1

Security Risk Assessment Jobs in New York (NOW HIRING)

Security Architect

Fair Lawn, NJ ยท On-site

$122K - $183K/yr

Risk Assessment, Mitigation, and Threat Modeling * Maintain an evolving picture of the threat landscape, trends, and emerging technologies. * Perform security reviews of technology platforms and ...

Apply Early

Cloud Security Solutions & Advisory, VP

Jersey City, NJ ยท Hybrid

$68.25 - $90.75/hr

Perform risk assessments on applications across development and production environments, including ... Participate in security governance of SDLC, design reviews and secure coding standards (OWASP)

Responsibilities : โ€ข Conduct research on technology security, cybersecurity best practices, and develop risk assessment questionnaires. โ€ข Plan and perform risk assessments following the ...

next page

Showing results 1-20

Security Risk Assessment information

See New York salary details

$11

$55

$76

How much do security risk assessment jobs pay per hour?

As of Jul 4, 2026, the average hourly pay for security risk assessment in New York is $55.15, according to ZipRecruiter salary data. Most workers in this role earn between $44.71 and $65.77 per hour, depending on experience, location, and employer.

What is a Security Risk Assessment job?

A Security Risk Assessment job involves identifying, analyzing, and mitigating potential security threats to an organization's systems, data, and operations. Professionals in this role evaluate vulnerabilities, assess risks, and recommend security controls to protect against cyber threats, fraud, and compliance issues. They work with IT teams, management, and stakeholders to ensure security measures align with business objectives and regulatory requirements. This job often requires knowledge of cybersecurity frameworks, risk management methodologies, and relevant industry standards.

What are the key skills and qualifications needed to thrive in the Security Risk Assessment position, and why are they important?

To thrive in Security Risk Assessment, a strong background in risk analysis, information security principles, and regulatory compliance is essential, often supported by a degree in cybersecurity or related fields. Familiarity with risk assessment tools, frameworks like NIST or ISO 27001, and certifications such as CISSP or CISA are highly valued. Exceptional attention to detail, analytical thinking, and effective communication skills set top professionals apart in this role. These competencies enable accurate identification of potential security threats and development of strategic mitigation plans, which are crucial for safeguarding organizational assets.

What are some common challenges faced in a Security Risk Assessment role?

Professionals in Security Risk Assessment often face the challenge of keeping up with constantly evolving cyber threats and adapting assessment methodologies accordingly. Balancing thorough analysis with the need to provide timely recommendations can be demanding, especially when collaborating with multiple departments or stakeholders. Additionally, communicating complex risk findings to non-technical audiences requires both clarity and diplomacy. Overcoming these challenges is critical for delivering actionable insights that drive effective security decision-making and protect organizational assets.

What are the most commonly searched types of Security Risk Assessment jobs in New York? The most popular types of Security Risk Assessment jobs in New York are:
What job categories do people searching Security Risk Assessment jobs in New York look for? The top searched job categories for Security Risk Assessment jobs in New York are:
Security Architect

Security Architect

Columbia Bank

Fair Lawn, NJ โ€ข On-site

$122K - $183K/yr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 25 days ago

Be an early applicant


Job description


Summary: The Security Architect has primary responsibility for leading the Security Engineering and Architecture function within the Bankโ€™s Information Security team. The individual will develop and maintain the security architecture framework and strategy in accordance with the Bankโ€™s policies, standards, and risk appetite. They will collaborate with business units, Risk Management, and Technology teams to ensure security is integrated with business and technology strategies and objectives.

Job Responsibilities:

Security Design, Architecture, and Strategy

  • Lead the Bankโ€™s Security Engineering and Architecture function.
  • Develop and maintain the security architecture framework, standards, policies, and guidelines for the Bankโ€™s IT systems and applications.
  • Drive the Bankโ€™s security architecture strategy ensuring adherence to principles of defense in depth, economy of mechanism, least privilege, and secure by default.
  • Collaborate with business units, Risk Management, and Technology teams to align security architecture with the business and technology strategies and objectives.
  • Provide security consulting on projects for internal clients to ensure conformity with corporate information security policy and standards.

Risk Assessment, Mitigation, and Threat Modeling

  • Maintain an evolving picture of the threat landscape, trends, and emerging technologies.
  • Perform security reviews of technology platforms and applications.
  • Identify and evaluate security risks across technology and vendor platforms, networks, applications, and cloud environments by performing risk assessment and threat modeling activities.
  • Develop and oversee execution of treatment plans to address identified risks in accordance with organizational policies, standards, and risk appetite balancing security, performance, and business needs.
  • Analyze and recommend security controls and procedures in acquisition, development, and change management lifecycle of information systems, and monitor for compliance.
  • Lead the assessment of security processes, platforms, and practices to identify areas for improvement.
  • Ensure technology solutions have security considerations embedded throughout their lifecycle.
  • Ensure ongoing compliance with regulatory requirements.
Project Management
  • Lead in the management and execution of large-scale projects according to project management schedules.
  • Develop comprehensive project plans including milestones, resource allocation, and timelines ensuring alignment with the Bankโ€™s security objectives.
  • Coordinate with internal and external stakeholders as required to ensure on-time and on-budget delivery of projects.
  • Oversee the implementation and integration of security technologies and processes.

Support Incident Response Inquiries

  • Support incident response efforts by reviewing security events and escalations, performing investigations, and seeing matters through to resolution.
  • Support technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies.
  • Collaborate with technology and business organizations as appropriate.

Professional Development

  • Stay abreast of relevant industry related developments, trends, and threats.
  • Commit to ongoing professional education and development in the Information / Cyber Security field.
  • Provide technical and strategic direction and mentorship to team members.

Other Responsibilities

  • Performs other job-related duties as assigned.

Job Requirements:

  • Bachelorโ€™s degree in an IT related discipline required;
  • At least 5โ€“ 8 years of experience in information technology, information security, risk, or similar field;
  • 5+ years of experience in an information security role;
  • 5+ years of architecture experience;
  • Experience in a highly regulated industries is preferred;
  • Relevant industry certifications (CCSP, CISM, CAASP+, SSCP, CNDA, CYSA+) and/or advanced degrees may be considered in lieu of experience;
  • Deep expertise in secure design and architecture principles;
  • Advanced knowledge of multiple security practice areas including security architecture, security engineering, identity and access management, asset management, vulnerability management, threat detection and response, endpoint security, network security, cloud security, web security, email security, data security, application security, threat intelligence;
  • In-depth knowledge of regulatory frameworks including, but not limited to, NIST, PCI-DSS, SOX, FFIEC, ISO27001;
  • Ability to provide risk-based recommendations balancing security, performance, and business needs;
  • Ability to communicate complex security topics to technical and non-technical stakeholders;
  • Commitment to ongoing professional education / training / certification in the Information / Cyber Security field.

Columbia Bank offers the following benefits:

  • Medical, Dental, Vision and Rx which are contributory.
  • Bonus programs.
  • Employee Stock Option Program (ESOP).
  • Life Insurance, Long Term Disability and Accidental Death and Dismemberment (LTD&AD&D).
  • Paid Time Off (PTO) which includes Personal and Vacation Time.
  • Paid Sick Time.
  • Bank Holidays.
  • Employees may participate in the 401k program.

Schedule:

  • This role is eligible for a hybrid schedule: 3 days in the office and 2 days work from home, based on business needs. This arrangement may change without notice.



Columbia Bank and its affiliates is an Equal Opportunity Employer, including individuals with disabilities and veterans.