student Loan Repayment Assistance
- Technology Stipend allowing you to use the device of your choice to connect to our network while working remotely
- Generous PTO and Parental leave
- 401k Employer Match
- Competitive health benefits including medical, dental and vision
Visit https://www.theocc.com/careers/thriving-together for more information.
Compensation
- The salary range listed for any given position is exclusive of fringe benefits and potential bonuses. If hired at OCC, your final base salary compensation will be determined by factors such as skills, experience and/or education.
- In addition, we believe in the importance of pay equity and consider internal equity of our current team members as part of any final offer.
- We typically do not hire at the maximum of the range in order to allow for future and continued salary growth. We also offer a substantial benefits package as noted on www.theocc.com/careers
- All employees may be eligible for a discretionary bonus. Discretionary bonuses are based on various factors, including, but not limited to, company and individual performance and are not guaranteed.
Salary Range
$132,500.00 - $218,300.00Incentive Range
8% to 15%This position is eligible for an annual discretionary incentive compensation award, for which the target range is listed above (see Incentive Range). The amount of such award, if any, will be based on various factors, including without limitation, both individual and company performance.
Step 1
When you find a position you're interested in, click the 'Apply' button. Please complete the application andattach your resume.
Step 2
You will receive an email notification to confirm that we've received your application.
Step 3
If you are called in for an interview, a representative from OCC will contact you to set up a date, time, and location.
For more information about OCC, please click here.
OCC is an Equal Opportunity Employer